Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uClbf4nFCy-WQEWA0F31FxfthOQ.roa
File: uClbf4nFCy-WQEWA0F31FxfthOQ.roa (raw, json)
Hash identifier: 6rIpqDwku82YSeftHby3CDFC857HdXj2u1ylUdp656g=
Subject key identifier: B8:29:5B:7F:89:C5:0B:2F:96:40:45:80:D0:5D:F5:17:17:ED:84:E4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0181DD0F7317ECD33E387213719C9419C66F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uClbf4nFCy-WQEWA0F31FxfthOQ.roa
Signing time: Fri 08 Jul 2022 09:06:26 +0000
ROA not before: Fri 08 Jul 2022 09:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.206.250.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:0f:73:17:ec:d3:3e:38:72:13:71:9c:94:19:c6:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 8 09:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8295b7f89c50b2f96404580d05df51717ed84e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:21:4e:88:d0:f9:51:de:f5:ba:ce:ed:83:92:
55:2d:0a:9b:ad:45:5a:30:de:ef:d3:99:a8:4a:af:
1f:0f:27:1c:b1:09:53:1a:28:81:6e:5f:e8:6a:55:
10:00:88:e1:54:cd:8a:33:8b:62:9e:70:ef:d2:01:
d3:a9:8e:e2:ef:26:ac:0f:13:99:7f:d8:96:ee:74:
f1:82:39:89:f6:2f:05:9d:87:40:f3:30:65:7d:2b:
a8:4e:e1:1c:f3:6d:92:d2:c7:eb:28:b9:d0:f6:14:
70:e7:0e:3a:8a:28:bf:f6:63:ed:8c:ff:cb:a7:dc:
5b:6f:81:70:69:dc:9f:62:87:3a:f2:4b:3b:8c:4c:
14:a8:af:76:5d:e6:ca:49:6c:5e:f6:c2:29:a9:21:
2a:07:f6:63:45:83:51:5d:9d:65:57:46:29:d8:96:
74:c4:26:8e:14:7d:08:67:04:17:01:61:f7:a3:e0:
20:f9:98:64:9c:b5:31:71:e2:57:e0:62:39:a0:77:
87:b4:44:d4:79:80:81:38:e4:1c:66:c6:86:cf:f6:
62:a7:4d:6e:48:1a:bb:29:2e:1c:d4:ef:d4:67:5f:
99:f5:38:37:ea:96:02:5b:e3:63:40:45:e2:c2:b9:
06:95:15:f4:b5:34:9c:1b:dc:2b:5e:06:2c:38:f0:
28:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:29:5B:7F:89:C5:0B:2F:96:40:45:80:D0:5D:F5:17:17:ED:84:E4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uClbf4nFCy-WQEWA0F31FxfthOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.250.0/24
185.223.155.0/24
Signature Algorithm: sha256WithRSAEncryption
21:e1:04:25:22:73:db:39:ae:fd:74:cc:96:ee:43:3e:b6:de:
04:bc:1b:ff:70:21:1d:69:61:63:f3:cc:d0:2a:72:6c:db:5f:
51:76:6d:fc:40:bb:d5:54:4b:17:02:d9:73:7b:f0:5d:19:13:
c1:5c:30:0a:73:0c:92:8c:8d:1e:d9:ff:99:18:ba:0a:af:c5:
fd:c6:73:03:77:cd:fe:ac:02:79:7f:db:01:4b:90:e7:d6:3c:
4c:8b:e5:33:4c:7b:1e:af:0d:ad:e7:c6:43:56:a2:08:60:4f:
04:81:f7:ab:f4:e9:3f:8e:c7:19:c9:ed:bb:86:a3:b2:11:81:
66:03:10:3b:84:80:8a:78:1d:bf:f9:f6:59:3b:c9:9f:4e:97:
31:e5:a9:45:4f:ae:6b:d6:98:d0:aa:64:69:48:bd:c5:ff:76:
45:8d:87:d1:da:be:23:49:69:53:37:f1:5e:d0:52:3b:85:89:
4a:ec:0b:f2:6c:e8:dd:53:5e:67:18:a1:a8:99:c8:1b:70:cb:
3d:cc:d4:e2:b9:16:c2:a1:ef:5d:96:fb:ff:b9:b0:57:f2:28:
04:05:67:f3:c9:d3:8d:5a:d5:65:b0:3c:43:1a:f2:5b:19:4d:
e7:4c:6e:7f:f3:b8:6e:93:1d:f0:a5:22:ae:c6:40:6a:03:28:
e1:94:c9:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org