Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/iv8LjqKSDkTP-fMG2ZXvGlB9Wk8.roa
File: iv8LjqKSDkTP-fMG2ZXvGlB9Wk8.roa (raw, json)
Hash identifier: DVCmkg4zp6aRbe9YGS8hs0Wy4zwGYMk8Yv5QAs0MY2I=
Subject key identifier: 8A:FF:0B:8E:A2:92:0E:44:CF:F9:F3:06:D9:95:EF:1A:50:7D:5A:4F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0183CDC7F71544FDFD1A54F966CF2C44F224
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/iv8LjqKSDkTP-fMG2ZXvGlB9Wk8.roa
Signing time: Wed 12 Oct 2022 19:59:37 +0000
ROA not before: Wed 12 Oct 2022 19:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.226.105.0/24 maxlen: 24
185.194.28.0/24 maxlen: 24
185.225.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:c7:f7:15:44:fd:fd:1a:54:f9:66:cf:2c:44:f2:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 12 19:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8aff0b8ea2920e44cff9f306d995ef1a507d5a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:55:f0:e9:4a:7a:b3:93:5c:f5:8f:0d:99:4a:
9d:09:b8:2d:c8:69:f9:1e:0e:6b:4e:eb:b4:43:4f:
cf:17:06:88:f4:7c:c9:4b:71:4b:25:9d:c0:b7:d7:
ab:01:3a:97:1b:2e:08:44:8e:90:5e:b1:77:d1:6c:
24:8f:8a:14:52:6c:2b:7d:cf:90:42:ac:e3:9f:31:
fc:26:c9:52:4b:8d:c7:ae:04:b8:9d:2f:b0:c7:d1:
41:e5:d5:75:81:1b:04:0b:60:ac:26:23:2a:6c:1d:
28:8f:15:17:e2:52:32:00:d5:10:6e:9d:00:ee:43:
d6:4a:f1:a1:54:26:28:ce:8e:0e:57:23:05:c6:62:
90:6b:27:b4:e5:48:fc:fe:19:8a:2f:26:54:d2:65:
1a:a2:74:85:d7:4b:a4:16:03:e7:57:7b:c0:65:58:
aa:09:5f:14:61:69:ba:3c:91:7c:24:1c:c2:ba:fe:
f5:25:40:34:89:b5:c4:8b:eb:23:0a:db:95:0a:3b:
64:16:09:f0:31:3a:f7:08:82:c0:74:07:8b:a1:b4:
e4:fb:83:d8:1c:c9:29:c9:0a:2f:82:1d:36:d4:17:
c0:2b:d1:82:64:82:53:79:e9:e5:b1:7d:c4:34:c1:
ce:96:5a:8d:18:11:89:e3:c0:43:55:55:c5:e5:b9:
00:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FF:0B:8E:A2:92:0E:44:CF:F9:F3:06:D9:95:EF:1A:50:7D:5A:4F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/iv8LjqKSDkTP-fMG2ZXvGlB9Wk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.28.0/24
185.225.3.0/24
185.226.105.0/24
Signature Algorithm: sha256WithRSAEncryption
88:e2:cc:3b:32:eb:4c:84:21:34:8b:f5:44:49:97:66:e4:d7:
b8:83:0b:7c:40:0b:18:8b:c8:1c:b3:dd:4d:14:ad:28:df:8b:
79:5a:f6:f8:3f:18:a4:a5:3c:6d:ac:50:35:21:85:dd:67:0a:
64:c4:0f:a6:3f:f2:c5:0d:0c:2d:7e:c6:1e:50:9f:11:6d:ed:
cd:09:cc:41:f8:36:a9:f0:73:4f:ec:26:2c:c6:a7:03:90:6a:
c7:13:01:2a:d8:7d:27:e9:d5:09:1e:89:3f:20:ec:74:fd:b6:
80:2c:12:32:c4:87:76:43:d8:c4:d5:21:d6:4c:2e:d6:76:bf:
8d:ab:62:5e:55:2e:99:d3:21:84:e6:39:92:23:8d:35:eb:17:
88:74:de:5e:e6:16:fd:4b:1e:5d:b9:3f:d3:02:46:97:b4:ba:
53:1d:e8:05:20:42:a9:b0:ef:5d:8a:3f:30:f5:d1:74:00:fb:
39:3f:29:e7:79:f1:e5:a1:c7:49:d9:cd:3a:c2:06:53:44:a8:
ae:7d:83:c6:f3:9a:53:81:e4:56:08:c4:0a:28:4d:98:34:a7:
88:c2:1e:9f:bd:27:d0:12:e0:a3:58:53:57:e5:a7:67:10:29:
4c:6f:f8:d7:59:a0:df:4e:0c:f2:cc:ec:6f:57:d1:e3:92:4f:
2f:40:50:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org