Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4wIs-IYIfZFAQLfvVpZAOxzwt5s.roa
File: 4wIs-IYIfZFAQLfvVpZAOxzwt5s.roa (raw, json)
Hash identifier: OgnFUy27SAOJQSX8eQWnLYf0XDuwYg/SxpqAueCl88A=
Subject key identifier: E3:02:2C:F8:86:08:7D:91:40:40:B7:EF:56:96:40:3B:1C:F0:B7:9B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0184340801AB9B5C20D4130030AB9B4FE296
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4wIs-IYIfZFAQLfvVpZAOxzwt5s.roa
Signing time: Tue 01 Nov 2022 16:30:50 +0000
ROA not before: Tue 01 Nov 2022 16:30:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150158
IP address blocks: 185.223.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:34:08:01:ab:9b:5c:20:d4:13:00:30:ab:9b:4f:e2:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 1 16:30:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3022cf886087d914040b7ef5696403b1cf0b79b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f8:fa:38:75:ab:a2:64:d2:90:49:35:cc:fc:
72:2a:67:cd:fc:e4:1d:5b:88:1b:4e:05:85:c1:57:
d4:85:f7:e7:f5:6a:65:27:4c:8c:42:84:60:f0:4a:
4e:9b:fd:46:ad:36:0a:ce:85:d2:14:a4:58:8b:37:
cc:36:53:36:f3:98:b1:7b:7c:05:58:23:cc:3c:17:
48:33:be:e7:af:3a:94:2c:82:3a:7a:98:97:43:62:
3f:48:62:af:65:0a:27:8d:7a:3c:71:54:ff:e8:39:
99:6c:8c:ef:bd:4c:66:40:bd:f1:45:3a:f7:17:5c:
ce:72:46:21:3e:64:25:b0:47:b0:0d:59:25:20:b6:
08:ce:0f:2f:07:39:0c:76:91:f9:6b:50:ef:87:20:
8f:bc:f3:61:a0:65:a1:45:c1:01:81:f4:3a:7d:7c:
ff:57:67:4b:2e:78:32:f7:ee:9e:f9:8b:51:a1:48:
61:d8:a5:c5:f8:6e:f1:e3:f6:cd:f5:48:fd:df:0e:
f5:98:ca:cc:3b:f9:4d:3b:82:58:f1:d1:2f:05:ce:
da:10:d6:0e:a4:aa:c1:ee:95:08:be:67:c4:b0:42:
f8:2f:d7:fa:8a:1b:77:76:c9:91:99:3b:69:5b:05:
0e:7f:b2:cc:4e:6d:9d:5d:a1:c2:c3:cf:63:20:b1:
b8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:02:2C:F8:86:08:7D:91:40:40:B7:EF:56:96:40:3B:1C:F0:B7:9B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4wIs-IYIfZFAQLfvVpZAOxzwt5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.154.0/24
Signature Algorithm: sha256WithRSAEncryption
77:bf:ee:fb:33:26:fa:4f:d0:74:ee:c1:99:b9:20:66:f2:a1:
d9:46:72:e6:5c:83:49:14:06:13:df:9d:39:44:ef:36:55:e7:
f6:d1:13:08:f5:5d:4f:8e:10:99:57:df:d6:b7:d5:1e:2b:04:
a0:e1:74:9f:ce:fa:ac:32:49:d1:b3:92:0f:6a:4c:20:3f:67:
22:2e:95:9c:fe:3c:6a:4b:fa:1b:cd:9a:36:cd:67:25:9c:71:
d0:72:c8:d4:aa:16:da:1e:c7:fd:5b:97:5e:6a:26:9f:9c:12:
17:6e:4c:45:d9:90:90:57:4b:6c:37:05:58:28:5b:a7:f4:79:
a5:50:55:a3:2b:5a:f4:29:c7:a2:6a:e7:a7:50:34:18:b2:87:
ae:0a:f3:ed:0b:79:05:d8:6e:a5:79:7a:98:52:02:e8:29:4d:
40:d8:11:2e:7f:28:f5:a2:93:aa:bd:7d:a9:2e:61:0a:5d:bf:
5e:95:2c:bf:cc:1c:63:44:84:21:44:4d:f5:7f:e4:39:61:65:
73:bb:89:28:71:ab:b7:36:ef:45:62:64:02:68:17:d6:a0:0a:
e9:50:4d:86:f6:8e:23:ad:45:6f:f8:81:92:6f:03:bd:1b:06:
be:92:b8:93:db:7d:22:2d:b0:17:d3:25:38:f4:e3:64:c5:a0:
84:b4:69:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org