Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/w82UrUbq4YWOikC5yYgYTcKAUSs.roa
File: w82UrUbq4YWOikC5yYgYTcKAUSs.roa (raw, json)
Hash identifier: FHJH6upuQTgs/zaIMfhYhbzH7Kop2/yOZqXLWVa+XuU=
Subject key identifier: C3:CD:94:AD:46:EA:E1:85:8E:8A:40:B9:C9:88:18:4D:C2:80:51:2B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 064066AC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/w82UrUbq4YWOikC5yYgYTcKAUSs.roa
Signing time: Sat 01 Jan 2022 06:52:37 +0000
ROA not before: Sat 01 Jan 2022 06:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 185.194.30.0/24 maxlen: 24
185.223.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104883884 (0x64066ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3cd94ad46eae1858e8a40b9c988184dc280512b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b6:49:75:72:68:6c:5f:fd:cc:b4:36:f2:23:
d0:19:11:18:ce:7f:08:10:fc:19:01:20:bb:43:2d:
06:15:8b:5f:66:dd:4e:7e:2d:74:2c:f7:1f:fe:30:
1c:9f:9c:b6:47:f3:52:1a:5c:3b:ab:0f:b9:39:b7:
0c:9f:76:bc:12:72:de:d5:37:39:0d:4a:97:a5:e2:
33:c1:0f:e9:8e:20:3a:30:1c:5f:4a:df:ef:69:9e:
97:1f:dd:9c:ae:04:e2:ad:9d:f4:06:06:58:8d:0a:
39:90:21:69:8e:b6:13:6d:bf:4b:7e:9a:7d:19:6d:
f9:f7:32:ad:d3:43:61:42:07:fb:f5:15:40:b4:e4:
81:98:ad:e1:15:e1:de:6b:dd:fa:af:fa:38:e4:00:
c7:3a:85:51:c3:b8:6e:a2:17:a5:bd:87:8e:5d:69:
05:8d:31:4f:23:ad:cc:6f:d3:9a:05:50:a9:57:e9:
e4:6f:16:6f:82:7a:05:c3:01:03:fa:5f:f6:e3:8f:
65:0a:76:1e:17:a7:23:be:ba:4f:19:48:f9:08:ab:
3c:08:17:12:4e:c1:ab:55:02:89:dd:5a:08:4e:e7:
ac:f9:18:ba:c6:14:21:94:2c:cc:b3:2e:ef:c4:f1:
d4:92:f0:c0:f9:4e:9c:f4:4e:ab:a8:96:b7:ef:bf:
e9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:CD:94:AD:46:EA:E1:85:8E:8A:40:B9:C9:88:18:4D:C2:80:51:2B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/w82UrUbq4YWOikC5yYgYTcKAUSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.30.0/24
185.223.152.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:e1:1c:02:ac:5b:81:cd:89:e9:df:fd:fc:d2:63:65:be:64:
41:2f:37:77:c0:cc:8e:9b:fe:de:0b:a3:49:37:e8:ec:ea:04:
ae:21:d5:b0:e7:b1:03:e2:1a:7e:b7:c6:c2:39:3e:83:d3:0d:
22:e1:31:cb:9e:f1:8b:f1:ac:6e:8a:9d:dd:81:98:4f:c7:4f:
09:f3:6f:8a:81:5c:4f:98:46:c4:74:9f:c2:a1:fd:bb:15:29:
56:fd:34:fb:91:15:2b:8d:4b:2c:0e:76:41:9d:65:3e:38:c8:
0c:58:9c:ff:91:b6:22:d4:6f:7c:53:70:34:47:8b:9c:0c:1f:
5d:c6:c2:7d:7c:a7:63:20:11:ff:e0:1d:6a:63:23:66:5d:8c:
1a:e7:45:65:10:91:c4:95:6d:24:a0:3c:2a:1d:61:bf:b9:66:
38:94:c7:d7:ac:6d:14:1c:3e:a3:60:e6:0a:23:d1:bf:1a:ba:
f9:7f:6a:a7:f0:a2:2c:62:b2:7e:a3:ab:32:70:97:b1:00:0f:
7c:c2:dd:b7:14:33:cf:2a:d9:d5:fb:8c:f6:52:34:a0:4a:ca:
1b:0c:e5:82:c6:64:8b:b1:d4:f8:ac:f4:c9:79:14:16:9e:0d:
97:2f:52:55:72:2b:16:72:6f:22:29:c0:34:cc:ef:d4:22:aa:
cc:df:ee:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org