Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X3kDsk3Fx_caYR5DiJnBbs6fwQs.roa
File: X3kDsk3Fx_caYR5DiJnBbs6fwQs.roa (raw, json)
Hash identifier: cAlAFvzC6HwHuqpWBaFPzIpjaKM6T8ZQlHVf4TuOX98=
Subject key identifier: 5F:79:03:B2:4D:C5:C7:F7:1A:61:1E:43:88:99:C1:6E:CE:9F:C1:0B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07EB0F5E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X3kDsk3Fx_caYR5DiJnBbs6fwQs.roa
Signing time: Wed 11 May 2022 08:51:02 +0000
ROA not before: Wed 11 May 2022 08:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 185.194.31.0/24 maxlen: 24
185.225.1.0/24 maxlen: 24
185.225.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132845406 (0x7eb0f5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 11 08:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f7903b24dc5c7f71a611e438899c16ece9fc10b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:71:d3:3e:9e:c6:4e:64:b3:b0:70:c2:be:f5:
bb:7c:14:4c:99:70:2c:ce:49:7f:ef:ec:3a:59:44:
82:99:97:3d:74:b4:0a:55:c8:77:94:58:09:93:19:
fb:ef:a7:9e:0a:ac:16:01:a3:1c:5d:4f:a5:2d:0a:
6b:38:24:40:89:63:bc:09:27:d7:9a:e7:d1:7b:48:
79:48:e9:f9:08:65:e9:70:c3:c0:e7:55:3e:92:c4:
74:cc:58:c8:d9:92:6d:65:54:3d:f1:b0:4d:fa:5b:
35:0c:9a:25:a5:19:b5:83:a1:da:ae:5e:f7:74:fc:
bb:fa:65:35:7c:4a:19:49:25:ef:74:8e:aa:4c:22:
1d:e3:0b:df:97:e8:58:05:5a:c8:56:43:32:33:48:
ee:0b:ac:62:cf:31:7e:62:1d:a5:2e:c0:a4:6f:af:
0b:ad:ef:fe:7a:b7:6a:99:f1:66:b0:00:04:c0:24:
5d:43:10:d3:83:0d:a3:08:70:92:76:45:51:f6:f2:
22:05:a9:71:c9:d3:05:8b:44:bc:8c:a3:fd:56:b6:
5d:9d:49:e5:86:93:06:51:9b:c3:92:84:01:88:7a:
d5:16:30:ce:45:94:dd:34:72:37:0d:63:58:9e:7f:
74:d6:b2:fe:40:f2:4b:18:18:02:89:c8:63:db:54:
e5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:79:03:B2:4D:C5:C7:F7:1A:61:1E:43:88:99:C1:6E:CE:9F:C1:0B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/X3kDsk3Fx_caYR5DiJnBbs6fwQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.31.0/24
185.225.0.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:b3:cd:25:01:e6:42:97:83:24:4c:32:bd:78:38:a2:8d:cd:
1c:aa:7f:c0:de:16:c2:65:69:95:2f:27:eb:be:3a:9c:12:6d:
60:10:6d:4f:c2:9d:12:44:1b:dd:69:70:03:bc:a2:4e:b4:43:
92:67:ba:86:8e:d1:45:08:78:8d:13:79:f8:19:a3:12:5e:92:
49:a5:ab:28:50:f4:35:f2:a6:b4:c7:ab:48:8a:f6:48:74:79:
d1:19:28:45:46:03:48:19:73:9f:1b:a8:05:85:1a:a1:99:5b:
a3:7b:ae:eb:05:3f:8f:29:dd:33:a3:80:39:1b:40:4c:25:9f:
2d:a8:ff:29:8d:90:34:a1:92:98:ad:15:37:c0:54:7a:bb:ac:
42:e6:65:80:6c:f6:9f:e8:fd:19:7e:cd:9e:0f:93:bd:26:d9:
ae:1e:8b:03:c1:76:06:11:f7:94:7f:e3:00:c5:05:71:91:31:
a1:56:c4:31:85:93:ad:19:1e:62:75:ed:3d:f9:42:3e:cc:ab:
08:80:78:aa:9b:71:85:80:66:4f:cb:a9:5f:04:93:e4:80:81:
79:74:87:9f:f7:57:62:6e:03:e3:cd:33:c7:d5:9e:e6:1b:38:
b6:3e:d3:33:66:fd:d1:0c:33:bc:c1:91:3d:47:be:34:e5:ac:
e8:f5:fc:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org