Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/r4R17lK48kAaRgxVHbNP0CyfwI0.roa
File: r4R17lK48kAaRgxVHbNP0CyfwI0.roa (raw, json)
Hash identifier: Tlc7xdLD9Nl3OXiTOUWTivQAAemYGP03Wa/sjfLMESk=
Subject key identifier: AF:84:75:EE:52:B8:F2:40:1A:46:0C:55:1D:B3:4F:D0:2C:9F:C0:8D
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 0AC4CFE7
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/r4R17lK48kAaRgxVHbNP0CyfwI0.roa
Signing time: Mon 21 Feb 2022 15:29:23 +0000
ROA not before: Mon 21 Feb 2022 15:29:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206119
IP address blocks: 185.237.80.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
194.145.137.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
185.254.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180670439 (0xac4cfe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Feb 21 15:29:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af8475ee52b8f2401a460c551db34fd02c9fc08d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:84:31:f8:8b:96:db:e3:1a:47:ab:45:75:64:
0e:4f:87:93:11:92:27:d6:c9:4d:7e:7c:61:95:c1:
83:23:bc:83:0f:81:38:24:3c:ce:2c:80:70:4e:9d:
77:f5:57:a8:c5:e9:d0:1c:cb:c3:b6:f5:50:ba:8c:
6a:4c:ce:37:96:f5:62:ea:78:23:9c:4b:2e:20:af:
83:c4:fd:34:f5:71:f0:94:b7:59:8d:ec:3f:df:75:
54:b0:6d:50:d8:4e:b4:ad:42:f4:3e:f3:8e:e0:5f:
b7:ff:0e:ba:14:81:02:7a:60:43:12:b4:1f:0d:56:
6f:0b:49:9e:7f:0a:01:00:81:6e:99:48:8b:34:ff:
6e:1d:82:3d:71:55:f1:c5:52:02:6c:c7:9e:6a:31:
22:44:41:63:48:f4:df:1b:51:94:4e:df:bb:ed:f1:
61:f2:98:12:9b:97:a9:8d:c2:ee:3b:b2:f5:dc:d2:
b0:d1:ed:02:95:96:d2:2c:56:86:8a:98:b5:a8:4f:
97:44:3f:25:68:fa:4f:b5:2f:fd:15:fa:50:fc:8a:
9e:b7:66:fd:05:ea:d2:16:73:74:a3:a8:87:b2:0d:
77:c6:cc:e7:27:91:38:71:af:83:d1:cd:fa:e5:7a:
48:e2:b1:90:76:72:9a:5f:24:fa:46:bb:10:f6:98:
03:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:84:75:EE:52:B8:F2:40:1A:46:0C:55:1D:B3:4F:D0:2C:9F:C0:8D
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/r4R17lK48kAaRgxVHbNP0CyfwI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.18.0/24
185.237.80.0/24
185.254.93.0/24
185.254.95.0/24
193.36.62.0/24
194.145.136.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:4c:13:d1:0c:35:de:9f:44:5c:2e:9d:c1:db:c7:23:09:92:
f8:0b:5e:dc:07:57:fc:0b:4a:d9:33:20:cd:06:50:99:1d:a3:
d4:e5:ee:49:53:48:1e:3e:76:d1:2e:7e:90:1e:67:bc:3b:cb:
10:74:fc:af:c9:b8:ec:df:61:38:b5:8c:0d:80:ef:7c:a9:9e:
e8:67:f3:6e:af:66:43:64:b9:cb:6f:06:53:b9:d7:a0:f3:e5:
6d:a4:ef:d4:c4:c8:1a:80:a8:c2:d6:6b:98:63:72:fa:80:bc:
3f:cf:0a:5e:d1:ec:1b:32:83:12:3e:2d:b6:24:fd:f4:2e:b6:
e1:80:3b:a0:9e:0b:dc:fc:92:f6:3b:48:ed:a0:c9:8b:bc:e9:
4a:e4:e8:99:e8:8f:83:67:ea:56:4f:2e:56:45:d3:50:4f:f6:
60:2d:7d:73:b4:ae:2c:2b:ba:29:1c:51:3a:10:5a:d9:7b:ff:
e5:af:ef:7a:6c:1f:8f:da:90:0b:89:ea:43:06:42:cc:bd:d9:
be:c4:62:b8:d7:eb:68:71:19:e3:90:10:a1:36:6d:ee:e9:1b:
9c:19:a7:75:ca:4a:4f:67:88:9e:9b:85:fb:8e:ef:cb:66:d6:
19:af:a7:c8:d0:c4:73:49:f7:3c:2a:6b:55:f9:7a:56:8e:eb:
c1:d6:35:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:59 2024 by rpki-client on console-fra.rpki-client.org