Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NVt0ijAZvGDR_9bd04-3ouWdX7g.roa
File: NVt0ijAZvGDR_9bd04-3ouWdX7g.roa (raw, json)
Hash identifier: 84scE7OAoqEnwPgWc0VJjOCQ908LZ/j+oKrTZ6NiNQA=
Subject key identifier: 35:5B:74:8A:30:19:BC:60:D1:FF:D6:DD:D3:8F:B7:A2:E5:9D:5F:B8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0811A199
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NVt0ijAZvGDR_9bd04-3ouWdX7g.roa
Signing time: Wed 25 May 2022 07:41:13 +0000
ROA not before: Wed 25 May 2022 07:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.206.250.0/24 maxlen: 24
185.226.104.0/24 maxlen: 24
185.194.29.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135373209 (0x811a199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 25 07:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=355b748a3019bc60d1ffd6ddd38fb7a2e59d5fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:70:c5:fc:0e:26:ab:63:ad:0f:54:0a:e3:b2:
53:f7:c8:6f:14:9b:a0:fc:be:99:16:9b:74:78:53:
a4:42:3f:98:e7:14:b1:5d:01:1d:fb:d2:4b:e0:3a:
f2:36:e8:38:ae:4a:68:f1:7a:aa:7d:e8:99:50:22:
44:fa:38:e8:a5:64:fb:24:0a:a3:f6:06:64:61:a2:
4c:c3:cd:74:0f:bb:d0:67:d5:3b:f5:62:e7:23:58:
c0:44:ee:02:e1:d7:79:a6:b7:36:1f:48:1f:0b:e5:
72:6e:6b:c0:f0:e1:41:80:4c:c6:6f:e4:ec:c2:d0:
b9:24:c4:d8:18:08:5b:bc:2b:de:fc:81:2d:58:4f:
11:6d:e9:88:84:b9:17:4f:ae:f5:c5:6d:46:d6:dd:
62:95:ce:7a:0e:de:ad:ba:54:ff:bd:24:1e:d2:c2:
f3:f0:10:b8:9f:47:14:31:74:06:34:82:78:2f:7f:
39:7c:32:8e:d8:9f:1c:c8:af:7e:14:82:36:9b:4a:
e7:90:3f:b0:a1:2b:5d:2f:0f:a6:c4:4e:67:88:44:
5e:8d:28:e1:a1:bd:34:51:ff:d5:18:39:d1:f6:65:
fb:b1:14:56:87:3c:bf:9a:ee:74:d5:67:96:e6:a1:
7e:81:c7:9e:ae:6c:a5:76:ea:1a:c3:0d:93:c0:5c:
09:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5B:74:8A:30:19:BC:60:D1:FF:D6:DD:D3:8F:B7:A2:E5:9D:5F:B8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/NVt0ijAZvGDR_9bd04-3ouWdX7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.29.0/24
185.206.250.0/24
185.223.155.0/24
185.226.104.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:56:83:27:f8:96:75:24:ab:f1:47:86:2e:2b:15:26:1d:2c:
4c:d5:72:e1:d4:a9:fd:82:6c:f3:67:de:3e:95:75:04:01:5b:
18:9d:45:a9:3b:aa:08:e4:ca:bd:cd:97:62:81:7f:64:c3:51:
f6:f9:bf:bd:34:cf:06:d5:4d:e7:e5:4b:25:f7:34:37:72:7a:
20:84:2d:f7:1c:9d:ac:11:f2:9d:ec:c6:7a:a7:c5:48:14:b8:
c3:f5:e7:53:ab:78:97:86:47:08:a4:5c:c2:93:7b:a5:3f:40:
1c:27:9d:6b:5d:80:55:29:c7:32:e4:1b:b6:5a:3e:a9:08:4c:
5e:21:d7:26:a1:d0:ed:0a:58:34:96:77:18:7f:c9:2c:3d:8c:
fa:5e:9e:49:e3:25:27:bc:3b:3c:57:d8:ca:30:e9:9c:00:7d:
1b:e1:99:eb:35:c2:63:00:15:5a:8a:ab:ac:e6:12:b3:d8:dc:
87:ec:76:bb:97:86:ab:8a:f6:61:39:d5:61:48:c4:0f:80:d9:
44:4e:6d:a7:c4:53:17:3a:bc:42:ad:d9:88:5b:84:d7:c2:e8:
a5:a0:95:9b:36:f7:02:81:32:ef:f1:02:98:10:a3:43:d0:08:
f0:b6:24:af:3a:f7:93:7a:bb:40:9e:ac:f1:95:fd:ba:5d:e8:
d2:52:c7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org