Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/W7mdeFonrYM29MvP1oB7Eq0JgQg.roa
File: W7mdeFonrYM29MvP1oB7Eq0JgQg.roa (raw, json)
Hash identifier: 5YSZ4n5zm6wQ5QHm7sER3SMzN+OLMoH1/5cbWpqQmIg=
Subject key identifier: 5B:B9:9D:78:5A:27:AD:83:36:F4:CB:CF:D6:80:7B:12:AD:09:81:08
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01850B18CF6CA402506E685B399989B51B63
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/W7mdeFonrYM29MvP1oB7Eq0JgQg.roa
Signing time: Tue 13 Dec 2022 10:47:33 +0000
ROA not before: Tue 13 Dec 2022 10:47:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 194.5.65.0/24 maxlen: 24
176.125.249.0/24 maxlen: 24
176.125.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0b:18:cf:6c:a4:02:50:6e:68:5b:39:99:89:b5:1b:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 13 10:47:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bb99d785a27ad8336f4cbcfd6807b12ad098108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ed:c3:d6:6d:22:9d:38:81:19:c3:45:12:91:
7b:29:dd:06:b6:c2:74:c6:ac:48:25:a4:c5:03:59:
b9:8e:20:46:df:88:4b:e4:67:46:48:c4:10:48:32:
5b:a8:3f:bd:d4:ad:4f:f7:25:09:c8:2d:f8:a3:0b:
a2:e4:47:b5:8a:58:8e:c6:7f:20:30:6b:f9:9d:7f:
d7:c7:f7:42:34:14:cb:b8:dd:9b:99:0f:7c:93:03:
6a:e7:3c:c9:a4:be:27:db:08:b1:cf:ad:aa:3c:84:
3c:bd:cb:4d:75:24:34:3b:1d:66:cf:7e:21:76:83:
e0:a1:05:05:78:d0:b9:4e:12:24:58:fc:2f:87:a7:
9e:94:fc:ac:10:3b:c4:cc:a6:26:3d:dd:69:f3:56:
0d:a3:f6:6b:94:66:21:88:fa:b6:6a:75:38:53:2a:
5d:69:9f:dd:6b:ad:29:4c:54:8b:de:6a:4e:10:e6:
09:f2:eb:22:d6:e4:85:ce:b4:db:a8:99:ae:80:5e:
bb:85:19:11:dd:78:c6:11:95:ca:7e:31:e7:9c:b8:
49:53:05:43:c0:60:00:a7:48:22:b6:0c:2e:87:5b:
d3:c9:a0:68:d4:3a:25:a3:b4:e1:4d:0a:c6:8d:00:
dd:d7:ba:cf:d5:18:2e:d9:e9:45:1f:d8:1d:8b:f2:
19:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B9:9D:78:5A:27:AD:83:36:F4:CB:CF:D6:80:7B:12:AD:09:81:08
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/W7mdeFonrYM29MvP1oB7Eq0JgQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.248.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d1:c3:af:63:d4:9a:3f:7d:fc:c2:ce:17:f8:b4:86:ac:7e:
9e:4e:fb:7c:c7:b2:25:17:42:1e:2b:2c:41:12:f5:54:f5:6d:
68:a3:4e:c2:ee:b8:2f:d8:74:c7:47:21:d0:c0:de:d6:58:d7:
6a:95:68:3d:f2:43:ca:7f:a5:d9:45:4d:ef:1c:3f:e9:12:ab:
aa:1d:83:5e:5f:00:01:d2:34:a6:22:de:ff:a7:ce:0e:bb:61:
66:cc:cb:e5:dd:75:04:51:d1:ef:e9:36:a6:00:34:8a:21:a1:
4a:e8:7a:dc:b8:58:dd:b3:fa:72:f2:a2:df:a0:c2:fc:fc:ca:
4b:03:ce:61:78:3a:30:c6:8d:73:de:f9:83:64:fd:45:00:91:
2e:95:27:46:23:99:89:40:16:f1:6f:5c:98:f7:d6:21:d0:5a:
37:72:d1:7b:ae:68:8f:91:5d:25:5d:24:24:fc:b4:61:0a:4c:
ee:ce:a8:9f:00:85:6b:c6:a8:00:69:f3:7d:da:48:30:29:79:
39:8c:a2:4f:c8:98:65:26:d3:01:4a:03:52:aa:2c:46:cd:86:
26:78:f9:39:4a:a2:a1:3a:c4:58:f0:e5:f7:54:6f:4e:04:b6:
c5:b4:8e:45:63:c2:32:b3:05:ae:14:2d:0d:a9:bf:0d:66:23:
78:50:5d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org