Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jOeA4a5B7-PprCgha7s0tQy_3TA.roa
File: jOeA4a5B7-PprCgha7s0tQy_3TA.roa (raw, json)
Hash identifier: ovfd5WJru1JZ964kqFfJr9DxjlojeKOOfb1hP8DD+TE=
Subject key identifier: 8C:E7:80:E1:AE:41:EF:E3:E9:AC:28:21:6B:BB:34:B5:0C:BF:DD:30
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0647BC23
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jOeA4a5B7-PprCgha7s0tQy_3TA.roa
Signing time: Sat 01 Jan 2022 06:52:40 +0000
ROA not before: Sat 01 Jan 2022 06:52:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 185.238.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105364515 (0x647bc23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ce780e1ae41efe3e9ac28216bbb34b50cbfdd30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:90:58:11:e2:ea:e0:be:b3:be:50:0c:62:3d:
af:73:25:a8:ae:6c:57:ac:f7:0d:3f:53:55:77:d3:
9d:9c:63:bd:2a:fc:e6:d7:1c:59:09:ff:01:69:5f:
25:89:e2:d4:98:a6:40:1d:d2:08:d2:f0:63:8c:ef:
48:c6:f7:d7:6a:e6:76:c2:e2:50:8c:a8:b8:46:e3:
04:0d:8c:14:09:04:0f:42:41:85:0c:eb:0a:ee:8b:
e5:30:04:56:37:e3:06:97:79:a3:d9:9e:72:41:68:
46:8d:d5:87:f0:12:2c:b2:8d:fd:34:7d:5c:f6:46:
52:e3:09:a8:2b:f8:3a:ca:09:17:17:da:b3:12:5f:
7c:8b:f0:22:9a:af:4e:32:7e:45:f1:cf:17:93:53:
12:1e:24:62:8a:4a:5b:e6:10:2f:32:80:fb:f2:44:
7e:a4:56:00:19:e5:4f:b0:15:d1:82:64:87:b7:ee:
dc:7f:03:a2:1e:de:64:a5:a7:dc:f8:fa:f8:98:07:
4c:e6:b2:82:00:4c:5f:d6:09:82:46:3c:04:9b:76:
d0:a2:e1:2d:2c:a0:17:d4:b7:8e:c5:36:5a:d9:2f:
8b:b0:6a:2d:b4:a5:d6:64:69:da:52:e1:9a:c1:6e:
dd:97:d0:b4:0d:60:8c:e4:35:98:bd:f9:ec:91:95:
59:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E7:80:E1:AE:41:EF:E3:E9:AC:28:21:6B:BB:34:B5:0C:BF:DD:30
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jOeA4a5B7-PprCgha7s0tQy_3TA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.231.0/24
Signature Algorithm: sha256WithRSAEncryption
86:31:99:94:4e:87:24:fa:85:4e:1e:9e:ef:61:20:15:6b:b6:
94:81:6d:11:c3:6b:42:8b:bf:18:54:bd:0a:63:82:4c:83:c8:
6a:bb:09:8e:57:ae:3f:fe:5c:43:50:e1:ea:b1:b8:7a:29:18:
27:01:48:56:a6:01:d4:08:6e:27:ad:75:bc:7a:2e:92:2a:46:
bb:35:fc:e0:96:5f:07:e0:f5:59:8d:62:ad:48:5f:50:06:72:
5c:09:ff:46:e5:12:15:35:b3:29:16:89:c1:e6:4c:11:d6:cf:
c5:e8:4b:d1:ec:2e:af:b7:cb:3e:7a:e2:97:77:c5:8a:94:16:
52:bc:52:62:2a:c6:5c:89:2b:97:ca:eb:e2:71:36:3a:95:a4:
12:71:20:41:d8:54:a9:0e:53:25:fd:3d:48:40:b9:c4:dc:f4:
4a:ca:73:2b:15:87:c1:de:d3:fd:dd:84:a9:88:33:60:75:9d:
61:36:64:f4:91:d2:8c:02:29:20:ce:82:2c:26:ba:ad:a1:15:
fe:b9:20:b1:e9:1a:49:cd:85:1d:b2:8d:38:d4:f8:2e:c1:3a:
8b:a1:42:fd:aa:c4:3d:5f:f9:85:3b:58:f4:27:d3:d9:19:e1:
5f:9b:5b:8d:f1:7d:c7:38:ca:c6:60:7d:17:69:f8:d9:0d:75:
7f:53:be:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org