Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EVtXeHWF2vOss9Sl6HVhesyHt_E.roa
File: EVtXeHWF2vOss9Sl6HVhesyHt_E.roa (raw, json)
Hash identifier: qLaVdqupHOuTY61zGZ3ynBzbAppcP0057XJ++bz8bog=
Subject key identifier: 11:5B:57:78:75:85:DA:F3:AC:B3:D4:A5:E8:75:61:7A:CC:87:B7:F1
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 078031BC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EVtXeHWF2vOss9Sl6HVhesyHt_E.roa
Signing time: Tue 12 Apr 2022 10:09:12 +0000
ROA not before: Tue 12 Apr 2022 10:09:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.194.28.0/24 maxlen: 24
185.223.153.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125841852 (0x78031bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 12 10:09:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=115b57787585daf3acb3d4a5e875617acc87b7f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6a:86:5f:f3:97:ec:67:dc:29:4a:45:c4:d0:
66:e2:fb:2d:b8:b4:43:f4:6d:42:c1:8d:19:74:be:
fc:0a:da:c8:f6:b7:fe:a6:66:64:59:69:cc:64:e7:
c5:a2:8e:ad:a1:8f:94:cf:b9:30:d3:4b:c8:d2:3a:
80:78:35:54:d2:ad:6f:58:28:b4:b7:59:2f:06:e4:
48:1b:e4:6d:82:83:eb:24:2d:7a:91:3f:57:51:fe:
b2:ce:f5:17:97:6e:f4:a2:e8:99:ea:49:72:e3:7e:
94:41:51:da:57:9e:bf:44:e6:da:29:6c:67:cc:8d:
e8:46:e0:84:55:3e:ae:c4:d5:1c:ab:f7:38:78:21:
69:3a:a5:54:be:e9:d6:b3:59:da:6f:0f:49:05:de:
fc:45:50:42:d6:cb:64:ee:c1:d7:cb:9d:2d:a6:d1:
03:bc:44:65:0a:df:9f:84:c1:b8:9c:e3:bf:47:76:
ca:cf:92:3f:5d:84:cb:28:21:91:8b:0d:d5:55:44:
2d:ff:81:8f:4e:0a:5a:20:ef:62:fc:06:27:b8:81:
4b:0b:6c:66:63:5a:99:1d:22:14:49:71:d1:77:e2:
03:f2:18:a8:ac:43:3a:21:87:cd:68:f4:ad:a1:07:
33:bf:61:dc:b0:bb:d6:26:cf:8f:ed:bc:a8:1d:5a:
0e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5B:57:78:75:85:DA:F3:AC:B3:D4:A5:E8:75:61:7A:CC:87:B7:F1
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EVtXeHWF2vOss9Sl6HVhesyHt_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.28.0/24
185.223.76.0/24
185.223.153.0/24
185.225.3.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ba:e6:6a:2d:b7:26:6c:3e:1e:e9:55:e8:07:60:7f:f5:8d:
26:0d:9e:65:fe:48:83:d2:7f:96:5f:68:1d:3b:a9:1f:76:a4:
0a:06:7a:52:5f:ac:ee:14:24:c0:9c:22:55:30:09:27:2e:e1:
06:da:b2:f6:86:7c:39:96:1f:cd:43:c9:81:7d:28:84:5b:78:
ce:b4:58:ac:82:ca:8d:a5:74:9a:92:cb:ea:a9:de:e8:82:2c:
6c:eb:21:2b:19:61:c9:e4:c0:7a:7e:8d:83:91:6f:ba:aa:63:
70:e5:44:48:b6:0d:0d:77:b2:08:4f:a5:68:29:fa:f0:79:bd:
7f:37:ed:75:61:af:81:5f:a2:77:e6:3f:bf:cc:0c:91:5f:a8:
60:b7:c2:8e:d5:41:aa:86:74:27:34:3c:ed:5e:c1:d4:06:2a:
b3:63:a8:2f:2e:46:02:55:26:39:c2:31:0d:2d:ff:51:ca:ea:
f4:8b:03:e6:46:15:c5:90:65:57:65:46:54:6d:3f:bc:a0:ef:
af:8e:71:89:bd:6b:ed:c2:a0:b2:43:d5:23:4a:6e:3f:21:42:
d7:19:2d:60:0c:2a:23:da:2d:25:31:ae:e1:de:61:52:f7:55:
b7:55:44:94:39:8e:ee:d3:04:cc:21:64:89:e1:b0:79:63:08:
e3:37:51:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org