Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/pLr1o8XoMA8Ylf0DW2096_N_Vfg.roa
File: pLr1o8XoMA8Ylf0DW2096_N_Vfg.roa (raw, json)
Hash identifier: SKFTvUDSbcGewIm1PdCtjxz1iyrA38vVP9nNqMHX8aI=
Subject key identifier: A4:BA:F5:A3:C5:E8:30:0F:18:95:FD:03:5B:6D:3D:EB:F3:7F:55:F8
Certificate issuer: /CN=2549f45ef20b506ea8ef4cb682c2ca2701b290b4
Certificate serial: 0E6636CB
Authority key identifier: 25:49:F4:5E:F2:0B:50:6E:A8:EF:4C:B6:82:C2:CA:27:01:B2:90:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JUn0XvILUG6o70y2gsLKJwGykLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/pLr1o8XoMA8Ylf0DW2096_N_Vfg.roa
Signing time: Sat 01 Jan 2022 04:04:14 +0000
ROA not before: Sat 01 Jan 2022 04:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205726
IP address blocks: 185.208.58.0/24 maxlen: 24
185.208.57.0/24 maxlen: 24
185.208.56.0/24 maxlen: 24
185.208.56.0/22 maxlen: 22
185.208.59.0/24 maxlen: 24
2a0b:31c0::/29 maxlen: 29
2a0b:31c0:1337::/48 maxlen: 48
2a0b:31c0:2::/48 maxlen: 48
2a0b:31c0:1::/48 maxlen: 48
2a0b:31c0:5::/48 maxlen: 48
2a0b:31c0::/48 maxlen: 48
2a0b:31c0:3::/48 maxlen: 48
2a0b:31c0:563::/48 maxlen: 48
2a0b:31c0:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241579723 (0xe6636cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2549f45ef20b506ea8ef4cb682c2ca2701b290b4
Validity
Not Before: Jan 1 04:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4baf5a3c5e8300f1895fd035b6d3debf37f55f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f5:9c:f9:76:ee:8d:ea:e3:cc:cb:e2:f0:e5:
66:ba:63:13:45:89:fa:67:62:f5:59:5c:bd:98:b0:
35:33:2a:62:0e:7f:b2:59:31:b6:04:d1:82:8a:99:
79:0c:fa:a8:ad:79:4b:7f:32:32:12:46:00:78:74:
76:e0:5e:aa:70:e8:2f:03:7b:f2:9f:80:b6:7d:99:
eb:e4:dd:be:37:b8:76:98:33:d9:d5:7b:e6:7f:b4:
5d:e3:85:44:c8:ef:fe:54:b3:01:17:44:f1:cc:50:
06:ef:cc:2b:6f:a7:0c:a5:e6:1d:ee:80:51:de:73:
5f:ba:33:6d:42:97:d2:19:6a:5b:bf:f5:ee:71:22:
ea:81:33:3c:60:e2:1a:32:e8:b9:52:a4:b5:7e:0d:
57:4e:f7:b3:3b:7b:30:35:62:2b:42:9b:2b:9f:7f:
5c:12:bc:8a:a2:18:e0:24:b6:e4:1d:28:a6:52:ac:
55:3b:04:2c:f8:d9:f5:c6:54:79:4d:55:1d:c2:56:
ab:b0:8d:0a:56:1b:1c:98:6c:5d:87:e4:ba:93:ac:
3f:fe:e0:7d:bb:09:4d:fb:2f:15:f6:7f:28:24:4a:
07:59:9f:44:a3:6d:f0:d4:c1:8e:22:67:a9:0e:2a:
db:59:92:c4:e5:45:90:4c:5b:37:d0:75:10:42:02:
ff:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:BA:F5:A3:C5:E8:30:0F:18:95:FD:03:5B:6D:3D:EB:F3:7F:55:F8
X509v3 Authority Key Identifier:
keyid:25:49:F4:5E:F2:0B:50:6E:A8:EF:4C:B6:82:C2:CA:27:01:B2:90:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JUn0XvILUG6o70y2gsLKJwGykLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/pLr1o8XoMA8Ylf0DW2096_N_Vfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e7c7f2-5784-4265-84b3-a5431b07d09e/1/JUn0XvILUG6o70y2gsLKJwGykLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.56.0/22
IPv6:
2a0b:31c0::/29
Signature Algorithm: sha256WithRSAEncryption
50:ff:e3:c8:b3:6e:47:05:3e:76:be:f9:11:7e:58:92:76:ff:
ae:65:64:eb:c1:ab:dd:bf:8a:ab:0e:e2:50:cb:66:ea:11:54:
d9:7c:ae:10:d1:aa:9f:26:81:ea:2e:3f:da:bb:08:ec:bf:cd:
3a:5e:bd:d1:34:e3:27:c9:25:d9:40:f4:b6:15:8d:9a:e6:de:
93:98:00:b2:63:90:84:61:1e:eb:be:53:f8:0f:ca:5f:80:b2:
52:e6:ea:29:60:d8:d7:01:3f:b8:f3:1a:50:ea:3f:a3:61:4c:
54:ab:ed:a0:bb:0c:53:f9:21:02:44:eb:6b:ab:55:b1:99:38:
24:b5:2a:e8:05:45:2e:a8:fd:85:a8:8d:b4:84:8f:83:93:db:
01:df:8a:c7:b3:61:b1:43:ca:e8:b4:78:50:05:35:88:99:12:
b7:c7:cb:0d:62:de:7c:e8:34:09:8f:f5:82:5a:8b:a9:25:a6:
f5:df:fa:7b:0d:26:88:0a:64:17:a9:d5:a6:6c:14:30:98:c8:
09:51:b3:30:24:5e:12:b6:6b:07:76:5b:ad:56:70:5d:5d:5c:
30:29:e5:c3:30:51:cf:33:2b:ed:6f:23:1c:3a:bc:ad:72:46:
1f:53:4a:b7:5d:ef:1f:d8:78:ad:d8:a9:7b:97:3e:95:cb:97:
f9:23:41:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:21 2024 by rpki-client on console-fra.rpki-client.org