Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/cQVzalkCE55MQ-Kb9QpW8gg8xE0.roa
File: cQVzalkCE55MQ-Kb9QpW8gg8xE0.roa (raw, json)
Hash identifier: L+YG2UNMpbyVlrNP6kQHPeNWkdY0lmfmLUADm0MjB/M=
Subject key identifier: 71:05:73:6A:59:02:13:9E:4C:43:E2:9B:F5:0A:56:F2:08:3C:C4:4D
Certificate issuer: /CN=607e5caff4f47b2b8dc81cc36c8e346662639898
Certificate serial: 033545CE
Authority key identifier: 60:7E:5C:AF:F4:F4:7B:2B:8D:C8:1C:C3:6C:8E:34:66:62:63:98:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YH5cr_T0eyuNyBzDbI40ZmJjmJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/cQVzalkCE55MQ-Kb9QpW8gg8xE0.roa
Signing time: Sat 01 Jan 2022 11:00:25 +0000
ROA not before: Sat 01 Jan 2022 11:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211953
IP address blocks: 185.189.52.0/24 maxlen: 24
185.189.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53822926 (0x33545ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607e5caff4f47b2b8dc81cc36c8e346662639898
Validity
Not Before: Jan 1 11:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7105736a5902139e4c43e29bf50a56f2083cc44d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:75:31:03:35:12:b5:f0:8f:4e:33:53:4e:47:
f9:97:98:00:e3:5d:a6:f0:3c:a7:78:7a:1b:6d:20:
57:39:76:bd:65:2c:ff:d1:f5:8e:83:56:c9:53:b4:
0a:c3:ee:c5:50:fb:17:df:dc:a0:b6:a4:9a:b7:6d:
78:f8:e1:f8:23:35:04:48:80:c0:c8:dd:3c:4a:1c:
3b:49:cd:e9:6f:47:f3:63:1d:52:9c:a3:a2:17:a4:
e2:c0:4f:ad:32:9a:1b:49:21:7b:3f:45:b0:47:03:
34:6c:c2:5b:bb:8e:77:ab:6e:78:57:a0:53:4f:b0:
59:f1:8b:5b:ff:d1:6f:81:9d:da:b5:52:6b:ec:19:
4a:4e:aa:bb:a9:13:d0:74:1e:48:9b:0a:d0:ec:ba:
3e:73:1d:f7:4b:9e:4d:08:4a:3d:8a:82:14:65:b0:
e2:9a:8f:c2:c9:58:08:b7:86:a8:c0:79:54:1e:de:
88:32:72:f2:e1:66:0b:06:84:f0:39:da:9e:e2:ae:
5f:73:92:83:fb:06:dc:ac:0c:61:13:fd:bd:54:51:
b3:fe:cf:ac:5b:40:30:75:6a:ea:5f:bf:fb:a8:e9:
71:74:45:3f:49:07:aa:5c:e2:61:5c:be:d1:bb:ef:
8d:50:1d:61:61:bb:04:30:af:7a:78:73:cb:66:99:
d1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:05:73:6A:59:02:13:9E:4C:43:E2:9B:F5:0A:56:F2:08:3C:C4:4D
X509v3 Authority Key Identifier:
keyid:60:7E:5C:AF:F4:F4:7B:2B:8D:C8:1C:C3:6C:8E:34:66:62:63:98:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YH5cr_T0eyuNyBzDbI40ZmJjmJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/cQVzalkCE55MQ-Kb9QpW8gg8xE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/YH5cr_T0eyuNyBzDbI40ZmJjmJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.52.0/24
185.189.55.0/24
Signature Algorithm: sha256WithRSAEncryption
07:81:d7:8c:ef:72:d8:c7:61:8a:a0:88:0a:0a:1f:8a:75:2c:
09:9e:bd:b9:5d:c6:eb:47:b9:2c:02:c6:8a:06:a4:03:58:98:
4b:1b:b1:85:ba:cb:f3:cc:c5:4d:07:c0:45:97:84:39:96:fc:
64:fc:9b:9d:70:76:de:a6:c1:c9:c9:d7:71:99:3d:a4:8e:e1:
71:bd:0c:34:e1:bf:39:38:28:43:ef:8a:2d:61:9a:d7:52:1d:
f2:68:1e:bb:6a:4a:a4:77:50:47:06:b0:6b:b5:a6:b4:06:9d:
eb:80:1c:a6:fd:46:b7:ae:b8:a0:28:bd:bf:db:f1:d6:dd:31:
dd:15:b8:0b:1d:92:2b:ce:d5:b3:8a:c5:0b:92:71:c6:89:7a:
a1:39:19:7c:cd:5e:cc:1d:e5:fc:9b:2b:19:f3:a7:85:bf:59:
2e:8d:03:b8:4b:2b:46:1a:dc:2f:ca:3e:a2:81:9f:16:88:bd:
99:fb:bb:b1:77:4d:6f:f1:80:18:48:d6:f2:08:f5:26:fd:50:
d8:48:33:db:c3:42:67:f3:21:d1:5c:21:be:1b:5e:de:c6:01:
65:83:41:b5:74:62:a7:56:25:99:d7:a3:bf:08:99:22:eb:d4:
d1:44:86:4f:d6:6e:1a:78:76:6b:79:82:c5:4e:d3:28:cf:bd:
1d:9c:33:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:07 2024 by rpki-client on console-fra.rpki-client.org