Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6a3d3e-25fd-42ff-a5fb-8b3bf8bf98eb/1/3pA6A7d8g9P8zKPjO2_CYBga-5I.roa
File: 3pA6A7d8g9P8zKPjO2_CYBga-5I.roa (raw, json)
Hash identifier: +dSUolmrm3MiL2E7w0u/51b6h8rV+zGpc3fCgZpmWgM=
Subject key identifier: DE:90:3A:03:B7:7C:83:D3:FC:CC:A3:E3:3B:6F:C2:60:18:1A:FB:92
Certificate issuer: /CN=24a30b60d23d74e8226bcd5e15dc5bf770ad307e
Certificate serial: 079AC547
Authority key identifier: 24:A3:0B:60:D2:3D:74:E8:22:6B:CD:5E:15:DC:5B:F7:70:AD:30:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKMLYNI9dOgia81eFdxb93CtMH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6a3d3e-25fd-42ff-a5fb-8b3bf8bf98eb/1/3pA6A7d8g9P8zKPjO2_CYBga-5I.roa
Signing time: Sat 01 Jan 2022 14:06:26 +0000
ROA not before: Sat 01 Jan 2022 14:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206549
IP address blocks: 185.181.224.0/22 maxlen: 22
2a0a:d480::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127583559 (0x79ac547)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a30b60d23d74e8226bcd5e15dc5bf770ad307e
Validity
Not Before: Jan 1 14:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de903a03b77c83d3fccca3e33b6fc260181afb92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:a8:44:e6:8d:77:64:07:be:6d:83:28:74:
87:ce:7b:a3:7f:52:53:32:31:24:31:06:bc:ae:27:
fe:eb:b9:c5:5e:1f:b6:4e:6c:8d:ec:84:04:d3:e8:
66:c8:d0:3c:62:37:bd:92:a9:d9:2f:f8:c0:51:9c:
eb:29:db:f3:af:d5:5b:3f:1f:db:09:2c:1c:c4:57:
d2:e7:3e:99:86:55:01:e2:54:31:37:29:17:43:15:
9a:b4:e8:84:5a:c4:30:4e:e7:52:81:dc:e4:45:70:
b4:02:d4:e7:11:6c:01:dc:7b:50:71:29:35:89:09:
52:1b:90:53:b4:47:e1:59:2d:66:58:4c:9b:41:4b:
93:65:f1:90:4b:dc:3e:aa:d0:d1:0d:4c:be:0c:b6:
90:0d:02:28:15:52:19:af:82:f6:17:92:56:a0:20:
03:f9:84:f7:41:44:3d:08:60:57:6d:cc:9e:80:89:
5e:a4:b0:34:83:68:1c:a9:b0:b4:4e:3d:eb:2a:30:
a1:6f:41:b5:23:aa:e7:ca:c9:00:c2:a3:6d:ef:24:
c3:61:43:cc:af:db:c7:19:74:b4:d7:2f:49:01:67:
61:a4:39:ab:ce:c9:db:6c:94:66:00:60:a8:b3:14:
d0:41:84:35:91:5c:22:80:a5:91:80:5a:bb:9a:b2:
ba:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:90:3A:03:B7:7C:83:D3:FC:CC:A3:E3:3B:6F:C2:60:18:1A:FB:92
X509v3 Authority Key Identifier:
keyid:24:A3:0B:60:D2:3D:74:E8:22:6B:CD:5E:15:DC:5B:F7:70:AD:30:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKMLYNI9dOgia81eFdxb93CtMH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6a3d3e-25fd-42ff-a5fb-8b3bf8bf98eb/1/3pA6A7d8g9P8zKPjO2_CYBga-5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6a3d3e-25fd-42ff-a5fb-8b3bf8bf98eb/1/JKMLYNI9dOgia81eFdxb93CtMH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.224.0/22
IPv6:
2a0a:d480::/29
Signature Algorithm: sha256WithRSAEncryption
1f:8e:3d:a7:1d:c8:00:68:b7:97:44:b9:b7:6d:d9:13:5c:2a:
32:d8:f3:9f:3e:e0:73:d5:5a:6d:43:5a:3e:b4:11:11:ea:17:
74:9a:75:b5:1c:32:26:7c:3f:8b:ff:49:da:45:4f:30:24:19:
b6:48:29:24:a7:b1:ba:1b:fb:df:e6:ae:69:ae:ec:72:ee:47:
03:43:a7:03:f8:e6:71:09:95:3c:09:eb:de:c5:da:4a:ca:ff:
5f:27:42:8e:26:f2:83:ae:35:a7:7b:1d:76:56:00:3f:df:31:
0b:9a:69:b0:16:6a:09:d3:ab:ea:5a:c1:33:d0:95:a9:81:1b:
a5:e0:ef:ed:e6:ab:01:ef:08:8b:2b:51:f2:3d:1f:b0:cd:4d:
2e:ad:4f:a3:4b:c7:82:e8:32:1d:b0:c1:37:c0:65:0b:4d:8f:
6f:50:79:63:39:e5:7f:76:06:99:bb:cb:66:a3:33:16:f7:d1:
fb:74:c5:79:5b:46:b6:8c:f3:8c:df:81:3c:85:7d:b0:a5:35:
af:b4:81:ab:95:78:69:c9:f0:11:eb:8e:4f:c2:0f:83:c9:d1:
37:a0:31:95:08:60:b6:04:d2:1b:a3:8c:dd:7d:c3:4b:59:ce:
b3:de:7a:c0:1b:18:a4:0d:12:56:a4:cf:bd:40:0c:e5:fc:f5:
d6:ff:5a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:57 2024 by rpki-client on console-fra.rpki-client.org