Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vA5o6dfkbdXj3e4r0oGM2QvAchc.roa
File: vA5o6dfkbdXj3e4r0oGM2QvAchc.roa (raw, json)
Hash identifier: 8NRhaqbXgoZ8wZbKGIVhRE3yqQm6vSCD4ci1xBeh4Pc=
Subject key identifier: BC:0E:68:E9:D7:E4:6D:D5:E3:DD:EE:2B:D2:81:8C:D9:0B:C0:72:17
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0653F8D2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vA5o6dfkbdXj3e4r0oGM2QvAchc.roa
Signing time: Sat 01 Jan 2022 06:52:46 +0000
ROA not before: Sat 01 Jan 2022 06:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212862
IP address blocks: 185.196.40.0/24 maxlen: 24
185.196.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106166482 (0x653f8d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc0e68e9d7e46dd5e3ddee2bd2818cd90bc07217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c4:41:8f:bf:3e:f7:da:c4:48:4b:d4:d6:ce:
84:de:58:ee:03:3b:cf:c7:77:5c:13:35:07:d8:13:
92:ad:a4:da:a5:68:c6:15:69:40:57:3b:3f:de:f9:
9b:11:1b:a2:ce:81:4a:be:c6:da:f7:ef:ce:8b:b7:
96:d1:82:71:4a:c2:e9:a0:8f:80:82:c6:d0:63:ca:
5e:83:24:89:11:97:bf:00:70:e8:f5:ed:bc:e9:d1:
58:2f:ac:6e:4e:7c:d9:8f:76:9b:07:83:33:62:e5:
28:6a:e8:6a:fb:d7:1a:3e:32:c5:b6:1e:2a:ee:f1:
87:c4:eb:83:cc:69:34:a5:e8:11:9e:81:6f:8b:96:
8f:26:4c:1a:eb:ef:a3:84:c6:55:af:24:92:76:af:
e3:c0:45:57:e3:b9:a7:f1:60:f6:0d:03:05:0c:f8:
36:14:ef:33:ec:99:e3:2d:6f:b8:7d:16:f1:f0:98:
84:75:ba:64:ca:e7:e7:ae:fb:e3:12:43:92:ee:6b:
e1:39:cd:93:3c:d1:66:1d:8d:d9:e1:06:e9:60:c5:
c2:dd:29:9a:a9:34:88:3d:3d:43:96:d0:a7:a7:be:
7d:d9:09:c5:3b:5c:c0:9a:dd:8e:ee:a8:ea:45:c9:
30:26:99:fd:41:a3:6f:d4:81:44:99:94:e8:19:90:
7f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0E:68:E9:D7:E4:6D:D5:E3:DD:EE:2B:D2:81:8C:D9:0B:C0:72:17
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vA5o6dfkbdXj3e4r0oGM2QvAchc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.40.0/23
Signature Algorithm: sha256WithRSAEncryption
32:40:d8:1c:ef:96:0c:0e:88:f0:dd:b3:95:7a:cd:a0:a2:88:
74:1f:53:b7:49:18:89:ce:54:3c:71:5a:ad:9b:17:be:fc:eb:
f8:ba:1a:4d:20:a4:be:53:8c:43:15:02:73:58:31:e7:b1:9e:
7a:67:51:86:a7:f9:20:9a:db:ae:f2:16:bd:86:e1:d6:43:2f:
f7:93:2a:4d:c7:5d:2c:9f:a6:2c:33:5e:79:b1:21:60:0e:65:
ce:b4:48:f3:31:0a:b1:38:4a:44:d0:f7:85:d9:9f:ba:3f:58:
3b:c3:4d:bd:d2:e1:10:aa:d7:24:0e:cf:a4:b1:3c:6f:55:40:
b3:05:34:87:2a:c0:11:a3:70:a3:c1:a6:e1:28:c1:6e:b7:f8:
90:d8:e1:7b:8a:01:fa:e0:73:0f:5b:ea:af:d0:3e:83:83:8b:
88:74:0b:19:f5:96:62:2d:47:b2:b0:03:88:0c:22:65:f0:20:
9f:7d:53:25:ef:c7:59:37:55:fb:48:bd:34:e2:95:07:72:e6:
3b:4d:8b:7e:37:38:89:1c:75:71:5c:ea:63:e0:22:b2:15:8e:
64:ab:6c:af:21:52:39:c4:0d:14:0b:98:32:2b:6a:fb:54:88:
3e:41:bf:48:9e:5d:35:1c:0a:c5:8b:e5:0e:5e:d0:05:b3:32:
4e:53:3a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org