Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/fQRyo4Uy-oqgWIiVzMnqTDGpPFk.roa
File: fQRyo4Uy-oqgWIiVzMnqTDGpPFk.roa (raw, json)
Hash identifier: 4eXCF6HUWcGjGKp4PiUByV762xQcHtKVLEVlAOE2VhQ=
Subject key identifier: 7D:04:72:A3:85:32:FA:8A:A0:58:88:95:CC:C9:EA:4C:31:A9:3C:59
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 072554D8
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/fQRyo4Uy-oqgWIiVzMnqTDGpPFk.roa
Signing time: Thu 10 Mar 2022 16:47:08 +0000
ROA not before: Thu 10 Mar 2022 16:47:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119887064 (0x72554d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 10 16:47:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d0472a38532fa8aa0588895ccc9ea4c31a93c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:01:42:97:36:28:55:10:15:3b:f3:56:3f:6a:
bc:60:e5:6b:b2:d9:e6:83:4a:3f:ef:6c:ea:8d:b0:
bb:a0:f9:f5:58:93:78:ae:89:08:7a:83:0c:10:ba:
49:9f:df:66:94:7f:c6:ca:ae:62:d6:9b:b1:9c:42:
01:73:55:3c:d2:ea:2c:3e:3a:3d:ea:c4:91:3f:0c:
99:05:6a:e2:5c:12:4e:74:05:14:76:8f:cf:53:06:
51:d0:eb:eb:c9:e5:ea:b5:04:6d:d7:ed:9a:b4:21:
a2:94:5e:89:f5:9c:57:eb:7a:2f:c9:54:46:56:fe:
79:e4:03:eb:6e:24:43:73:04:7b:68:2c:bc:a8:e3:
98:25:b7:72:68:3a:04:26:aa:05:d4:cd:d7:ed:81:
47:86:7d:8c:1e:a6:d7:44:fa:80:5a:84:e0:ba:10:
bf:32:c2:6c:46:6b:cd:6c:bd:36:34:da:f8:fc:99:
24:b2:24:d0:55:f2:93:f5:32:e9:14:e4:59:10:c8:
26:1e:3d:b4:91:d6:26:22:fd:cb:72:81:88:6c:b6:
a6:21:e6:88:6e:fa:de:47:dc:d0:fd:15:47:4b:a0:
75:a1:07:b1:24:25:07:29:34:9b:7a:b6:e6:3d:d2:
cf:f9:8a:ec:1a:68:89:c5:ac:e8:ea:3a:ac:40:07:
ca:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:04:72:A3:85:32:FA:8A:A0:58:88:95:CC:C9:EA:4C:31:A9:3C:59
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/fQRyo4Uy-oqgWIiVzMnqTDGpPFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:6c:27:f8:e7:b0:08:c7:30:bf:36:b2:ba:c5:c4:e5:2f:9b:
b3:02:c9:5d:10:30:91:6d:d0:3d:4b:03:28:dd:04:20:9f:e1:
44:fc:19:5e:8a:d0:6e:be:df:57:b9:47:15:e3:dd:61:18:fe:
28:71:78:32:26:0f:66:e9:8b:66:d9:1f:bd:80:d9:28:5a:ef:
6f:41:6e:66:48:5f:e0:96:4d:5b:c4:ec:fb:21:cd:1c:a2:b3:
30:2d:34:fc:f3:9d:1b:e3:08:63:e1:bf:e8:5c:43:78:97:eb:
10:98:5b:8e:45:ae:a2:a0:58:1a:46:6e:bc:64:82:5f:e2:3a:
c5:ab:b4:d5:87:29:47:d6:f3:dd:67:90:fc:9c:2e:5c:6f:a7:
3d:38:49:98:e4:90:9a:e0:df:a3:80:e7:72:d6:6f:ff:41:d5:
77:3f:78:4d:c8:01:ce:7b:18:c0:60:fa:04:e5:88:f3:3c:f4:
da:ec:2c:4c:78:f8:30:f2:b2:3d:e9:e1:4c:77:18:9e:cf:89:
46:1e:81:0a:5f:e6:83:4e:6c:80:57:f7:cd:50:18:0a:5c:5f:
b9:80:8b:eb:e5:91:57:98:b6:9b:4c:bb:4c:8b:fd:6a:2c:d7:
76:0c:fd:32:4f:11:93:62:35:38:bd:e1:69:f6:e3:c7:d6:65:
09:65:1c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org