Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Kl1f4QTq9_MTLxqYfHrGCxmyfuA.roa
File: Kl1f4QTq9_MTLxqYfHrGCxmyfuA.roa (raw, json)
Hash identifier: Ke7+a9b6fxyEui7sux4UFVZ30z6VIjmUZWyVhLUvSVY=
Subject key identifier: 2A:5D:5F:E1:04:EA:F7:F3:13:2F:1A:98:7C:7A:C6:0B:19:B2:7E:E0
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01820CDDFA5E644B0AC12964D7CC098D08C5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Kl1f4QTq9_MTLxqYfHrGCxmyfuA.roa
Signing time: Sun 17 Jul 2022 15:54:10 +0000
ROA not before: Sun 17 Jul 2022 15:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399641
IP address blocks: 185.194.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0c:dd:fa:5e:64:4b:0a:c1:29:64:d7:cc:09:8d:08:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 17 15:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a5d5fe104eaf7f3132f1a987c7ac60b19b27ee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0b:5f:f8:fb:11:45:26:13:f1:21:8d:62:7c:
6f:44:f9:47:fa:60:f2:9d:61:4e:a5:dd:53:95:fd:
e0:b0:1e:be:2e:45:b4:87:b6:f4:d9:11:03:e2:f9:
7e:8a:e0:01:31:63:77:be:f2:81:f3:c5:af:3e:63:
bb:bb:e0:6c:aa:dc:48:f6:af:2d:b8:b0:44:78:69:
ec:7d:34:01:a8:dd:b7:ea:93:af:4f:db:fd:11:56:
02:7c:8f:89:8c:95:41:65:0a:0a:24:3e:85:1e:5f:
e4:71:f6:f6:99:43:9a:0a:14:e3:d5:e6:56:19:99:
b4:53:a9:88:ec:a0:3d:ee:3a:d1:f8:0a:22:8d:f1:
f2:b5:7e:36:7d:f3:01:83:56:e8:77:e1:97:b2:5b:
35:87:82:15:78:ff:68:07:73:30:8c:3f:92:c9:d5:
3a:06:b0:2a:bd:54:18:a1:80:c6:bd:d7:ea:2c:c7:
38:92:81:ac:28:72:b9:3c:05:40:cf:6e:39:c6:0a:
62:9e:59:0b:60:ee:38:98:77:ce:7e:0d:d8:37:d6:
e7:2a:04:0b:23:81:ae:64:86:e8:47:00:18:94:86:
a9:51:11:50:4e:62:dd:c0:97:3e:e9:cc:ba:c3:c9:
b5:5e:4b:13:27:a3:e9:5b:14:22:f2:87:14:82:43:
3d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:5D:5F:E1:04:EA:F7:F3:13:2F:1A:98:7C:7A:C6:0B:19:B2:7E:E0
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Kl1f4QTq9_MTLxqYfHrGCxmyfuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.31.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:5a:ea:f1:ae:6f:50:04:10:00:f6:53:3f:10:36:04:7a:4d:
7e:7a:5e:da:ad:f5:50:d3:e3:a4:aa:8f:81:85:f7:93:67:39:
16:ab:1e:bd:ab:02:be:86:2b:10:01:23:5b:78:d8:c9:4a:15:
04:b6:73:7e:2b:fc:82:e7:ef:14:41:0f:b1:e2:99:c0:be:2e:
4b:3e:57:f9:2c:0a:2b:a9:77:37:46:6d:34:1e:e6:27:dc:da:
08:14:71:a3:f6:00:ff:b4:cd:04:b2:a9:c2:ff:16:1b:af:c0:
ed:5c:09:e9:c4:7d:09:62:48:32:d3:cb:f6:33:be:b5:42:05:
80:32:d3:a1:9f:bb:0d:60:c2:34:d6:82:38:b3:4d:e6:5f:bb:
19:74:fa:97:d5:e3:7d:e9:7c:c6:50:8f:fb:90:5f:c0:80:75:
74:db:5f:a6:01:a9:49:3e:cd:a4:87:5f:a0:e3:de:ac:e0:86:
2b:03:b4:b4:17:3d:aa:6c:54:7e:a4:e3:9b:57:8e:fb:35:bf:
fa:d1:45:42:77:5a:0f:90:cd:8b:73:31:e3:43:d8:40:0f:6e:
f6:e7:c9:0e:e7:63:2b:0b:eb:74:1d:26:8b:e9:42:d1:8f:74:
16:44:1a:33:bd:55:8e:52:71:be:48:7e:fb:e4:ec:39:30:a9:
9c:77:30:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:15 2023 by rpki-client on console-fra.rpki-client.org