Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0rEKwPv7jFx-frZUlQvkRkNzXmc.roa
File: 0rEKwPv7jFx-frZUlQvkRkNzXmc.roa (raw, json)
Hash identifier: xH44y3sCtvcPs+XLAbUoyXyTq9rfVi367kZVU9V5zio=
Subject key identifier: D2:B1:0A:C0:FB:FB:8C:5C:7E:7E:B6:54:95:0B:E4:46:43:73:5E:67
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0689982E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0rEKwPv7jFx-frZUlQvkRkNzXmc.roa
Signing time: Mon 17 Jan 2022 17:46:19 +0000
ROA not before: Mon 17 Jan 2022 17:46:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206275
IP address blocks: 185.225.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109680686 (0x689982e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 17 17:46:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2b10ac0fbfb8c5c7e7eb654950be44643735e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:96:87:b8:d3:97:32:4e:bc:9d:23:85:dd:7e:
b4:c2:da:13:c9:95:c2:8e:6b:26:40:3f:d9:a7:83:
6c:36:18:eb:92:e2:dd:6e:88:6d:e1:1f:96:1c:0e:
37:1e:91:83:83:f4:3a:cc:26:30:d3:09:67:41:e9:
9e:21:44:cd:2d:a5:9f:c4:cb:6b:15:41:5f:ce:8f:
6b:7b:36:8b:05:07:61:12:61:51:51:f6:27:ed:c3:
00:5a:55:f2:a9:85:20:d0:de:1d:89:31:c2:d8:79:
77:63:be:d7:ed:be:8e:22:23:04:11:9f:d5:e0:01:
31:37:04:54:77:8d:3b:00:3e:b5:ab:f2:02:9e:d0:
42:95:64:e1:ac:64:2b:87:73:73:d1:44:fe:2a:7d:
eb:18:fc:44:e1:ba:00:fc:a2:32:b4:79:1f:04:f9:
6c:1a:4f:b8:66:01:f0:06:85:61:73:f7:38:1b:76:
08:96:c2:dc:2a:ae:ef:e3:c4:75:9a:ca:9a:87:b2:
12:8f:ca:7e:58:1b:86:fa:6c:a3:11:b6:e4:cb:57:
a4:12:dc:d3:29:68:75:16:20:a1:54:6c:22:c1:72:
c4:dc:d7:03:1e:81:97:a9:42:38:9f:d9:bc:f4:95:
93:70:3d:cf:d7:53:f9:3e:68:58:b9:ba:23:6a:20:
c0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B1:0A:C0:FB:FB:8C:5C:7E:7E:B6:54:95:0B:E4:46:43:73:5E:67
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0rEKwPv7jFx-frZUlQvkRkNzXmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.3.0/24
Signature Algorithm: sha256WithRSAEncryption
66:c2:87:6e:67:77:5e:6a:e4:23:2d:bb:e1:db:1b:48:c9:f3:
3b:d4:f8:92:df:9f:69:86:15:26:78:45:3d:c6:77:5f:fb:0d:
77:1e:95:63:db:39:f6:6e:41:be:c3:ac:78:6b:2a:9d:5f:93:
d4:a2:91:ed:bf:84:01:40:43:f5:f2:ea:8c:35:03:62:ff:b4:
fe:c1:bb:6d:e4:bc:c7:ae:22:30:32:d7:59:f5:20:03:bf:61:
dd:df:8c:f3:c3:0c:0c:d2:8d:11:03:45:47:e0:40:f8:05:71:
64:ce:f9:de:4b:95:73:81:b0:4c:25:44:6d:8e:9c:42:61:91:
1d:7a:8a:4a:ce:4f:1f:e1:69:26:8b:6b:a7:b6:4d:37:44:4e:
44:56:50:31:3d:7b:d7:34:3d:9e:7b:de:fc:51:de:12:39:62:
6e:b4:75:1b:73:92:b7:1e:18:44:55:6a:92:b9:5c:03:33:18:
09:2d:8f:9a:b9:02:25:2a:40:8a:8d:14:1d:49:e2:f3:e1:41:
ef:6c:e9:dd:74:90:05:0e:db:a4:bb:5c:9e:f7:62:1f:c0:54:
fb:ef:85:b4:a5:22:51:4a:b2:7b:0d:3a:26:2e:3d:e6:fc:d4:
19:6b:22:34:ba:02:1c:97:3e:cb:ab:1c:49:8d:8e:80:3c:0a:
a3:de:4b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org