Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vZmPdchxAyTJBuZjFiAnnpyCQXI.roa
File: vZmPdchxAyTJBuZjFiAnnpyCQXI.roa (raw, json)
Hash identifier: A8pQ4eNfr4cYH54PcHo+Y/yGCynzpVUVOQYm9b6pU7o=
Subject key identifier: BD:99:8F:75:C8:71:03:24:C9:06:E6:63:16:20:27:9E:9C:82:41:72
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07D40FCD
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vZmPdchxAyTJBuZjFiAnnpyCQXI.roa
Signing time: Fri 06 May 2022 12:30:45 +0000
ROA not before: Fri 06 May 2022 12:30:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.226.105.0/24 maxlen: 24
185.194.28.0/24 maxlen: 24
185.223.153.0/24 maxlen: 24
185.225.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131338189 (0x7d40fcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 6 12:30:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd998f75c8710324c906e6631620279e9c824172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:09:6e:45:a9:2d:58:b3:b6:22:fb:80:c9:4d:
41:cf:c9:20:20:b3:a7:1a:e6:7c:a1:04:f1:65:50:
82:f6:33:75:c2:5a:6d:ca:20:a5:47:d0:7e:26:25:
a4:f8:26:e1:bb:6c:83:e3:af:81:92:dd:9a:de:89:
8f:96:12:ed:7d:ea:d9:56:ac:98:0b:8a:a3:76:2d:
9d:68:71:b1:29:b1:41:39:ca:21:31:5f:03:78:83:
80:d6:38:94:5f:5b:71:45:f1:de:ec:fe:88:4b:1f:
34:5e:0b:ff:01:42:3d:01:3a:cd:fc:14:8e:61:a8:
57:21:bb:3c:4e:51:9d:66:f0:b6:0f:58:f0:2e:99:
1f:60:a1:bf:87:46:d9:9e:a6:0f:7e:c8:fc:3a:c4:
bf:5e:da:44:a5:6a:f0:6f:ed:1c:37:df:f9:b2:29:
e5:4c:26:c6:75:b7:70:32:87:8a:de:14:ae:e0:30:
29:c0:31:57:c9:6b:8a:09:ee:f8:1b:38:79:5b:48:
e5:39:0a:cf:ff:09:f1:da:a9:27:84:60:02:58:2d:
f5:e0:d9:42:d4:1a:a5:7b:a8:01:ec:2e:67:69:7d:
f0:a1:ae:c9:52:42:4b:97:f9:78:59:64:62:af:f2:
88:5c:e2:cc:e2:0a:50:68:44:17:ad:ad:ec:af:62:
08:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:99:8F:75:C8:71:03:24:C9:06:E6:63:16:20:27:9E:9C:82:41:72
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vZmPdchxAyTJBuZjFiAnnpyCQXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.28.0/24
185.223.153.0/24
185.225.3.0/24
185.226.105.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:b3:0a:dd:0d:15:78:ae:96:7e:7d:41:97:31:38:56:6c:2f:
53:b6:0a:1e:3c:98:78:56:e4:41:44:9c:05:d4:0d:48:62:12:
7e:5d:d6:c2:3b:3b:f5:8d:81:e2:f6:dc:8c:2f:2d:05:67:28:
a3:b0:99:b3:f2:69:df:39:4d:6a:dd:78:19:e3:b2:ad:2e:25:
f4:4b:9c:12:9e:fa:68:21:29:81:de:19:8b:4d:5e:8c:c4:08:
3b:e3:76:28:45:17:32:0f:f9:f3:dd:a9:48:fd:fc:69:c2:cd:
50:e1:72:ab:41:93:51:a7:e9:a1:8e:48:23:4e:72:99:4d:ec:
9e:19:1a:e6:f9:92:66:fb:1a:59:81:2b:86:97:38:c2:dc:ee:
e0:6e:e7:d5:31:91:65:2e:1d:db:b2:7a:df:db:26:6a:df:c7:
4b:5d:c2:31:95:52:2f:c8:96:44:e8:01:fc:7f:d0:b0:47:82:
75:55:f7:a7:99:e3:7d:71:32:90:eb:d9:81:0e:08:c1:0c:e9:
61:58:e1:d1:ce:a3:70:db:da:04:9f:08:68:73:e0:36:70:b1:
49:34:e7:bf:24:ca:4c:bd:88:a9:5d:d4:fd:61:56:ee:49:e0:
11:02:31:b6:79:bd:c1:53:f4:b2:2d:12:fb:50:c2:4c:93:a1:
0d:8a:ca:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org