Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/g7Pt4rF-1SWOaiTqxMABQ8LMvf4.roa
File: g7Pt4rF-1SWOaiTqxMABQ8LMvf4.roa (raw, json)
Hash identifier: Aq8OWmCvShSAdGxTSH1rWdu7TSNh8w7mgIypEAf9YaA=
Subject key identifier: 83:B3:ED:E2:B1:7E:D5:25:8E:6A:24:EA:C4:C0:01:43:C2:CC:BD:FE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01820CE28D8A1C7E9DFAC6F6C1CCFFFEE622
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/g7Pt4rF-1SWOaiTqxMABQ8LMvf4.roa
Signing time: Sun 17 Jul 2022 15:59:10 +0000
ROA not before: Sun 17 Jul 2022 15:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.230.52.0/23 maxlen: 24
185.255.124.0/24 maxlen: 24
185.255.126.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.223.153.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
45.8.20.0/22 maxlen: 24
185.238.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0c:e2:8d:8a:1c:7e:9d:fa:c6:f6:c1:cc:ff:fe:e6:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 17 15:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83b3ede2b17ed5258e6a24eac4c00143c2ccbdfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1e:4e:f5:46:31:13:4b:97:83:32:23:66:44:
da:e1:d1:fd:f2:ce:1d:38:d9:1b:ab:0c:d8:5f:47:
7d:9e:2a:5c:3f:2e:53:81:76:19:4d:fa:79:29:f6:
aa:31:76:d7:bb:69:8e:4b:29:94:5c:d2:a4:09:ef:
b2:cd:ea:4f:22:3b:e1:4a:02:8f:c2:11:e4:5a:4b:
a2:dd:73:76:38:19:be:d0:be:9e:c5:b3:ff:c2:76:
0e:fc:b1:c9:e1:d2:71:4c:fd:fb:33:67:d4:56:48:
43:12:06:7e:1c:10:f4:87:29:a5:10:51:24:d8:92:
37:95:a3:a9:8f:2b:88:17:e7:49:c3:14:7e:6a:b7:
6e:bc:d6:8e:17:f8:94:5a:fa:79:a7:37:13:6f:74:
ff:66:c0:48:cf:c5:0d:3a:2e:a6:b5:6b:dc:00:54:
aa:e2:58:ea:d7:ca:9f:36:f8:d3:37:a5:68:28:22:
75:e3:e2:89:be:b3:83:5c:fe:d2:07:1a:9a:6a:89:
8e:0d:ba:58:67:81:e9:5f:07:9e:08:a8:1a:a0:c0:
01:dd:6e:d6:54:8f:f9:13:4f:e9:9a:78:32:00:e2:
80:b5:3c:42:e8:79:77:e8:2c:b1:c3:e6:49:27:c0:
66:32:f5:a6:e7:5f:63:21:8a:44:e7:c9:01:1e:fd:
db:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B3:ED:E2:B1:7E:D5:25:8E:6A:24:EA:C4:C0:01:43:C2:CC:BD:FE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/g7Pt4rF-1SWOaiTqxMABQ8LMvf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.20.0/22
185.121.12.0/22
185.206.248.0/24
185.206.251.0/24
185.223.76.0/24
185.223.153.0/24
185.226.107.0/24
185.230.52.0/23
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.255.124.0/24
185.255.126.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:33:a7:8d:26:bc:36:cb:65:3b:08:2e:4f:16:49:7e:22:9c:
23:b7:99:d3:7b:5c:b1:af:15:ee:ae:df:b9:cb:d4:67:56:d5:
cb:c5:2f:4e:46:99:f3:d4:ed:7c:09:c4:80:bb:33:c2:17:32:
b7:bc:6c:59:ac:b0:e4:ff:cb:05:2d:40:28:38:91:f7:39:45:
c9:8a:69:14:77:db:ba:d3:7d:0a:c2:e3:5e:2a:39:d6:6b:07:
1f:84:75:98:1b:49:35:c5:52:6e:c8:c2:14:b6:44:d7:de:47:
5f:b5:a8:e3:44:3e:b8:3c:75:93:03:31:4f:8e:74:24:87:cd:
d8:1f:87:d5:3e:2b:80:a5:ed:c3:48:e9:07:1c:db:3f:0d:0b:
45:a6:1a:66:f6:eb:24:2b:7d:9a:6f:0a:a2:af:4d:ce:e6:cd:
9d:23:e1:5d:d4:a2:83:85:31:6a:35:cc:86:1d:dd:4c:90:9b:
47:d9:3e:2a:e7:73:75:46:15:39:95:14:5f:85:a3:4c:37:7a:
4f:ea:c2:b5:ac:67:fc:53:cc:05:68:5a:5d:6f:cd:ed:d4:4a:
1d:38:12:29:c5:ed:f4:df:53:c6:4d:16:c9:10:d6:53:bd:1a:
07:6c:6c:86:a9:75:52:cd:ae:9e:1f:e7:cd:47:92:d7:0a:21:
88:3b:38:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org