Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0rLCTv-vpxT5Q7dH-G3hgD2Vy7I.roa
File: 0rLCTv-vpxT5Q7dH-G3hgD2Vy7I.roa (raw, json)
Hash identifier: YicCaaYIWsVy4FdPQ6MnqTID5wWCnfr9CVu4CDTub+E=
Subject key identifier: D2:B2:C2:4E:FF:AF:A7:14:F9:43:B7:47:F8:6D:E1:80:3D:95:CB:B2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 08379EE6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0rLCTv-vpxT5Q7dH-G3hgD2Vy7I.roa
Signing time: Mon 06 Jun 2022 11:55:20 +0000
ROA not before: Mon 06 Jun 2022 11:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207633
IP address blocks: 185.194.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137862886 (0x8379ee6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 6 11:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2b2c24effafa714f943b747f86de1803d95cbb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:78:f0:5a:ed:10:d4:7f:c7:c2:01:5d:44:0b:
26:e9:79:ad:9a:bf:64:e9:67:8a:d3:c4:62:7e:42:
f5:ef:72:ba:f2:6a:fd:d1:85:d0:c3:91:74:c5:46:
a8:a6:30:65:c7:7e:cc:87:28:55:c1:62:da:54:83:
6b:64:50:59:8a:58:6b:b6:bc:5b:d7:89:6c:b0:43:
a9:8d:b7:96:2e:e4:80:71:1b:d7:d8:34:68:09:b0:
c6:7d:da:d6:5a:34:d4:2b:49:b2:a6:ca:e7:51:bf:
54:32:11:a0:ef:cb:91:9c:e3:d7:22:02:04:50:4b:
85:fc:c1:8a:43:f4:a3:50:00:d3:d5:b4:46:89:e9:
2b:bd:ce:0a:e3:83:ee:e2:7d:7d:ab:d6:d6:34:37:
70:a9:29:96:16:28:71:67:53:7e:ed:76:0f:c9:be:
3f:0b:02:93:d3:70:0d:ae:fc:a4:20:e1:13:23:14:
6e:13:73:17:cf:f2:6f:8e:b9:9a:58:68:4c:1a:92:
09:11:92:4f:c2:bc:3d:ac:13:b0:b3:ed:54:ab:30:
9b:de:dc:d2:b2:92:38:21:fc:18:d4:0e:d2:66:43:
79:8a:f4:82:9a:e3:62:4b:b3:79:06:98:f9:c0:80:
7f:52:a7:cd:9f:d5:5f:21:ca:48:d5:22:39:d2:50:
da:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B2:C2:4E:FF:AF:A7:14:F9:43:B7:47:F8:6D:E1:80:3D:95:CB:B2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0rLCTv-vpxT5Q7dH-G3hgD2Vy7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.30.0/24
Signature Algorithm: sha256WithRSAEncryption
97:03:ea:a5:05:5e:04:ac:15:7b:e7:c5:8b:5f:50:c5:5d:36:
c1:d7:ec:5c:01:cb:e2:98:97:b3:dd:42:8e:8b:f0:c4:a7:bb:
d0:18:24:49:5c:9c:78:ed:0f:ad:e9:23:63:aa:60:6d:bf:a0:
db:01:14:76:8e:2e:4a:05:a2:91:55:15:0c:43:b9:e9:b7:13:
d1:31:97:e4:cd:05:12:8d:68:d5:cf:2d:7f:fd:8f:19:87:36:
b3:d6:d3:e3:68:9b:a0:d8:90:79:fa:75:b2:2d:a4:78:b4:61:
3f:30:68:5e:b9:04:b2:8a:3c:bc:4c:8d:f7:11:0c:b5:b9:26:
50:42:7c:78:8d:bc:51:ae:d1:56:a6:ac:c2:3e:75:b9:77:0f:
d0:85:3a:36:21:4c:08:87:83:32:0d:b7:27:9b:8d:da:cd:ed:
7f:41:81:8c:d8:a5:d8:40:d1:4a:c1:e6:c1:32:f0:c7:74:fd:
30:5b:85:9a:09:aa:ce:14:a4:7d:ae:6e:c4:34:be:23:a2:b3:
4f:f3:9e:3a:4c:80:89:92:cb:32:61:b0:74:93:6c:15:c3:25:
54:df:d6:bb:38:76:ea:b1:2c:8e:07:2b:f0:70:cd:f0:af:98:
c6:6d:12:d8:b3:e3:7e:8e:49:4b:b5:8a:dc:1f:11:d2:53:a9:
18:eb:be:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org