Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/fQfnqac2E37-XvQRqlVR0NbCHDU.roa
File: fQfnqac2E37-XvQRqlVR0NbCHDU.roa (raw, json)
Hash identifier: fDCsKtUG58K8o1LFwzgczXdUmrd/zn9mY5zp2yvAmog=
Subject key identifier: 7D:07:E7:A9:A7:36:13:7E:FE:5E:F4:11:AA:55:51:D0:D6:C2:1C:35
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 01827DB3588EE37EDB0F6C9FCD089EB0F585
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/fQfnqac2E37-XvQRqlVR0NbCHDU.roa
Signing time: Mon 08 Aug 2022 13:44:41 +0000
ROA not before: Mon 08 Aug 2022 13:44:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133296
IP address blocks: 185.76.60.0/24 maxlen: 24
185.76.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7d:b3:58:8e:e3:7e:db:0f:6c:9f:cd:08:9e:b0:f5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Aug 8 13:44:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d07e7a9a736137efe5ef411aa5551d0d6c21c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e5:23:31:7b:0b:d0:61:40:61:0c:d7:ae:6a:
a1:ed:fe:80:6b:b8:93:0a:86:23:ce:d8:b1:d7:da:
6a:bf:c2:1f:14:b4:37:91:fc:d0:e6:03:37:7b:7d:
65:c3:71:f3:44:a2:ea:38:75:cd:3a:6c:ba:c3:c0:
50:30:97:bf:46:e7:ec:0b:37:7e:43:1e:a6:1c:90:
2e:dc:6b:9a:12:1a:c3:0f:c2:3a:56:cc:0b:78:bf:
f4:f2:5d:28:95:b8:8d:47:4f:be:04:43:e8:2c:f0:
ef:7f:82:da:89:8e:fc:90:89:3e:6d:fd:6f:0e:e8:
5c:ae:01:e6:47:6a:5e:20:b8:00:bc:73:4f:52:17:
c6:b2:9f:54:86:81:7c:35:5e:10:1a:31:4b:09:24:
c7:1b:51:9d:e8:59:52:20:0d:e8:63:a7:c8:b5:50:
99:4d:de:01:df:97:63:a2:a0:53:8f:7b:87:d1:8e:
eb:c9:bd:f1:0c:37:a2:b1:11:7d:af:5b:ab:d2:04:
d4:33:48:06:f3:29:f9:87:bd:b1:55:c9:3c:b4:2f:
a5:cf:13:a9:d7:37:b1:f6:80:de:bf:e1:f3:2b:42:
a2:a7:b1:fe:f6:43:bf:34:3c:2f:54:85:f5:41:70:
60:15:90:01:6a:b6:1c:58:f5:16:5f:41:cb:a4:68:
9f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:07:E7:A9:A7:36:13:7E:FE:5E:F4:11:AA:55:51:D0:D6:C2:1C:35
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/fQfnqac2E37-XvQRqlVR0NbCHDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.60.0/24
185.76.62.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f8:19:05:80:b2:83:73:99:63:5d:63:ca:e0:68:f4:8a:97:
f4:12:54:19:58:a1:dc:0d:ff:af:d5:7d:98:44:5a:6e:04:7f:
33:c6:f3:3b:d9:c1:86:b3:d1:d8:47:fa:55:d4:51:32:69:80:
5f:59:d3:83:e2:f7:36:6c:a4:51:06:07:8e:ed:a4:7e:9f:81:
98:fa:61:51:8e:96:70:6c:74:c9:d1:fc:59:2d:e4:ef:ae:2b:
8e:71:dc:6d:1a:60:db:99:92:2c:87:f8:4b:9a:78:ca:26:52:
62:52:7a:72:b2:94:ab:41:43:98:cf:22:09:d8:90:8a:f5:2e:
04:5b:7b:33:3d:1c:a0:22:73:e3:a6:ba:bc:b0:e2:9d:31:56:
dc:3e:f8:a1:e0:15:85:21:d1:05:f6:21:df:f4:46:1b:33:63:
12:42:26:5d:d0:71:14:8d:cf:1e:07:99:9d:39:39:eb:e7:75:
be:7c:a2:85:8f:e0:a3:14:91:1b:90:44:36:33:46:e9:65:77:
2b:5e:ac:f8:1f:cf:34:8d:dd:fe:91:8f:df:8b:6c:c6:31:0d:
20:de:d9:d2:4f:bf:fc:94:5e:a7:6e:2d:96:4a:a2:74:69:af:
59:08:31:18:ad:fc:97:61:29:9f:16:0f:fa:1b:3d:47:c9:9d:
d3:a0:15:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org