Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tDAhpYIfM_4ueMe1Nl0zwM-d4i0.roa
File: tDAhpYIfM_4ueMe1Nl0zwM-d4i0.roa (raw, json)
Hash identifier: CZtfuU8YQKUHz1KJrv0Y+03Z6TM05tf7b596QeqfYAw=
Subject key identifier: B4:30:21:A5:82:1F:33:FE:2E:78:C7:B5:36:5D:33:C0:CF:9D:E2:2D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07749E30
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tDAhpYIfM_4ueMe1Nl0zwM-d4i0.roa
Signing time: Wed 06 Apr 2022 20:47:59 +0000
ROA not before: Wed 06 Apr 2022 20:47:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60609
IP address blocks: 185.150.78.0/23 maxlen: 23
185.150.76.0/24 maxlen: 24
194.26.174.0/24 maxlen: 24
194.26.174.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125083184 (0x7749e30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 6 20:47:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b43021a5821f33fe2e78c7b5365d33c0cf9de22d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:53:e2:64:49:27:46:1e:84:28:b4:78:6a:80:
3e:33:62:7c:13:5d:2d:9e:b1:dd:fb:11:27:a7:42:
ff:83:e1:a8:2b:25:51:06:9b:53:80:38:a8:db:68:
48:12:8e:80:51:2b:3c:28:cf:54:8e:b4:d9:af:dc:
ce:9c:d6:1b:9c:7a:34:b3:94:f3:34:1f:9e:e5:6f:
90:59:6e:a4:a1:18:c3:80:ea:eb:e9:c3:7d:71:1b:
91:25:59:4f:eb:c7:1d:27:86:5b:9c:bb:aa:a2:d1:
f4:8c:2f:bf:7b:2d:12:86:9f:51:a0:c2:49:35:c3:
1f:85:94:10:14:ea:ec:85:61:e9:a5:ff:a6:f2:07:
8c:12:69:4e:55:82:50:1b:23:4c:13:01:c8:9c:fc:
16:31:9d:ae:1a:20:43:e3:bb:25:b0:8f:fd:00:cc:
fa:eb:88:2a:f9:c9:b5:41:56:4d:b8:7c:ed:e6:f2:
ee:4a:75:92:5f:b8:2e:39:ad:ea:49:ed:cc:d0:de:
1e:f5:17:a5:56:b7:13:e8:28:a4:18:ab:56:a9:ef:
a8:cf:25:2d:6b:68:61:09:bc:f5:37:78:d3:81:23:
e4:af:1d:73:8f:fb:2e:68:08:e9:34:a5:30:2e:61:
bd:99:68:1c:e1:2f:fb:2a:79:28:7d:0b:6e:af:57:
8e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:30:21:A5:82:1F:33:FE:2E:78:C7:B5:36:5D:33:C0:CF:9D:E2:2D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/tDAhpYIfM_4ueMe1Nl0zwM-d4i0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.76.0/24
185.150.78.0/23
194.26.174.0/23
Signature Algorithm: sha256WithRSAEncryption
04:23:66:3a:cb:8e:f6:fb:b2:e1:d8:39:6b:48:e7:36:21:df:
86:96:3e:d4:c6:a4:c3:67:c5:e6:bc:bc:02:2a:17:2d:80:20:
c3:bb:d6:ff:8a:54:c9:7d:ec:24:72:f0:10:89:63:28:42:63:
4d:d9:3a:d3:6e:09:ba:17:5a:12:bf:72:ce:1d:2e:f4:4c:95:
d4:25:20:d0:d0:df:94:7d:78:31:60:01:d6:8e:fc:fd:21:b1:
1b:dc:d1:4a:e6:b3:4b:0e:be:e3:5d:0e:8b:10:15:84:ff:8c:
10:43:0a:85:cf:6e:da:48:46:3b:32:21:f4:62:23:a1:bf:df:
77:40:bf:a2:50:a7:e6:66:7a:cc:30:2d:9d:e6:c1:e7:5d:3f:
57:97:03:c9:3b:85:08:71:84:98:34:87:b3:32:d7:cf:91:da:
d0:95:e5:e7:15:6d:ad:25:54:07:39:a6:b4:18:fe:9a:07:52:
bf:fe:8f:a3:c9:d1:e5:9a:28:f4:d3:f5:12:c8:9a:7d:d8:73:
25:2a:81:ce:bd:2a:12:55:b8:42:47:e6:22:24:43:ea:81:7a:
4f:9b:43:c5:49:ce:8a:e8:f9:69:aa:63:c6:85:e7:f5:a3:ec:
12:a3:fa:57:a9:53:0d:b0:1b:4c:b1:f6:1b:ac:00:21:59:17:
5a:04:4d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org