Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/10n_wedYNO-8CfoZMD3pGtx0W7M.roa
File: 10n_wedYNO-8CfoZMD3pGtx0W7M.roa (raw, json)
Hash identifier: XkkJGeg/CmHvl9gCG+YRLvuWUH6yIfZmTPWELoZfVxM=
Subject key identifier: D7:49:FF:C1:E7:58:34:EF:BC:09:FA:19:30:3D:E9:1A:DC:74:5B:B3
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0183D12E9E5CF821240F39D9492A7F5F448E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/10n_wedYNO-8CfoZMD3pGtx0W7M.roa
Signing time: Thu 13 Oct 2022 11:50:36 +0000
ROA not before: Thu 13 Oct 2022 11:50:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.206.248.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:2e:9e:5c:f8:21:24:0f:39:d9:49:2a:7f:5f:44:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 13 11:50:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d749ffc1e75834efbc09fa19303de91adc745bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e0:44:85:5b:d4:50:58:a4:d0:31:c6:e4:05:
ef:5a:14:87:77:0e:bd:0d:db:53:20:0d:63:c2:e5:
44:5b:40:a9:1a:9c:66:8e:b6:90:e3:bb:35:c3:9a:
ad:d2:11:65:07:93:c9:d6:ec:c2:c9:49:3c:e4:7a:
8a:10:06:a9:a3:72:30:b8:0d:95:f9:fd:cc:3f:bf:
b8:bc:43:7e:b0:33:72:e0:e1:5a:3a:75:ce:ea:c0:
54:80:9d:9f:7f:a6:cd:c1:02:24:59:0b:60:58:d4:
62:99:18:14:c6:17:58:17:57:f6:1e:00:f1:75:2f:
27:83:ef:8a:8e:04:f5:9b:14:54:1f:b4:3a:1a:dd:
99:4d:48:40:84:4e:b7:72:e2:5f:b2:e1:bb:a1:4b:
a1:f7:b3:3d:67:d7:30:b9:a2:b2:f7:a4:81:27:97:
c6:2c:14:62:4e:a9:37:b5:a0:89:ed:3f:e6:36:40:
53:30:1d:77:4c:59:4e:7c:7a:52:2f:35:24:0b:87:
d5:29:8c:2b:c5:1b:94:41:a6:30:7b:04:d7:85:87:
ff:73:fe:c7:99:c4:64:13:60:61:c4:0e:6f:60:bb:
82:8a:4e:47:3e:e0:09:9e:a1:07:01:10:00:2e:f3:
5d:2b:e6:86:a7:35:5f:2e:ac:3d:2e:90:8f:1a:63:
3b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:49:FF:C1:E7:58:34:EF:BC:09:FA:19:30:3D:E9:1A:DC:74:5B:B3
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/10n_wedYNO-8CfoZMD3pGtx0W7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.248.0/24
185.225.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:c1:c7:3f:a8:f3:6c:db:80:f7:1e:ec:43:b0:c3:40:b6:fb:
da:26:b2:7e:aa:37:e9:c8:d8:ba:51:0e:14:01:b4:8e:3e:79:
ef:67:7e:74:c4:b0:f2:7f:d2:39:b1:25:90:fe:75:3e:69:01:
43:f3:9f:f8:07:23:33:8f:5c:83:e0:f0:ab:6f:7f:fc:d8:46:
06:4c:5b:42:7e:ac:45:8f:45:82:f4:1f:1a:ee:da:ef:ee:0e:
b1:83:30:78:55:ef:95:82:1f:a8:31:67:d0:4d:e2:8d:e1:96:
01:ff:cd:2e:b9:c8:78:b3:ad:2b:7e:2e:a3:06:68:5e:53:bc:
e5:42:93:e9:d6:78:9e:a2:9a:c0:a6:63:c6:a6:17:1f:ab:dc:
1e:ee:2a:8f:3c:07:57:08:37:74:f5:0c:61:c6:9e:48:7b:36:
1e:4f:62:9a:3c:29:93:36:90:16:91:51:50:45:af:bf:0a:aa:
48:57:06:e3:88:9d:44:f1:52:b0:65:6b:92:7d:ea:29:e6:f0:
06:31:49:d5:54:5b:2a:f5:64:5e:28:be:cb:60:0c:74:33:94:
b4:05:0a:c2:06:51:30:94:cc:13:58:02:f8:cd:ae:48:c3:c5:
56:0f:c2:93:0c:f2:b8:68:d3:ab:b8:eb:1a:13:11:ea:c4:3d:
6f:0b:b2:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org