Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0GySzl1iNur9WLcT6JTme-N9PeI.roa
File: 0GySzl1iNur9WLcT6JTme-N9PeI.roa (raw, json)
Hash identifier: wVZpRNjklwKKN76MiE0WAZE4fGs5Y9YXsxhjsI9UaFM=
Subject key identifier: D0:6C:92:CE:5D:62:36:EA:FD:58:B7:13:E8:94:E6:7B:E3:7D:3D:E2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07593A5A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0GySzl1iNur9WLcT6JTme-N9PeI.roa
Signing time: Mon 28 Mar 2022 08:26:15 +0000
ROA not before: Mon 28 Mar 2022 08:26:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212830
IP address blocks: 185.128.52.0/22 maxlen: 24
194.124.68.0/23 maxlen: 24
194.124.70.0/23 maxlen: 24
194.124.68.0/24 maxlen: 24
185.223.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123288154 (0x7593a5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 28 08:26:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d06c92ce5d6236eafd58b713e894e67be37d3de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:14:94:3a:de:5d:09:c0:0e:68:81:30:d0:b4:
e7:7a:69:f2:7f:d9:51:7c:96:a8:3f:6e:0e:09:54:
2f:9f:d7:d2:1f:a8:4f:5d:81:8f:7f:fe:bd:a3:70:
78:37:ad:57:e5:95:27:61:dd:f0:0f:bf:67:51:49:
8f:db:55:f3:9a:e0:0b:00:95:89:5d:d4:fc:ca:53:
79:a8:aa:a2:05:d8:13:ad:73:19:b2:9a:ab:22:2f:
07:c3:ed:f1:b1:bd:2c:71:3f:d0:a5:96:46:5c:df:
5f:32:5e:8d:cb:b4:94:e6:0f:b2:9c:30:ce:ce:a3:
7d:4e:f5:8c:ac:bc:11:d3:34:c2:aa:97:96:96:16:
4b:01:2a:d8:61:77:25:11:8a:9e:9a:3f:89:90:5b:
4c:c7:93:b2:b3:61:b1:99:ac:6a:2e:ac:32:ce:ae:
65:a2:11:33:6d:e7:71:b8:d8:f0:de:98:2b:46:f1:
24:84:23:66:e6:e4:9b:17:c6:0c:71:68:79:0b:29:
7a:bc:99:7a:63:87:0a:d4:54:b4:3e:c3:17:df:9f:
dc:7c:41:bc:fa:f9:c7:90:be:1f:f8:36:94:9f:1c:
db:57:64:bf:55:41:d5:8b:a6:ef:b5:05:66:e0:2d:
20:b5:11:83:38:f7:62:2b:07:5e:7c:a4:c6:93:e2:
2d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:6C:92:CE:5D:62:36:EA:FD:58:B7:13:E8:94:E6:7B:E3:7D:3D:E2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0GySzl1iNur9WLcT6JTme-N9PeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.52.0/22
185.223.60.0/22
194.124.68.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:89:2b:fb:2e:01:5c:b5:9f:9e:ee:88:cf:bd:64:60:76:dc:
bb:b0:32:b3:9d:ba:77:5d:af:7e:ea:75:8a:2b:e6:20:91:ae:
be:e8:37:c1:69:3b:3d:9a:03:cd:b6:00:49:d5:67:b1:f8:bb:
95:a0:e9:7e:31:1b:27:b9:bb:f9:34:f5:26:c0:52:86:f9:1b:
98:60:96:db:7c:92:93:40:2e:c1:1b:6e:0e:a7:97:e3:cd:a1:
07:90:08:f3:8f:52:cb:c3:01:03:1d:e4:aa:b2:c0:9d:42:4b:
66:c2:e3:ab:a5:9f:ec:4f:5e:5c:13:70:8b:78:b8:ac:b3:17:
f2:67:e4:ac:9e:a6:0f:ab:0f:b1:b7:34:cc:e0:b2:c7:e9:b5:
27:53:5f:58:b7:2a:7a:83:5a:cc:2c:4e:e5:d1:d2:6a:91:96:
3f:6b:a6:1e:34:96:0b:96:ae:7e:72:0b:8f:41:a9:65:7e:be:
88:42:d8:2d:8b:27:af:09:3c:51:ed:8c:16:cb:4d:8f:c4:c2:
ba:d2:c4:cc:6b:5c:b8:fc:f2:f3:4e:35:d3:c9:16:e9:24:e1:
4d:eb:e9:c7:6d:9d:be:93:20:8e:49:b7:91:6b:fe:81:8d:64:
b6:1e:cf:5d:a6:9c:96:a7:23:e8:fa:8d:f5:ca:b5:6e:2d:05:
bd:7f:d7:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org