Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/33Xva34KfTyJDq4VNnuJwcmnv1Q.roa
File: 33Xva34KfTyJDq4VNnuJwcmnv1Q.roa (raw, json)
Hash identifier: 1efIXVaBIUSz/di6p1or+tIsWVlmgO6rEPZ6WJe7Z2o=
Subject key identifier: DF:75:EF:6B:7E:0A:7D:3C:89:0E:AE:15:36:7B:89:C1:C9:A7:BF:54
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0720C514
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/33Xva34KfTyJDq4VNnuJwcmnv1Q.roa
Signing time: Wed 09 Mar 2022 09:32:03 +0000
ROA not before: Wed 09 Mar 2022 09:32:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.206.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119588116 (0x720c514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 9 09:32:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df75ef6b7e0a7d3c890eae15367b89c1c9a7bf54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dd:df:a3:f0:df:aa:59:d4:7a:e8:e7:77:3f:
64:bb:49:c4:7f:00:03:f4:a6:99:bc:65:96:ae:d6:
44:cd:bf:9a:53:37:fa:3a:a0:8a:13:3f:98:0b:c9:
2f:05:7b:3c:56:be:d8:7b:e5:55:69:fe:aa:14:c3:
a1:91:30:35:86:0f:20:e0:82:16:b9:d4:bf:aa:6b:
e6:d5:d0:47:fa:47:7b:15:4a:35:7e:ce:31:74:05:
56:e2:04:f1:3f:f6:86:0b:95:80:da:44:37:7d:bf:
a7:65:bd:0d:bf:d1:ab:75:48:6b:c5:58:17:ee:4b:
16:75:c7:a6:26:dd:f4:14:38:f0:6e:96:10:4b:4b:
d7:84:6f:14:ca:03:cc:9e:c5:7d:ad:f2:2f:99:70:
56:87:fc:cf:a7:78:62:7c:27:d5:c0:90:14:3f:30:
08:e7:7a:c6:a1:90:e1:e6:bd:ee:7f:23:5d:bf:77:
ad:74:31:56:e1:e9:e5:7f:53:e8:2b:5a:d8:78:60:
b0:6f:96:fc:dc:bc:dd:cf:ec:63:85:2e:45:cd:31:
0e:6a:e3:8b:46:04:c2:70:80:4d:30:58:91:43:30:
d1:a0:77:a9:e3:0d:9a:b2:15:a7:ef:3e:2c:f3:83:
ba:f4:40:16:98:00:f3:0b:7f:36:9b:9e:ff:56:60:
52:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:75:EF:6B:7E:0A:7D:3C:89:0E:AE:15:36:7B:89:C1:C9:A7:BF:54
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/33Xva34KfTyJDq4VNnuJwcmnv1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.248.0/24
Signature Algorithm: sha256WithRSAEncryption
12:a1:e7:23:72:68:37:a0:e0:5d:32:3e:15:f6:46:91:5e:ca:
6d:30:86:56:ac:ab:0c:2e:50:05:52:59:09:63:9b:b9:f0:8e:
17:7e:4a:37:2e:0f:eb:ad:1c:18:65:5e:f3:08:70:d7:e1:58:
67:a8:d7:81:e9:f9:26:bf:e2:63:7e:40:c5:2b:1f:cb:9e:da:
2c:17:f0:16:c0:86:b0:d6:2c:dd:89:7c:f2:d4:d4:b8:e2:10:
f4:49:d1:20:22:dd:40:40:05:82:9c:5a:89:90:07:99:ef:d8:
a6:ab:ca:a1:76:33:70:53:30:e6:9d:7f:de:01:b0:29:11:5b:
57:ac:2b:09:9b:77:d8:ae:c7:f0:fc:6f:2b:08:89:b6:db:f1:
d9:64:7c:20:f6:7a:66:b9:cd:a4:8f:81:d6:db:ca:58:59:66:
47:9a:c2:c0:ee:58:d4:4a:36:af:66:8e:33:b9:ea:30:5f:58:
60:f1:26:89:7b:50:75:d9:ae:8f:9b:c5:51:23:f0:ea:20:c0:
6e:99:11:d2:cf:0e:af:61:07:05:4d:4b:a0:10:e2:9f:73:01:
f9:c4:9a:20:71:36:7a:33:19:f8:2c:07:dc:50:4c:f4:3e:c9:
b4:6e:4e:19:37:3c:87:c3:f1:33:da:1b:d0:aa:32:72:10:22:
66:f3:de:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org