Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WydcGiRrDT9ya3ViVfdb6CsobRE.roa
File: WydcGiRrDT9ya3ViVfdb6CsobRE.roa (raw, json)
Hash identifier: DVoQ3ZzGygHYUsduFT+q3eV8vbxux0kLJk/l7pDJVso=
Subject key identifier: 5B:27:5C:1A:24:6B:0D:3F:72:6B:75:62:55:F7:5B:E8:2B:28:6D:11
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07278C94
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WydcGiRrDT9ya3ViVfdb6CsobRE.roa
Signing time: Thu 10 Mar 2022 16:54:22 +0000
ROA not before: Thu 10 Mar 2022 16:54:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.240.123.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120032404 (0x7278c94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 10 16:54:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b275c1a246b0d3f726b756255f75be82b286d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bd:bd:6f:af:36:df:08:98:a1:50:26:13:9b:
fe:e4:34:34:f5:28:13:f2:38:90:d3:2b:06:27:cc:
5d:8b:6a:37:64:fb:44:08:4b:c3:fe:21:5d:26:bb:
04:a9:85:4f:03:15:a7:a2:63:58:4b:48:ba:80:c9:
ff:fb:f1:71:5a:d5:33:21:ad:b5:a4:ea:54:0f:46:
8d:1f:b4:b2:32:57:fe:6e:40:61:0e:c2:cd:70:1b:
3c:91:be:54:43:11:46:f5:19:f2:21:93:d9:57:55:
cf:75:47:f8:81:fe:09:5a:88:39:c6:88:ad:12:e0:
39:46:59:f6:c6:ef:ec:25:d3:05:33:de:dc:e2:ed:
c5:de:5d:52:e8:21:86:fa:a0:d5:a6:6a:d5:74:5f:
87:5b:dc:da:60:90:69:7e:3b:fa:f0:41:cf:2e:27:
86:fa:ab:84:f7:06:60:89:ee:95:a9:3c:66:3d:0f:
ba:cb:aa:9f:e8:e5:8f:1d:a5:ac:d7:ad:a1:47:b3:
3d:d1:6f:65:a9:d8:54:b9:df:18:1a:21:8c:c4:45:
86:f1:73:83:a3:8f:2d:5f:4f:f6:b2:86:6f:f7:77:
c8:fd:32:d3:e1:ef:3f:43:91:39:1a:1f:25:98:94:
dd:55:ad:00:8f:28:53:c7:30:82:7d:35:fb:90:47:
43:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:27:5C:1A:24:6B:0D:3F:72:6B:75:62:55:F7:5B:E8:2B:28:6D:11
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WydcGiRrDT9ya3ViVfdb6CsobRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.76.0/24
185.240.123.0/24
Signature Algorithm: sha256WithRSAEncryption
84:d6:7b:c7:38:02:ba:19:5a:5e:96:2f:de:b0:be:55:5b:5c:
61:9a:67:a6:3e:65:65:4c:70:96:9a:8f:1f:65:99:88:42:66:
44:b9:8a:c9:80:a5:86:25:29:0d:b9:a5:d7:f6:04:1d:94:e0:
53:28:1b:84:40:ba:06:15:d0:cd:44:3a:9e:56:91:bc:89:44:
3a:14:2f:23:0b:72:11:3b:ae:78:c2:d4:97:22:b8:cf:b0:17:
fb:f5:4f:f4:f4:6a:28:c3:e9:d2:99:5c:8a:eb:02:72:85:42:
f8:14:43:e5:ac:43:b9:5c:e4:7e:32:60:81:8e:69:f4:e8:76:
5d:b1:8e:78:8b:51:7a:60:e0:4b:71:6e:ff:af:d3:56:08:af:
3f:a4:84:f5:9f:71:5a:1a:b7:59:2c:34:c5:0b:43:c6:b1:d1:
6b:32:b1:b4:61:62:8e:3e:04:17:b9:62:8f:4f:83:62:17:10:
d6:f4:fd:b7:ff:00:2c:cb:11:be:f5:b1:1e:53:1f:d8:87:82:
ff:c5:ec:3a:43:84:79:a7:e0:dc:96:22:d1:4b:cd:28:81:50:
ca:58:ff:91:38:50:e2:9c:ae:f5:af:8e:14:5a:b3:c6:9c:d3:
4a:99:a3:13:7b:60:76:97:06:6b:4d:40:d5:1e:37:f7:f8:5e:
46:24:06:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org