Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0c3c30-4527-4722-971b-f5fe3e1b0a63/1/PEFpQhMDI-y4uNIUk-PFuywX2So.roa
File: PEFpQhMDI-y4uNIUk-PFuywX2So.roa (raw, json)
Hash identifier: zX5IIuiuGvBnvjqeRKiJ9L13BFnJQMxsWbn680CxERA=
Subject key identifier: 3C:41:69:42:13:03:23:EC:B8:B8:D2:14:93:E3:C5:BB:2C:17:D9:2A
Certificate issuer: /CN=d92e5cdf4c54ff868ce895315eab58f2d88650c2
Certificate serial: 1440256F
Authority key identifier: D9:2E:5C:DF:4C:54:FF:86:8C:E8:95:31:5E:AB:58:F2:D8:86:50:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2S5c30xU_4aM6JUxXqtY8tiGUMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0c3c30-4527-4722-971b-f5fe3e1b0a63/1/PEFpQhMDI-y4uNIUk-PFuywX2So.roa
Signing time: Sat 01 Jan 2022 01:02:13 +0000
ROA not before: Sat 01 Jan 2022 01:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200585
IP address blocks: 185.89.232.0/24 maxlen: 24
185.89.232.0/23 maxlen: 23
185.89.233.0/24 maxlen: 24
185.89.234.0/23 maxlen: 23
185.89.235.0/24 maxlen: 24
185.89.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339748207 (0x1440256f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d92e5cdf4c54ff868ce895315eab58f2d88650c2
Validity
Not Before: Jan 1 01:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c416942130323ecb8b8d21493e3c5bb2c17d92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:41:ef:35:e9:e0:06:64:85:a0:05:c6:a6:
c9:6a:99:4d:36:73:e2:d0:e7:30:22:5b:86:60:0e:
7d:5f:df:c0:b8:5d:0f:c2:29:c1:a9:45:01:82:7f:
c3:11:60:0c:de:5f:2c:6b:b8:79:ac:66:9c:8d:44:
56:3f:2e:ce:8f:9c:75:06:7f:c5:e0:27:d4:94:1e:
f4:9d:9e:3d:02:7f:fe:10:f2:d2:b1:a5:e5:a5:f6:
7f:e3:7b:fc:04:76:33:50:80:e1:1b:6e:0b:0a:73:
6d:0c:85:42:5f:cc:f3:f8:d8:fc:e1:83:04:b0:45:
fe:54:73:be:8e:6f:19:c0:3d:dc:75:d6:cc:ae:8c:
2c:7d:3a:f6:97:c9:38:ed:ad:b7:a4:85:a9:a6:32:
f6:26:e4:6b:01:70:b9:c0:27:f4:74:cb:e0:32:d1:
58:f5:4d:7e:d9:1e:8a:76:10:15:42:37:26:9f:e4:
37:e4:5e:16:9e:5a:fe:a9:56:79:4d:27:45:67:b2:
57:8f:c6:e6:5c:f6:50:74:64:e5:8c:fe:c2:da:f7:
9b:8f:55:14:71:94:84:c5:22:79:eb:54:e0:48:7d:
c7:cb:e4:42:d9:91:42:dc:82:d8:15:24:c4:88:d4:
32:dd:44:87:31:b0:69:d9:68:91:6b:86:cf:61:34:
8d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:41:69:42:13:03:23:EC:B8:B8:D2:14:93:E3:C5:BB:2C:17:D9:2A
X509v3 Authority Key Identifier:
keyid:D9:2E:5C:DF:4C:54:FF:86:8C:E8:95:31:5E:AB:58:F2:D8:86:50:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2S5c30xU_4aM6JUxXqtY8tiGUMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0c3c30-4527-4722-971b-f5fe3e1b0a63/1/PEFpQhMDI-y4uNIUk-PFuywX2So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0c3c30-4527-4722-971b-f5fe3e1b0a63/1/2S5c30xU_4aM6JUxXqtY8tiGUMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.232.0/22
Signature Algorithm: sha256WithRSAEncryption
23:3b:76:fa:c8:ea:84:b9:31:91:d0:93:9e:07:42:41:21:42:
ce:b4:be:ed:cc:a2:ab:04:67:41:ce:24:65:3c:df:be:8b:7e:
18:02:52:e9:18:b5:21:7a:58:32:68:f9:6a:e2:63:fd:62:ab:
45:6c:bf:8c:e9:70:1d:bd:20:c9:4b:db:db:e7:3d:c3:c8:8f:
54:0f:ec:9a:c5:cc:11:79:75:f2:48:f6:de:b2:84:ca:3f:17:
dc:71:69:13:3b:26:ea:f7:b7:de:8f:78:13:4b:a1:d5:95:c5:
39:30:dc:7c:77:3c:42:a5:fe:6b:d1:dd:5a:ed:a7:5e:e5:dd:
e4:a4:83:19:12:4c:a5:ba:aa:41:b9:d6:29:24:a4:6b:5d:ef:
3e:2b:8d:5f:0a:cd:c4:f6:02:34:58:eb:1f:43:28:3a:16:58:
64:9b:6d:b0:29:83:d8:bf:99:2d:69:b1:0c:16:d6:83:7d:6e:
ca:a9:33:16:09:ff:8a:71:69:f1:b2:3b:8d:72:78:5b:03:9c:
5b:69:16:77:22:13:3c:b2:46:93:4d:39:65:8d:53:46:e4:5c:
13:a3:03:de:a1:40:ff:a2:90:04:46:00:dd:2e:a5:21:4e:eb:
9b:31:16:5f:9e:8f:ef:a2:af:df:ec:f0:b0:8d:fa:12:fb:5b:
61:e9:61:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:47 2024 by rpki-client on console-ams.rpki-client.org