Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OmNXqg9lUo0HR2IuiXZOVXbbi5M.roa
File: OmNXqg9lUo0HR2IuiXZOVXbbi5M.roa (raw, json)
Hash identifier: alGSEvyywHECaxLwad3gQZyYXmKCwI3eevpBPtyMrI8=
Subject key identifier: 3A:63:57:AA:0F:65:52:8D:07:47:62:2E:89:76:4E:55:76:DB:8B:93
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07187C70
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OmNXqg9lUo0HR2IuiXZOVXbbi5M.roa
Signing time: Mon 07 Mar 2022 09:07:46 +0000
ROA not before: Mon 07 Mar 2022 09:07:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.223.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119045232 (0x7187c70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 7 09:07:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a6357aa0f65528d0747622e89764e5576db8b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:32:81:21:81:98:96:26:53:f7:c0:bc:db:8f:
da:9c:85:0a:c9:1a:fb:0c:27:97:f9:c9:90:65:de:
95:b8:8e:b5:46:fe:4e:1d:dc:e2:f5:ef:45:1f:1b:
1f:85:9a:c5:eb:f7:31:b5:ec:43:5f:7b:d0:72:4b:
40:cf:22:13:b7:95:09:76:64:bf:c0:d1:1d:36:e1:
88:cf:3f:a6:2b:dd:f1:24:99:aa:f0:6d:15:24:e4:
cd:8d:36:40:bf:e9:a6:bf:ab:78:73:9e:fb:fb:60:
45:df:61:19:40:21:9c:c3:00:63:20:65:89:74:c1:
a8:d5:2a:99:70:59:37:40:0b:23:be:91:05:8f:59:
f3:e4:ca:98:0a:89:d5:d7:63:15:4a:54:a1:33:d1:
c4:a0:4d:f9:54:2b:f2:3e:a0:92:e9:42:d5:85:03:
6c:93:78:5f:f4:15:bd:10:4d:68:48:10:28:b9:6e:
0a:a6:4b:39:94:76:de:22:f5:44:d6:3b:3e:76:bc:
72:a6:c4:1e:fa:74:0f:d3:98:8d:7c:41:0c:c8:d4:
b7:e4:38:34:ed:4f:16:87:cd:49:db:95:9e:33:4d:
c1:c9:1a:73:db:4a:1b:20:fa:60:a8:f6:bc:a8:6f:
ca:0a:25:ff:8e:eb:82:dc:91:ea:50:ad:3a:92:fd:
0a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:63:57:AA:0F:65:52:8D:07:47:62:2E:89:76:4E:55:76:DB:8B:93
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OmNXqg9lUo0HR2IuiXZOVXbbi5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:c5:80:af:8a:df:a2:46:52:08:c9:2d:3b:86:70:8e:dd:aa:
9d:c6:72:63:5f:03:89:94:1d:58:19:d1:da:42:f2:37:bf:8b:
df:2b:13:2c:9e:10:9c:63:68:6b:9f:d2:f0:f6:c0:e7:69:e7:
89:b6:29:6a:f9:5b:44:42:bb:d1:61:2b:53:0e:a9:70:72:ab:
e8:06:d8:dd:5f:08:9a:20:22:35:b2:cc:96:e5:76:98:de:90:
dc:c4:27:ff:ea:20:57:e3:50:2d:80:5b:7f:64:d0:bb:4d:b9:
e6:e3:04:d9:49:a0:5d:7d:09:23:3b:c0:60:79:ca:d8:86:42:
c9:f2:47:20:14:aa:ee:61:a6:51:01:d7:40:8f:c3:b3:d6:a7:
36:dd:54:bf:e9:72:9a:e7:55:5d:d9:05:fb:8f:88:a5:49:c1:
79:48:65:3c:49:6b:54:73:ce:7e:85:eb:2e:24:60:2a:f6:39:
51:07:e7:bd:04:92:2f:65:40:94:b9:cc:b4:89:d2:7b:bb:79:
c5:ec:7e:ed:58:53:60:36:a5:2d:3b:43:fd:f9:bc:fc:0d:5b:
2b:43:a0:f5:9d:48:44:8a:35:e4:22:8b:90:33:66:65:9a:c2:
bc:c5:72:6c:be:f0:19:2f:18:ee:44:18:b5:e9:fe:6e:5d:3e:
fb:dc:ab:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org