Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4qHyEb2Dj1u6_9NhJacBKiAnIcw.roa
File: 4qHyEb2Dj1u6_9NhJacBKiAnIcw.roa (raw, json)
Hash identifier: /HKjse6Ch0g6HgUs3A/rjrR8NyW0+AbHJlZz29Vb5OM=
Subject key identifier: E2:A1:F2:11:BD:83:8F:5B:BA:FF:D3:61:25:A7:01:2A:20:27:21:CC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01826DD3F435F4C0DBCBAE5859290F086854
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4qHyEb2Dj1u6_9NhJacBKiAnIcw.roa
Signing time: Fri 05 Aug 2022 11:46:23 +0000
ROA not before: Fri 05 Aug 2022 11:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 185.246.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:d3:f4:35:f4:c0:db:cb:ae:58:59:29:0f:08:68:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 5 11:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2a1f211bd838f5bbaffd36125a7012a202721cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:63:39:5f:33:ff:f1:37:46:bf:e4:c6:75:97:
01:8a:df:67:65:61:f7:80:e6:b8:aa:e0:f1:85:4e:
1a:c6:e3:a1:75:85:fd:7d:ab:99:e1:c0:96:be:f3:
d3:55:9a:bd:73:db:52:1d:07:f9:44:d1:fd:d1:de:
ed:0f:a7:8c:f1:30:8a:a0:8d:96:ad:b3:80:45:a5:
9d:96:bb:8c:f5:d9:24:0d:9e:3f:a9:52:e2:28:bc:
82:fb:fb:d4:2e:15:c7:dd:9c:b3:6c:2b:6b:9e:80:
0c:be:34:92:4f:f4:08:c8:07:29:b0:42:f8:7c:08:
84:42:13:ea:c2:d4:de:b5:92:e8:97:37:c7:7e:f9:
37:35:89:0a:91:bc:de:ae:bd:cb:93:fc:84:03:37:
e8:70:8a:46:44:ba:57:a7:8e:5a:e0:f9:a2:a5:67:
ae:6e:f2:5a:8c:ea:25:56:89:7c:02:3b:a9:fd:47:
43:53:7b:96:4b:3d:b7:3f:cd:0f:2d:17:9a:9f:b8:
00:28:cc:d4:34:1b:7c:0c:7f:fb:cd:1f:69:2b:f5:
6a:f4:98:e9:3b:af:d7:80:4c:68:72:ab:42:23:61:
82:c1:98:39:8c:3f:38:26:5e:63:ae:40:a5:91:16:
f2:7b:f3:2f:a1:4a:e3:98:30:41:f6:ac:f7:3c:9b:
8b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A1:F2:11:BD:83:8F:5B:BA:FF:D3:61:25:A7:01:2A:20:27:21:CC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4qHyEb2Dj1u6_9NhJacBKiAnIcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.114.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:80:ad:06:e7:4b:23:8c:25:5d:ec:8c:e7:08:b9:14:99:85:
ce:e1:38:c5:e8:73:4a:a1:e5:6f:e4:06:1a:a4:c1:fd:58:95:
6d:db:ec:d7:5a:38:b6:99:07:5b:39:b6:f7:8b:16:83:f3:f2:
b1:d3:60:3a:ce:27:7a:73:e3:e2:59:53:e1:5f:b7:f8:50:fa:
ee:48:29:13:5f:17:bc:08:a9:e8:7f:7d:26:ba:46:49:58:f1:
8d:45:bc:79:b9:fc:65:73:88:c9:61:d9:36:e8:e6:88:60:68:
22:3a:95:3f:a7:cd:b0:c3:1e:eb:30:68:94:89:9e:fc:32:38:
8b:94:38:21:98:b8:30:0e:30:36:55:f6:53:26:42:61:ee:f7:
e5:ea:33:0b:7b:28:a8:48:85:58:ec:16:1b:98:c6:5a:7d:e7:
67:e3:5f:1d:2d:b3:a1:fe:81:03:b4:a8:dc:0d:63:39:bf:c5:
3c:89:af:1d:0d:00:8c:14:dd:7c:ee:dc:1d:46:f4:de:9d:d6:
2a:7f:b1:9b:a7:0d:86:c7:35:8d:6c:1f:41:73:9e:53:95:be:
27:4a:80:74:b1:7d:57:d4:83:eb:43:50:46:d7:a1:9f:40:79:
6f:2f:ec:2c:e4:b3:60:64:bb:7c:cc:4a:9d:ba:16:bc:0f:f8:
cf:f0:be:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org