Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0227b7-54ca-4f56-be26-6cbe949532e4/1/0Wb4j2PpOWZL5Vx_jcZuhnF53sY.roa
File: 0Wb4j2PpOWZL5Vx_jcZuhnF53sY.roa (raw, json)
Hash identifier: T4DxLtZyO0vwqouC8KPyXvIN58odLPlV5ABewW4cO0c=
Subject key identifier: D1:66:F8:8F:63:E9:39:66:4B:E5:5C:7F:8D:C6:6E:86:71:79:DE:C6
Certificate issuer: /CN=d7f7f16b05a1123151a677a47ac2d8d9061df390
Certificate serial: 07AFC876
Authority key identifier: D7:F7:F1:6B:05:A1:12:31:51:A6:77:A4:7A:C2:D8:D9:06:1D:F3:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1_fxawWhEjFRpnekesLY2QYd85A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0227b7-54ca-4f56-be26-6cbe949532e4/1/0Wb4j2PpOWZL5Vx_jcZuhnF53sY.roa
Signing time: Sat 01 Jan 2022 02:56:24 +0000
ROA not before: Sat 01 Jan 2022 02:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43824
IP address blocks: 185.118.25.0/24 maxlen: 24
185.118.27.0/24 maxlen: 24
185.118.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128960630 (0x7afc876)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7f7f16b05a1123151a677a47ac2d8d9061df390
Validity
Not Before: Jan 1 02:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d166f88f63e939664be55c7f8dc66e867179dec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:89:ad:7a:2d:11:07:bf:e5:36:dc:b5:bf:9c:
0c:a2:43:b8:f1:af:b3:24:34:82:95:db:fd:7e:e0:
f8:0c:14:ae:45:d8:f9:5f:13:71:63:2c:ab:5c:71:
14:21:f1:03:6a:dd:10:ce:61:03:fe:67:5c:58:73:
66:75:4d:b1:60:46:dc:bf:2b:a1:4f:28:2f:dc:f2:
8a:50:e0:dc:87:7d:f4:44:45:db:66:05:87:2f:2f:
8b:4d:76:35:a7:11:68:08:a8:e4:3c:f5:64:df:ad:
f1:c1:55:cb:fc:0f:db:e9:f6:82:3d:98:39:6d:58:
c8:9d:b9:e3:45:a7:30:82:5f:6b:85:e8:74:f9:52:
e7:00:d8:9c:64:d9:f1:96:ad:51:08:03:fa:f2:af:
5a:5f:de:66:8c:bc:c1:7c:09:a9:af:96:39:d9:29:
4c:c0:f2:19:9a:39:a7:08:d0:23:ef:fc:f7:24:b3:
bc:3e:b1:b1:a9:82:80:55:28:c4:8d:9c:2c:f9:d3:
be:bf:16:f3:1a:6c:09:96:d8:fb:7e:6a:35:2a:39:
58:d8:07:ea:07:a1:9c:41:f8:56:16:33:2a:db:43:
9a:30:13:74:c5:e9:4a:cd:65:37:46:1c:0e:8b:96:
e4:ef:80:32:1b:4c:e5:c7:d4:51:07:03:fc:16:ad:
18:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:66:F8:8F:63:E9:39:66:4B:E5:5C:7F:8D:C6:6E:86:71:79:DE:C6
X509v3 Authority Key Identifier:
keyid:D7:F7:F1:6B:05:A1:12:31:51:A6:77:A4:7A:C2:D8:D9:06:1D:F3:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1_fxawWhEjFRpnekesLY2QYd85A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0227b7-54ca-4f56-be26-6cbe949532e4/1/0Wb4j2PpOWZL5Vx_jcZuhnF53sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0227b7-54ca-4f56-be26-6cbe949532e4/1/1_fxawWhEjFRpnekesLY2QYd85A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.24.0/23
185.118.27.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:1e:92:5b:1e:e7:2c:49:13:40:bd:90:f4:d0:e6:a2:e0:ca:
c3:04:67:2f:47:7a:a4:dd:01:db:8e:75:d9:ad:af:8b:85:6f:
4a:80:13:f6:29:4e:b0:bf:a6:a7:c0:5c:37:84:ed:6e:7d:c2:
0f:ae:64:31:8b:56:4e:db:05:94:fe:82:10:9c:04:0d:7d:14:
a6:9d:23:ef:d1:62:a9:bc:cb:c5:88:21:c5:7c:f1:c9:5d:08:
1e:55:eb:a4:4c:56:26:79:9b:0a:da:c9:75:e7:9b:7d:ab:18:
41:8f:1c:4b:05:ac:1e:ab:a4:96:c6:92:c4:6a:2f:df:e6:ca:
cb:77:8b:13:97:c1:89:c9:dc:72:63:45:97:a5:04:32:66:9a:
11:aa:b1:02:2d:6e:57:d0:40:61:cb:88:aa:ac:2a:53:d8:6a:
6c:79:6e:a8:d8:b6:ca:40:2f:a4:da:65:3a:57:43:1c:1a:51:
24:51:8d:30:17:dd:1d:6f:63:bc:86:27:a8:9e:f7:05:1b:87:
9a:10:41:0c:69:db:8d:11:f1:f9:ee:47:97:a3:d8:6a:70:8e:
67:f6:cf:45:95:2f:7a:52:d8:c3:93:d6:eb:b4:02:df:f3:18:
11:b3:87:b8:4a:d9:b1:25:b5:a5:32:d0:28:78:45:ce:63:b2:
95:11:f7:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-fra.rpki-client.org