Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1_XKoR9-NneS4i6BzpTrqtm0VL0.roa
File: 1_XKoR9-NneS4i6BzpTrqtm0VL0.roa (raw, json)
Hash identifier: s+tnZ1UbR3qAXOOjwRbd82k8LoM00RBPTc7OAhTXXfg=
Subject key identifier: D7:F5:CA:A1:1F:7E:36:77:92:E2:2E:81:CE:94:EB:AA:D9:B4:54:BD
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0756DB3A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1_XKoR9-NneS4i6BzpTrqtm0VL0.roa
Signing time: Mon 28 Mar 2022 08:25:08 +0000
ROA not before: Mon 28 Mar 2022 08:25:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.240.123.0/24 maxlen: 24
194.124.69.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123132730 (0x756db3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 28 08:25:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7f5caa11f7e367792e22e81ce94ebaad9b454bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:39:66:90:7d:bf:f5:68:31:29:da:43:df:77:
ab:22:1f:d7:6c:f1:c5:2b:ee:0c:bf:bf:48:f0:a3:
48:ec:fb:cf:11:94:9f:fe:cc:31:7c:37:13:dc:95:
6f:c4:b2:2e:42:42:85:6e:25:42:fa:a6:5c:a5:8a:
22:17:67:ed:3b:2f:a4:6e:0a:5a:2b:15:8e:c5:70:
20:3a:5b:4d:21:e2:a2:b0:d5:bc:c0:7c:8c:9a:e5:
9a:2e:7e:67:65:ef:0e:88:25:22:69:df:08:bf:05:
5e:65:4d:5f:84:3b:15:f0:17:f6:05:fa:d3:24:cf:
d1:2b:3c:28:34:bc:f2:64:2a:e4:25:ed:96:f3:e2:
e6:62:85:e7:29:f2:4d:1c:e1:49:bd:31:b1:1c:42:
e8:18:02:45:8d:a6:ca:75:39:f6:02:87:c6:3c:2f:
30:9b:ab:d3:ad:5a:b6:5a:c1:71:09:82:be:55:a3:
a0:47:00:80:a5:2f:7d:0f:ed:cd:d0:a3:9a:b5:69:
b7:99:f6:8f:69:75:98:67:5e:f2:06:37:92:6f:cc:
36:7c:32:b1:fb:98:f8:80:7f:dc:e1:ce:87:e6:ac:
1f:9f:6a:aa:be:10:3f:5d:96:ab:42:35:43:48:6b:
79:22:83:65:f7:1c:2b:af:41:85:57:24:35:06:aa:
45:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F5:CA:A1:1F:7E:36:77:92:E2:2E:81:CE:94:EB:AA:D9:B4:54:BD
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1_XKoR9-NneS4i6BzpTrqtm0VL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.76.0/24
185.240.123.0/24
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
38:e1:ba:41:34:1c:c8:0e:8e:29:83:d4:3b:a4:3a:63:27:1f:
3e:69:f7:a6:8a:ce:4a:69:13:cf:76:cc:38:d0:6e:29:72:3b:
a9:12:93:33:43:c0:62:90:e2:81:b7:82:b8:ac:20:26:21:ee:
20:8b:8d:ab:be:80:00:7a:e5:14:c0:52:2e:fe:fd:af:a2:c3:
77:f1:d2:bf:fa:9d:70:ce:ab:be:78:ad:32:d6:53:33:49:cf:
7e:2e:97:f5:b7:72:06:33:70:47:10:8f:68:ee:32:d0:70:5d:
16:3c:fc:fc:c9:79:3b:1a:36:04:eb:b3:2e:b3:fb:fd:f6:11:
f5:0f:81:f3:a2:f1:3f:4d:e0:7e:5e:b8:2e:23:69:04:c7:33:
87:44:43:31:43:d9:42:76:89:35:f5:76:53:91:e9:03:31:63:
2f:68:d8:20:c1:0c:be:ae:34:2d:06:0a:33:9a:20:59:f7:65:
83:22:76:0b:44:dc:ea:28:0c:ff:97:a0:75:cf:c1:d6:e8:21:
cf:8f:a2:e9:9f:92:d1:41:7a:11:e3:1b:3e:2c:fa:44:94:44:
ac:50:20:e9:46:7d:b9:f6:c0:6c:39:20:9d:e5:96:f7:7b:a1:
e5:7c:28:de:c0:89:d2:e8:ce:43:8c:bc:75:ee:2b:cc:28:9e:
bf:bd:0e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org