Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HWjlWUPrYjCsKMgiKFPu6awQwA4.roa
File: HWjlWUPrYjCsKMgiKFPu6awQwA4.roa (raw, json)
Hash identifier: YXIoSz3lY549BZ/Kz466kkEbawdz2fVKp7z6NRyL1zA=
Subject key identifier: 1D:68:E5:59:43:EB:62:30:AC:28:C8:22:28:53:EE:E9:AC:10:C0:0E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0181CEF67AB54C665F9EAFC28B6FB01C1CD8
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HWjlWUPrYjCsKMgiKFPu6awQwA4.roa
Signing time: Tue 05 Jul 2022 15:24:28 +0000
ROA not before: Tue 05 Jul 2022 15:24:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49600
IP address blocks: 193.37.65.0/24 maxlen: 24
194.35.42.0/24 maxlen: 24
185.230.54.0/23 maxlen: 23
185.230.55.0/24 maxlen: 24
193.37.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:f6:7a:b5:4c:66:5f:9e:af:c2:8b:6f:b0:1c:1c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 5 15:24:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d68e55943eb6230ac28c8222853eee9ac10c00e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:84:be:5c:89:53:14:b2:17:00:ef:0d:de:52:
b2:8e:c9:4c:33:e9:68:eb:ca:11:47:f2:c6:8c:ea:
05:f5:29:cf:57:53:63:96:72:3d:1e:56:98:74:08:
e0:99:2f:4b:eb:5b:07:50:2f:f8:24:98:f3:02:5e:
8e:fe:03:95:7a:2b:c1:d6:5d:e0:4b:3c:58:6e:03:
1d:46:60:9f:55:45:78:74:71:34:01:3d:eb:a6:1b:
d2:b5:2e:07:05:bf:6c:b8:7f:51:11:38:77:db:46:
a3:dc:7c:17:c4:66:19:23:90:c1:c6:e8:4a:fc:cf:
15:52:91:9a:ac:be:5e:dc:fc:1e:c9:ac:49:9d:cf:
29:3f:45:70:5d:89:26:63:fd:d8:72:3f:e4:e7:90:
05:53:a8:59:a9:5a:21:a8:11:1a:91:5a:62:4c:df:
e0:60:b4:a4:5f:1a:99:31:24:37:08:2c:b6:fa:77:
b7:e4:97:d5:b8:77:ee:8d:b3:f5:23:f4:87:ca:42:
12:e2:45:5c:59:11:34:bd:b0:03:07:72:8c:ef:0e:
ac:74:d4:40:80:f0:34:2b:51:aa:d6:98:2d:62:b4:
df:1e:73:b8:5b:4f:41:1e:67:28:37:5e:79:72:b6:
07:9b:8e:20:80:b5:d3:54:8f:59:ae:23:38:bd:e3:
fc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:68:E5:59:43:EB:62:30:AC:28:C8:22:28:53:EE:E9:AC:10:C0:0E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HWjlWUPrYjCsKMgiKFPu6awQwA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.54.0/23
193.37.64.0/23
194.35.42.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:09:5d:ff:81:f6:8d:40:58:02:b3:06:9a:62:ce:2d:56:74:
6b:c3:2d:fe:53:c2:16:f1:05:ba:46:a8:d6:c4:70:88:62:5f:
ce:75:ca:ce:4a:f8:a6:32:e3:11:27:41:82:16:51:33:ee:83:
61:05:a3:48:69:17:67:6a:95:64:d1:12:c5:c1:90:65:5d:ee:
4b:05:7b:36:12:d4:45:6d:21:de:85:49:4e:f6:89:87:00:61:
ae:a2:49:b7:2c:7b:3b:7f:70:13:ef:d9:4b:d3:88:26:3f:90:
d1:bf:6e:68:02:e3:46:62:91:b4:09:bd:3a:d6:d0:65:f6:cd:
56:26:cf:45:39:03:56:7e:b7:1c:a3:d1:08:b9:6a:82:de:4f:
5a:46:97:da:58:f2:07:6a:44:22:56:af:aa:6d:28:83:7e:72:
f6:d6:ac:32:f3:16:ea:ec:9e:41:2f:d5:b4:57:0c:fe:12:df:
9b:0d:cf:c2:6e:48:a3:69:52:16:86:d3:6b:35:48:00:f1:dd:
e2:21:05:1b:ee:55:8c:eb:58:23:98:10:87:df:fb:bf:e8:e9:
bb:ac:90:c0:e0:3e:4c:8f:ec:75:c8:57:df:fe:cd:b9:8b:d3:
9a:a7:7a:3c:bf:cf:ca:7c:16:31:bb:e7:9d:68:a3:1f:d5:d0:
28:5e:72:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org