Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/dd3940-ffd6-4b69-9f01-fd8d25a263d2/1/gVogjwE6SJFHWGN35w-SRW7PQL4.roa
File: gVogjwE6SJFHWGN35w-SRW7PQL4.roa (raw, json)
Hash identifier: 4F/OJyUaC4jbqEKEeP8K1LsEomDEt8M4rbQbZqZnX/U=
Subject key identifier: 81:5A:20:8F:01:3A:48:91:47:58:63:77:E7:0F:92:45:6E:CF:40:BE
Certificate issuer: /CN=079889d9de4f07014beb2c0a312cd73652a3fc38
Certificate serial: 0E5B741A
Authority key identifier: 07:98:89:D9:DE:4F:07:01:4B:EB:2C:0A:31:2C:D7:36:52:A3:FC:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B5iJ2d5PBwFL6ywKMSzXNlKj_Dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/dd3940-ffd6-4b69-9f01-fd8d25a263d2/1/gVogjwE6SJFHWGN35w-SRW7PQL4.roa
Signing time: Sat 01 Jan 2022 08:59:58 +0000
ROA not before: Sat 01 Jan 2022 08:59:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60592
IP address blocks: 185.38.108.0/24 maxlen: 24
185.28.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240874522 (0xe5b741a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=079889d9de4f07014beb2c0a312cd73652a3fc38
Validity
Not Before: Jan 1 08:59:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=815a208f013a489147586377e70f92456ecf40be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:77:1a:3f:1a:e0:70:0d:eb:a9:a9:24:39:d7:
d8:5c:42:af:ec:1e:4f:5d:fe:30:e1:b7:91:a3:d4:
f7:01:ae:be:c3:8d:ec:ed:3b:ca:ee:93:c5:40:29:
92:a3:46:5b:2f:1b:2e:2a:96:35:5d:be:0b:70:cc:
2b:21:36:54:c2:b6:9a:c5:24:b5:a3:f3:45:73:ae:
06:40:5c:74:49:41:f6:10:2d:f7:f3:df:a8:5b:7d:
88:54:e6:75:7c:82:5a:d1:b4:90:85:24:7e:f1:ef:
5d:0a:91:13:f2:cb:c5:0c:c3:12:f8:d3:8b:aa:e5:
f8:bc:e1:d6:54:46:41:19:61:1e:7e:df:48:15:99:
46:5a:32:65:ac:bd:d2:7f:34:16:cd:66:60:70:4b:
2d:dc:7e:82:d0:c4:74:fa:0e:f2:8c:8f:e6:ef:d9:
72:da:dc:ca:0a:87:91:de:36:0b:0a:7c:7f:26:c0:
16:b5:e6:6e:02:39:28:e7:61:d0:d6:22:a3:5b:3b:
68:63:a0:3c:75:8b:36:7e:c4:dc:e6:1f:82:53:e0:
5b:81:07:8b:e9:66:df:ba:8f:de:bd:66:23:65:85:
41:c3:08:81:50:46:c7:9f:76:42:46:81:d4:df:2b:
d9:a4:20:7e:16:db:1f:09:68:29:e6:09:4e:24:e3:
4d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5A:20:8F:01:3A:48:91:47:58:63:77:E7:0F:92:45:6E:CF:40:BE
X509v3 Authority Key Identifier:
keyid:07:98:89:D9:DE:4F:07:01:4B:EB:2C:0A:31:2C:D7:36:52:A3:FC:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B5iJ2d5PBwFL6ywKMSzXNlKj_Dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/dd3940-ffd6-4b69-9f01-fd8d25a263d2/1/gVogjwE6SJFHWGN35w-SRW7PQL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/dd3940-ffd6-4b69-9f01-fd8d25a263d2/1/B5iJ2d5PBwFL6ywKMSzXNlKj_Dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.194.0/24
185.38.108.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a8:f2:85:2f:ff:64:71:55:88:96:2f:fa:93:74:e8:c4:b5:
e9:a9:64:88:b2:78:77:f6:90:ba:d1:af:9b:71:d8:2f:98:d5:
06:00:8b:a6:af:5c:f3:4b:d8:9a:14:df:59:07:31:76:d2:fe:
0c:5b:94:cb:3a:b9:ad:75:ca:55:c6:a2:3d:42:19:f6:10:ca:
c8:f4:6e:99:40:26:9a:4e:a6:90:22:a6:1f:c7:4e:57:47:d3:
c3:e6:35:e8:fa:2f:96:2e:2c:9e:b7:15:e8:04:60:17:3c:f8:
20:41:ca:68:55:83:96:df:1b:8e:b4:10:07:53:f8:04:a1:83:
26:47:06:64:73:63:95:c9:93:2c:d0:97:23:6a:2e:e7:15:19:
95:10:ef:14:a0:a3:e5:e2:28:45:14:85:bd:ff:6a:66:0f:55:
31:36:d6:ed:41:86:a7:27:a7:55:ea:11:2a:47:05:c8:b0:b9:
f7:24:4f:e0:c9:17:df:81:bc:99:70:1b:7d:6f:bc:7e:16:50:
a4:69:4b:e2:86:eb:ae:54:47:aa:ec:a2:2e:13:1a:77:1b:b7:
de:cb:3f:0e:df:f9:46:be:9f:98:e5:21:90:d9:18:94:fe:87:
a3:55:67:c4:65:c3:da:1f:4c:82:9a:cc:5e:9c:e6:b9:9c:5c:
39:0c:9a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:53 2023 by rpki-client on console-fra.rpki-client.org