Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nTh5uGEj0RtkKSZpR7nmesHudeA.roa
File: nTh5uGEj0RtkKSZpR7nmesHudeA.roa (raw, json)
Hash identifier: 2EfPYv8UdvL5zS9eJcoT++dQhTRQ3zJPEP+BbNHwzs0=
Subject key identifier: 9D:38:79:B8:61:23:D1:1B:64:29:26:69:47:B9:E6:7A:C1:EE:75:E0
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07AB0836
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nTh5uGEj0RtkKSZpR7nmesHudeA.roa
Signing time: Thu 28 Apr 2022 12:12:36 +0000
ROA not before: Thu 28 Apr 2022 12:12:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.226.105.0/24 maxlen: 24
185.238.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128649270 (0x7ab0836)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 28 12:12:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d3879b86123d11b6429266947b9e67ac1ee75e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:46:2d:c6:2e:07:9b:d3:67:e9:c1:f1:a5:10:
70:d6:bb:bd:95:8c:ec:b1:aa:f5:df:78:f2:a8:78:
76:06:ca:62:63:11:a6:c8:6e:be:97:04:1d:39:d9:
76:f2:67:26:66:64:31:21:d3:32:dd:dc:a2:e1:93:
da:3e:5a:94:f3:a6:4b:58:24:d4:38:f1:fa:7d:8c:
35:07:63:f4:0f:50:82:ed:61:83:c7:45:d8:92:d9:
22:4f:10:1c:09:d8:4a:f9:37:31:85:08:6f:eb:5c:
f0:c1:fa:e4:f3:a8:96:1a:df:f4:a9:45:a9:9e:1c:
8b:ea:cc:76:54:14:74:83:f4:3f:6a:c3:2c:7a:0e:
64:03:52:da:62:0b:4d:74:10:a6:be:b9:01:cd:4b:
0f:bf:0b:9b:bd:2f:ab:b8:2a:41:43:3e:36:5f:39:
68:cf:a3:39:7d:9d:fd:2d:93:01:6c:4f:47:5d:11:
9b:e7:0d:2b:22:4e:7c:b2:c6:6c:6c:d0:26:52:71:
07:b0:2a:16:d3:01:8b:e1:d4:61:4f:7b:12:02:15:
b9:13:22:bb:14:94:fc:65:59:33:8a:8b:0a:3b:57:
0d:ac:19:5a:b3:5f:fb:72:e8:93:21:8d:90:ab:fc:
5f:0d:2f:5d:93:66:ad:ed:48:2b:e0:d7:7a:9b:4d:
0e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:38:79:B8:61:23:D1:1B:64:29:26:69:47:B9:E6:7A:C1:EE:75:E0
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/nTh5uGEj0RtkKSZpR7nmesHudeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.105.0/24
185.238.230.0/24
Signature Algorithm: sha256WithRSAEncryption
94:2f:04:f7:c1:92:00:de:23:bc:78:9a:50:b5:81:cf:b1:4d:
26:3a:63:29:6f:a9:12:e8:64:82:fd:98:2e:93:8e:16:ad:37:
77:23:d3:df:aa:f6:45:de:47:6b:b8:30:ab:ba:32:fe:bc:cf:
3c:bd:c2:b6:12:f7:ef:8b:26:5e:c1:95:e6:4b:bb:63:01:a5:
90:38:ab:cc:8d:c5:70:0d:05:c1:d8:42:6e:37:8b:bb:a0:cb:
ae:23:04:e7:21:f8:b9:11:73:f2:ad:1e:14:f9:02:c1:48:9c:
4e:02:67:a8:70:27:d7:c6:d4:e4:88:8d:e2:20:21:ec:34:8d:
9f:d4:7d:9d:24:1f:40:04:a9:dd:e1:91:7e:7a:f6:43:9e:68:
8f:ab:99:1f:5e:c3:8a:76:c9:d2:79:e4:a8:9c:e0:b1:f2:38:
56:74:3a:05:94:72:a2:be:4c:3c:5c:81:ac:7b:93:ac:c4:60:
35:54:29:57:a8:8e:be:ad:a6:14:fa:70:ae:21:42:ed:8b:89:
ab:5e:98:93:71:64:a6:f8:0c:0c:b1:c2:a7:fb:a5:ad:91:25:
67:c5:8c:4d:6f:64:ad:b0:11:8b:c2:e7:66:d2:4a:43:00:ff:
53:4a:95:8d:e1:5e:2e:2f:f0:2f:fd:01:98:1f:f4:13:e4:70:
ae:cf:dc:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org