Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/0GEQPgs5I_JCYYQi0w_SLBvv0ws.roa
File: 0GEQPgs5I_JCYYQi0w_SLBvv0ws.roa (raw, json)
Hash identifier: SZVy8e0rHOJN3U1t7GE8CJrn0p7nSyFnPkimXd1ZH/I=
Subject key identifier: D0:61:10:3E:0B:39:23:F2:42:61:84:22:D3:0F:D2:2C:1B:EF:D3:0B
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03261C52
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/0GEQPgs5I_JCYYQi0w_SLBvv0ws.roa
Signing time: Sat 01 Jan 2022 16:04:22 +0000
ROA not before: Sat 01 Jan 2022 16:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57371
IP address blocks: 185.200.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52829266 (0x3261c52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d061103e0b3923f242618422d30fd22c1befd30b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:37:28:89:53:2d:8a:96:a3:75:ab:cd:c4:a2:
bd:db:b1:53:67:73:67:b8:b0:7d:ad:a7:0e:f7:3c:
4c:07:35:50:71:e9:53:54:73:6a:f4:4f:d6:f0:c1:
ca:4e:ed:99:69:c8:e2:14:b3:68:66:31:68:f6:8f:
14:4d:e2:c7:6f:3d:00:bb:b0:27:98:73:9a:a0:80:
41:30:c6:2f:1f:6d:a9:4a:a3:a7:c4:4b:74:25:30:
7d:8a:95:d7:f8:c5:59:da:94:8b:d6:ca:d3:8b:a9:
9c:ef:59:90:cd:90:e2:30:2c:69:3c:12:1d:9d:14:
a3:12:1e:f2:49:e5:69:bd:3b:9f:36:fa:10:dc:31:
a2:85:11:73:28:b5:d5:67:89:ce:be:8b:c7:a4:68:
40:97:a6:04:02:a6:a5:69:79:99:fb:46:44:5c:ed:
d9:39:c8:c1:06:e1:af:83:72:85:d1:79:06:54:4a:
b6:a8:86:3d:4a:02:43:45:2b:44:56:52:bb:ed:70:
04:81:eb:c0:02:cc:24:7d:49:fa:a0:94:c8:3d:b0:
2d:7d:f9:df:8e:f7:38:83:13:91:c6:47:96:c0:ce:
f2:68:23:3f:4f:4e:2a:4a:fc:cd:98:54:15:fb:66:
56:1b:39:63:d5:a6:ce:6c:f9:ce:91:65:c3:c0:c9:
39:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:61:10:3E:0B:39:23:F2:42:61:84:22:D3:0F:D2:2C:1B:EF:D3:0B
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/0GEQPgs5I_JCYYQi0w_SLBvv0ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.189.0/24
Signature Algorithm: sha256WithRSAEncryption
05:61:b8:8f:1a:1d:1a:c5:ea:4c:f4:04:aa:36:6b:b4:ba:e1:
c7:cb:6a:b6:f7:0f:9b:ac:9c:ed:57:55:39:8b:d9:69:4b:64:
b3:22:c3:6e:20:89:c8:d7:d2:b6:5b:96:98:86:be:68:31:f7:
b2:7c:38:49:b0:b3:c4:c3:4e:57:ca:b0:bb:d3:ca:fe:f5:34:
97:fc:17:f6:8d:ef:ef:66:5e:d0:c8:5d:f1:68:7f:71:ee:ea:
47:0a:ff:f2:b6:7a:4c:15:af:d7:dc:80:84:a5:6d:7e:3a:7d:
10:3f:80:6c:7f:35:6f:6b:8d:a2:3c:ab:79:0f:d1:f5:26:0b:
93:87:77:74:de:42:e9:ce:75:c7:06:51:5b:4f:97:05:1b:7a:
30:b6:2e:a6:a5:67:4f:0c:5e:1d:6f:2b:d0:54:4f:2e:d0:05:
ae:10:46:92:2f:48:de:9e:ac:94:a1:8a:59:d4:4c:ab:3c:0b:
cc:7a:fe:86:ab:68:16:3d:33:df:7e:b8:dc:58:ea:45:16:14:
ea:07:9e:cb:00:a7:af:2a:fd:01:42:01:49:64:e0:91:fc:36:
b1:47:c1:f2:ac:7f:7b:23:a3:9d:95:47:6b:89:ac:30:5b:6f:
cd:86:53:06:58:fb:79:d4:a2:f0:38:c9:f2:c2:12:79:12:f8:
fb:e1:07:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org