Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X31GlVKWDAa5rA_8Sjyur-dvh2E.roa
File: X31GlVKWDAa5rA_8Sjyur-dvh2E.roa (raw, json)
Hash identifier: 5sAdQqoO8am/U7abIcDt3VJxyYWPedDZLEE+KwAvS60=
Subject key identifier: 5F:7D:46:95:52:96:0C:06:B9:AC:0F:FC:4A:3C:AE:AF:E7:6F:87:61
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0821D4C9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X31GlVKWDAa5rA_8Sjyur-dvh2E.roa
Signing time: Sun 29 May 2022 14:35:16 +0000
ROA not before: Sun 29 May 2022 14:35:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.206.248.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136434889 (0x821d4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 29 14:35:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f7d469552960c06b9ac0ffc4a3caeafe76f8761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:72:28:6b:20:98:54:1a:fa:8b:dc:6a:98:4a:
9b:b4:bc:44:a2:b4:0f:9d:98:72:dc:c1:5d:bb:e8:
f1:44:21:9a:86:f0:ff:62:09:65:c5:83:a0:7a:f1:
65:2e:3e:0e:1d:7b:47:aa:7c:2e:3e:a9:7a:8b:22:
f1:ce:2a:f2:c5:6a:8e:83:77:fe:82:aa:ed:ca:ce:
e2:4e:c9:5d:ed:a1:e9:a9:21:92:fb:70:6e:75:c6:
26:39:27:d9:32:0d:a4:b6:51:41:ab:4c:20:db:88:
2a:e0:07:13:be:76:61:56:eb:23:f9:6f:a5:26:84:
72:57:e3:02:8a:f5:ab:86:d3:1e:46:80:f3:9b:5d:
a1:e7:cf:f9:54:f6:c9:85:4c:b8:cb:a6:c6:43:d3:
75:1d:a8:7b:64:3c:7d:85:7d:6d:27:b3:76:27:49:
37:ed:58:e9:77:ad:20:26:9b:d8:af:59:10:21:57:
3c:8d:8b:57:47:4f:ba:a9:b5:b8:3c:df:44:49:63:
22:b2:d2:89:b0:18:83:f5:6c:96:63:68:a0:6a:f4:
58:05:87:c2:25:1f:03:22:75:99:86:8b:92:c1:86:
e0:da:c6:2c:48:5a:e8:63:6c:8c:dc:72:c6:58:6d:
3c:8b:c9:fd:cb:3d:76:66:33:05:00:8a:86:8a:24:
27:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7D:46:95:52:96:0C:06:B9:AC:0F:FC:4A:3C:AE:AF:E7:6F:87:61
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X31GlVKWDAa5rA_8Sjyur-dvh2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.248.0/24
185.225.2.0/24
Signature Algorithm: sha256WithRSAEncryption
27:43:47:bd:e3:5b:8b:fa:d8:a7:af:87:66:1d:07:de:4d:48:
b7:c7:bc:f1:d4:1f:1d:21:67:5d:85:07:0b:a4:41:5a:75:cf:
cc:6e:f6:c7:37:ef:e2:97:25:84:63:81:b1:a7:f4:25:87:ec:
99:7d:f9:b1:48:be:eb:3c:d5:c0:c2:52:b1:8f:6e:f1:74:13:
e5:dc:1a:28:e3:5a:aa:06:5f:8f:48:fd:3c:d0:4a:24:70:e4:
5a:b8:b7:02:30:66:e8:49:a6:6d:88:2b:86:98:2b:a1:49:f1:
6c:fd:ac:ea:bc:62:b5:8b:be:a6:9b:c8:35:2e:9e:2e:85:42:
b3:52:56:e9:93:35:33:b9:71:4a:91:81:16:4b:e3:46:97:f5:
9e:71:2f:37:d3:82:d9:e7:a7:e6:44:24:52:7e:ed:8b:94:62:
05:54:5e:39:1b:af:3f:0d:72:83:5f:aa:09:cd:6e:5a:7d:19:
4a:95:cf:d8:8c:00:99:e7:96:d6:22:fa:ad:de:2d:31:61:ea:
ef:73:da:ab:24:96:20:89:a6:45:cf:c0:0e:bc:22:60:bd:ca:
b8:38:46:81:1e:16:8f:28:d8:12:d1:a7:f5:f3:26:9f:9a:d9:
60:34:26:e8:8c:2d:42:28:22:79:cc:d2:28:6a:8f:a8:66:47:
a6:70:5a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org