Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9DGWyXyx5xCOsRBUZkv2kY4uwnA.roa
File: 9DGWyXyx5xCOsRBUZkv2kY4uwnA.roa (raw, json)
Hash identifier: sb48Sv8bsuWk2nIoF9+G/n64nekhoy//L7GDfUrhliE=
Subject key identifier: F4:31:96:C9:7C:B1:E7:10:8E:B1:10:54:66:4B:F6:91:8E:2E:C2:70
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 08675943
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9DGWyXyx5xCOsRBUZkv2kY4uwnA.roa
Signing time: Fri 24 Jun 2022 18:27:39 +0000
ROA not before: Fri 24 Jun 2022 18:27:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49600
IP address blocks: 193.37.65.0/24 maxlen: 24
185.230.55.0/24 maxlen: 24
193.37.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140990787 (0x8675943)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 24 18:27:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f43196c97cb1e7108eb11054664bf6918e2ec270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:95:cd:64:ee:94:77:90:31:98:22:a4:88:00:
63:9f:8f:a2:5d:5f:cf:10:73:e8:78:4e:ab:5a:53:
13:17:0c:7f:80:00:69:ef:07:8d:ea:e6:22:40:1b:
ef:c6:52:56:5b:f9:3a:0a:90:53:69:02:62:54:e2:
96:80:d3:62:f1:8c:33:ad:f3:ed:c4:de:d5:ce:8e:
e8:07:c7:e8:4b:77:33:ce:7b:62:45:71:4d:fd:0f:
01:78:6b:5c:99:c3:c0:c9:b0:af:67:91:eb:39:3a:
75:e0:5f:b4:e4:c3:26:d7:14:c6:ad:da:9c:13:a8:
b8:65:dd:7f:e3:27:42:72:62:39:59:c6:05:37:f0:
0a:73:75:a2:c7:98:8a:31:e5:af:4b:71:36:f6:09:
09:c9:32:33:ef:d9:b9:13:f2:f0:7e:58:cb:33:12:
86:e0:df:e4:8f:f3:ed:92:f9:89:fd:2e:1d:20:b3:
f0:1e:05:a7:b0:97:72:af:27:51:41:43:fb:ec:8f:
3d:93:16:eb:9f:71:02:63:25:87:36:4f:66:d8:6f:
ab:42:71:fe:eb:f3:ed:1a:e2:5e:ee:c1:8d:68:f3:
f9:e7:9b:c7:8e:7f:e4:a3:4e:bb:9f:3a:e1:8c:c0:
a4:b8:0f:30:62:c9:ea:70:66:3e:bb:d5:a4:45:63:
36:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:31:96:C9:7C:B1:E7:10:8E:B1:10:54:66:4B:F6:91:8E:2E:C2:70
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9DGWyXyx5xCOsRBUZkv2kY4uwnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.55.0/24
193.37.64.0/23
Signature Algorithm: sha256WithRSAEncryption
36:6c:8f:e7:e6:59:54:a3:4b:4f:ff:0a:cf:d9:80:94:46:0a:
eb:13:d6:34:61:8e:b5:37:c9:ad:e1:7d:35:7f:c8:25:3c:ba:
84:9d:06:ec:71:f9:ba:c9:9c:9e:3a:db:c6:7c:e8:c9:39:7d:
a9:d5:a9:58:6f:3b:f5:93:0d:0d:e7:6c:f5:7b:2c:af:4d:ba:
b0:cc:b7:9e:7b:13:71:bd:d7:37:cf:2c:a1:4d:82:9e:a2:68:
8b:48:04:96:6e:dc:9d:87:c0:45:e8:ef:11:b6:ac:d9:1c:61:
c4:a5:ef:dc:70:a9:e3:ab:33:5d:be:88:c0:24:3a:ae:cc:80:
db:fe:bd:5f:88:84:94:e8:37:30:2e:84:d4:3a:c1:7a:61:6d:
f0:a0:7e:b8:84:f7:d5:ef:d2:2d:b1:24:76:e6:11:3f:bf:58:
3c:58:ba:97:1b:62:4d:bb:16:7e:54:00:0b:73:dd:69:82:2e:
c5:a7:24:39:2a:39:da:cf:76:f1:13:14:bf:a1:da:5d:ba:84:
a7:21:29:05:03:f4:64:3f:db:3c:f4:12:de:65:11:33:db:c9:
80:a2:ef:ab:26:9d:6e:42:5b:42:82:fc:e1:31:cd:89:7b:24:
4e:56:98:d1:44:6d:cf:0f:98:1c:11:ba:77:a3:58:92:1d:c6:
5c:47:14:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org