Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VgNG15Kbu44u0iZf5yNOduGTgcw.roa
File: VgNG15Kbu44u0iZf5yNOduGTgcw.roa (raw, json)
Hash identifier: a9yZWNeIWTOmu07PzimRICewRKTEuRES7+SYwjMOIHA=
Subject key identifier: 56:03:46:D7:92:9B:BB:8E:2E:D2:26:5F:E7:23:4E:76:E1:93:81:CC
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018340FBEFA54FCE23949D1490FBCA8EF048
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VgNG15Kbu44u0iZf5yNOduGTgcw.roa
Signing time: Thu 15 Sep 2022 11:49:56 +0000
ROA not before: Thu 15 Sep 2022 11:49:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.230.52.0/23 maxlen: 24
185.255.124.0/24 maxlen: 24
185.255.126.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.1.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.223.153.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
45.8.20.0/22 maxlen: 24
185.238.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:fb:ef:a5:4f:ce:23:94:9d:14:90:fb:ca:8e:f0:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 15 11:49:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=560346d7929bbb8e2ed2265fe7234e76e19381cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:3a:e5:f0:f1:ef:e4:ba:90:6d:ac:d9:15:
32:77:b9:01:bc:9c:83:54:83:4f:c4:47:58:cb:5e:
94:eb:b4:10:32:4b:f6:63:9d:0b:1b:a9:7e:34:fd:
ee:20:cb:ef:0b:3f:38:9d:a0:b3:03:1d:3b:b7:72:
b2:b2:1c:c9:4d:2e:74:3d:00:c7:90:38:ee:27:44:
f9:81:19:d0:ed:f2:02:80:9a:fe:f9:22:49:de:ad:
57:48:c4:f1:01:f7:72:c8:70:24:23:56:74:e5:c2:
e2:53:3b:90:d3:d1:a4:01:2d:5b:91:cc:0b:c2:d3:
af:9e:b1:f5:ce:b3:15:16:36:e5:81:57:11:ce:8c:
e7:f8:e7:fd:c8:00:07:c4:41:a5:83:01:83:a5:34:
c0:57:af:95:4c:0c:e8:52:81:9d:44:a9:96:85:b3:
85:75:6a:d8:f7:56:79:95:e9:42:63:3d:b9:3e:d1:
6e:67:bb:13:6b:b0:4f:79:a2:3c:e1:8f:7b:b1:a2:
9e:0f:d2:0e:cb:bd:60:d5:cb:44:d7:77:e9:fd:95:
2e:68:e4:16:62:d5:c2:6b:8b:6c:91:d5:23:f4:f8:
19:e0:32:4c:16:ad:76:bc:f4:df:cc:ad:ee:b1:84:
7a:79:31:f9:f2:fc:bf:3c:4c:1c:a6:58:20:95:18:
cc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:03:46:D7:92:9B:BB:8E:2E:D2:26:5F:E7:23:4E:76:E1:93:81:CC
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VgNG15Kbu44u0iZf5yNOduGTgcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.20.0/22
185.121.12.0/22
185.206.248.0/24
185.206.251.0/24
185.223.76.0/24
185.223.153.0/24
185.225.1.0/24
185.226.105.0/24
185.226.107.0/24
185.230.52.0/23
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.255.124.0/24
185.255.126.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:db:50:df:8c:46:61:93:c0:88:1e:d1:be:23:ac:f6:e6:e4:
2f:fe:b4:44:d6:4d:cd:c6:6a:80:a2:c2:7e:30:c0:b2:e9:82:
78:3c:0d:0e:88:7a:b1:4c:ae:2e:e4:e0:a2:10:5f:a3:ee:5e:
ca:70:73:78:2c:bf:fc:f0:c2:af:bf:c0:79:dc:5c:5a:5a:54:
d2:e2:66:33:a1:f8:89:5f:31:3c:1e:3b:e3:0d:97:31:91:31:
01:3c:3e:a5:fe:e7:49:fd:f1:87:82:6a:b7:53:16:0b:59:62:
7d:c9:60:e4:0e:8d:47:7b:13:4f:66:ef:5f:20:54:09:e7:c7:
3c:09:6c:13:0b:52:56:f2:f1:73:95:34:77:e6:17:a9:c5:68:
49:29:c6:31:c2:d8:ad:93:76:7c:60:90:04:e7:9d:d1:e9:b0:
9c:3f:63:02:97:5e:77:33:5a:c2:64:79:08:26:8a:ca:c2:b2:
7d:8c:6e:6f:02:9a:55:8b:38:0d:87:52:a8:2d:92:f1:b1:84:
0b:42:55:2c:6a:2e:ee:0d:e6:80:a6:df:c8:62:80:24:b0:d4:
47:06:9d:a0:0e:cf:07:08:2b:ec:ac:aa:ec:bc:d6:44:43:79:
21:4d:e5:32:69:56:45:03:bd:58:a0:11:df:c4:75:87:98:e3:
40:fc:ee:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org