Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/3DqSYZxvVLGrEuvimIDgQa2HcVQ.roa
File: 3DqSYZxvVLGrEuvimIDgQa2HcVQ.roa (raw, json)
Hash identifier: Di3PJ0s8xXybc/7SKRo2htmFPvB4oubrgTm1mb2FZYU=
Subject key identifier: DC:3A:92:61:9C:6F:54:B1:AB:12:EB:E2:98:80:E0:41:AD:87:71:54
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0768086D
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/3DqSYZxvVLGrEuvimIDgQa2HcVQ.roa
Signing time: Sat 02 Apr 2022 17:58:50 +0000
ROA not before: Sat 02 Apr 2022 17:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 185.223.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124258413 (0x768086d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 2 17:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc3a92619c6f54b1ab12ebe29880e041ad877154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:02:1e:a9:ac:fb:ba:c9:00:d1:0e:e8:dc:33:
7d:ce:97:f0:0c:d7:07:46:a1:7b:0a:15:00:24:92:
83:71:91:87:e6:a7:92:eb:60:2b:27:d6:9b:ac:a6:
5f:6c:0a:b3:4a:98:db:b1:67:5c:7a:55:c7:d8:18:
51:60:63:95:c2:01:62:e4:be:0f:2d:ea:e1:e0:64:
52:28:ba:ba:69:5b:da:7f:50:5b:f2:0c:ec:cb:3e:
f0:01:24:1c:f7:7b:8b:01:fe:ef:9f:e4:a2:98:41:
f5:9e:15:cb:b7:67:b8:9f:53:b5:22:e8:cb:e2:4b:
b8:d0:35:70:d0:3e:22:90:7f:53:75:99:19:b8:9e:
83:a4:6f:99:27:50:8a:3e:d7:7a:31:e5:2b:e6:47:
10:8b:b5:79:07:33:57:7d:ea:fc:0d:ef:a6:f6:99:
0f:fd:6b:b2:ae:40:ec:3b:b1:44:05:ce:8d:c4:af:
1e:2c:98:dd:4a:d9:39:e3:44:6c:6e:fd:28:1e:d2:
98:ce:d7:be:85:68:4e:24:df:83:58:e1:b0:4a:66:
f2:d6:69:3d:51:93:b8:0f:c2:dc:29:73:6b:fc:ff:
bc:f2:45:5d:a9:08:92:c9:c8:09:6e:78:5c:b7:cf:
65:89:df:2a:53:84:f3:70:c9:34:75:fa:5b:87:fc:
ca:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:3A:92:61:9C:6F:54:B1:AB:12:EB:E2:98:80:E0:41:AD:87:71:54
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/3DqSYZxvVLGrEuvimIDgQa2HcVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.79.0/24
Signature Algorithm: sha256WithRSAEncryption
38:5b:f5:ea:cb:c9:99:16:53:cd:8c:45:69:b0:df:44:cc:dd:
55:29:d0:94:73:64:05:49:20:f1:6c:ce:99:b4:60:e8:8e:c1:
82:8f:44:8b:88:e7:b0:81:1a:91:b6:d8:37:74:30:f7:09:a4:
ad:fd:bc:1e:95:71:a7:a7:c8:0d:04:bf:a6:4f:3f:3e:c3:81:
b0:33:6a:d6:f1:ab:56:14:6a:8a:c5:f0:2c:2e:3b:0e:86:2f:
c1:88:51:8a:70:3a:55:32:c5:52:c5:72:e9:95:2a:a4:ed:42:
d2:b1:fb:01:bd:9d:f9:1a:5f:2c:2f:d0:8f:bc:31:d5:b5:ab:
fa:fd:44:1e:7a:79:78:20:8e:3a:59:8a:e0:67:4c:78:6f:03:
fc:f6:98:da:7a:5a:60:c5:6e:23:2f:0a:30:ba:de:38:77:d9:
c5:db:e0:7f:6a:02:e0:f7:24:eb:ca:1d:94:3b:79:c3:7b:7a:
08:d4:25:8b:22:dd:7d:21:2d:96:4b:a1:db:3d:dd:cf:26:2e:
c7:bc:31:5d:16:59:42:4a:35:93:bf:f4:7c:e5:d2:6c:66:f5:
f8:c3:8d:89:36:42:0a:e5:8c:8d:53:b6:d8:c0:e2:2b:c4:79:
ee:01:49:70:a6:f3:64:6c:9f:2f:b2:28:77:3c:57:d9:be:5b:
d5:07:0f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org