Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/0CdGbR-gad2PnCnLORybp-T0PXg.roa
File: 0CdGbR-gad2PnCnLORybp-T0PXg.roa (raw, json)
Hash identifier: 7KYo9q2RELCB75+5FFvgSIbY2SijxTJGtMNPRNuEgXw=
Subject key identifier: D0:27:46:6D:1F:A0:69:DD:8F:9C:29:CB:39:1C:9B:A7:E4:F4:3D:78
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0C2DD149
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/0CdGbR-gad2PnCnLORybp-T0PXg.roa
Signing time: Mon 23 May 2022 17:37:30 +0000
ROA not before: Mon 23 May 2022 17:37:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.255.56.0/23 maxlen: 24
185.240.132.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204329289 (0xc2dd149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: May 23 17:37:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d027466d1fa069dd8f9c29cb391c9ba7e4f43d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b5:26:25:dc:7c:ec:bc:fa:db:02:29:f2:2b:
84:e4:c2:cf:4d:02:d8:e8:ed:c4:0c:32:10:c8:a7:
48:69:6a:2f:f8:fa:76:9e:dc:7f:50:2f:e1:33:49:
f3:55:da:b2:cf:c6:c0:34:27:49:3c:18:db:f8:6d:
39:ce:72:f5:62:d0:64:78:70:ab:97:17:bc:25:45:
b8:7b:09:82:28:91:bf:01:74:3e:26:ec:4a:f2:d2:
f1:23:19:84:f5:76:aa:91:ca:bb:e5:2e:5b:53:ac:
94:2d:7a:0d:9d:de:6c:53:f1:8a:d2:34:c7:a1:26:
ff:43:40:a7:cd:41:5f:ea:8f:ba:04:3b:41:a4:e1:
47:cd:df:ff:dc:31:53:a5:fc:1e:6a:c6:06:1b:30:
dd:e8:9d:8a:3b:c0:e2:e9:2d:7d:25:76:c3:e4:38:
44:27:24:38:f8:e6:67:d0:fe:ad:cf:c1:76:9e:3d:
4f:0b:3f:80:d2:2b:f5:ea:9e:9e:f8:c2:f1:86:7e:
4e:57:2b:c2:4d:6b:1f:72:0d:25:e5:5c:19:ef:ea:
6b:59:42:36:e9:fa:b5:01:84:b4:e0:e0:a9:17:48:
58:0a:ac:45:0e:77:f1:1a:f9:54:2a:94:9d:20:27:
f0:69:2c:5f:54:e6:cd:30:0d:52:e6:47:a1:ce:73:
da:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:27:46:6D:1F:A0:69:DD:8F:9C:29:CB:39:1C:9B:A7:E4:F4:3D:78
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/0CdGbR-gad2PnCnLORybp-T0PXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.132.0/23
185.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:16:9b:c9:dc:42:65:69:86:e6:c9:27:75:94:13:29:23:28:
ec:b7:60:38:74:41:0d:64:51:99:77:13:50:ad:b9:a8:b8:85:
0e:a6:a9:6b:ab:54:19:f9:ed:15:96:21:27:ab:04:32:69:d3:
d3:47:e5:b3:9e:90:58:4d:e5:80:5f:4f:cf:6f:7b:59:37:d4:
15:f6:dd:2f:48:71:68:cd:98:60:79:e6:de:c4:0a:ec:c0:f3:
3d:ef:38:95:7f:42:f5:eb:61:40:6a:eb:da:10:d1:b0:f5:49:
9e:15:b8:8b:d7:31:eb:2a:f5:7f:90:d8:ce:25:72:27:23:3b:
bb:87:02:8a:01:f9:95:a9:e3:88:23:77:e7:6c:bc:46:24:4c:
33:b4:44:ff:ae:2a:f6:c8:82:7c:ee:e8:d3:36:cd:7c:c8:45:
54:93:2f:06:35:c3:c2:93:c3:e4:3d:e8:36:8a:b8:ed:a4:3d:
75:7c:fa:36:86:bb:58:6b:b0:8a:c2:30:6f:16:7a:eb:6d:1e:
ca:8c:53:56:ae:1f:c8:56:78:72:87:6e:e6:63:fb:26:9e:88:
60:48:de:8f:5e:c5:3f:17:d5:b3:45:30:83:7d:39:6f:c7:89:
6f:5e:86:2b:78:90:6c:96:7b:94:2b:e6:eb:75:ff:bd:5d:04:
fb:8c:36:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org