Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/52bcda-f97e-4765-aa95-cd2f5771da98/1/dfPPfd_4_qDZ1QzDzPvqUSTJTrk.roa
File: dfPPfd_4_qDZ1QzDzPvqUSTJTrk.roa (raw, json)
Hash identifier: +o6dF4iaf+7PIufvhf2vOUN9Pj3nYJ1+SN5OfPIfX04=
Subject key identifier: 75:F3:CF:7D:DF:F8:FE:A0:D9:D5:0C:C3:CC:FB:EA:51:24:C9:4E:B9
Certificate issuer: /CN=5a155e32c4a9cda1a81bd9c7370dc34ab00653a0
Certificate serial: 0314C383
Authority key identifier: 5A:15:5E:32:C4:A9:CD:A1:A8:1B:D9:C7:37:0D:C3:4A:B0:06:53:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WhVeMsSpzaGoG9nHNw3DSrAGU6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/52bcda-f97e-4765-aa95-cd2f5771da98/1/dfPPfd_4_qDZ1QzDzPvqUSTJTrk.roa
Signing time: Sat 01 Jan 2022 01:56:02 +0000
ROA not before: Sat 01 Jan 2022 01:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205521
IP address blocks: 185.215.124.0/24 maxlen: 24
185.215.125.0/24 maxlen: 24
185.215.124.0/22 maxlen: 22
185.215.126.0/24 maxlen: 24
185.215.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51692419 (0x314c383)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a155e32c4a9cda1a81bd9c7370dc34ab00653a0
Validity
Not Before: Jan 1 01:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75f3cf7ddff8fea0d9d50cc3ccfbea5124c94eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:74:db:4a:75:96:81:70:6f:34:d6:94:25:d2:
19:0d:1c:ea:68:73:7b:18:39:b1:b3:4b:49:56:eb:
9c:db:e1:52:ad:06:de:76:49:c3:47:df:5c:6e:f0:
09:7c:b6:58:53:37:c1:4e:59:f4:89:ef:16:10:7a:
01:6c:d3:88:18:40:96:d0:91:01:ba:b4:84:1f:f0:
f7:5e:6a:48:59:8c:e0:a8:7a:0b:c2:ef:1a:49:d8:
9a:75:0c:cb:29:17:41:e2:73:40:11:48:38:71:54:
67:d7:f1:03:f6:40:c5:f7:f7:50:c1:d8:7a:8f:0b:
f8:d4:1c:75:c9:85:f3:dc:80:46:d3:2a:2d:34:3d:
b1:25:e4:35:19:87:30:af:04:11:94:0c:85:b6:2f:
ef:ac:02:e8:d4:81:56:9e:7a:eb:70:ab:39:28:33:
fe:75:3f:07:42:e2:7d:2a:f8:ba:c2:62:fa:f5:80:
94:cb:83:9b:87:8f:c8:f7:28:22:a6:a6:85:e5:4a:
6e:d8:40:73:82:61:50:7c:9e:a7:44:ad:ce:0a:26:
07:9b:f9:9b:59:1d:2c:c3:ed:91:d7:6d:f6:88:aa:
69:44:70:73:52:c7:24:63:2f:00:fe:a4:7c:09:7a:
66:40:b4:22:4c:9c:f2:98:20:4e:e7:bc:0b:7e:fc:
f1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F3:CF:7D:DF:F8:FE:A0:D9:D5:0C:C3:CC:FB:EA:51:24:C9:4E:B9
X509v3 Authority Key Identifier:
keyid:5A:15:5E:32:C4:A9:CD:A1:A8:1B:D9:C7:37:0D:C3:4A:B0:06:53:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WhVeMsSpzaGoG9nHNw3DSrAGU6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/52bcda-f97e-4765-aa95-cd2f5771da98/1/dfPPfd_4_qDZ1QzDzPvqUSTJTrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/52bcda-f97e-4765-aa95-cd2f5771da98/1/WhVeMsSpzaGoG9nHNw3DSrAGU6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.124.0/22
Signature Algorithm: sha256WithRSAEncryption
17:31:8f:77:c9:05:2a:4f:a2:6a:15:74:f2:01:99:10:49:21:
55:7a:e3:36:aa:2c:4b:82:79:b4:78:fd:ed:e4:63:a5:66:3c:
7a:f9:8e:3e:64:3c:24:d6:b3:0f:d8:52:5f:3a:ab:69:0d:23:
36:7a:26:62:8b:18:6a:b1:22:7b:99:1f:3d:7a:d1:a8:af:a0:
27:58:cf:3c:22:14:d9:dc:3c:25:d3:ad:f1:57:ae:6f:88:c3:
0f:68:27:71:c3:48:05:89:10:3c:ed:a1:0e:b8:e8:f0:32:36:
b3:f5:6e:58:91:86:b4:71:3b:68:88:15:9c:2c:01:5b:4f:81:
94:18:3f:7b:11:94:da:be:8e:d3:b0:c9:62:93:3e:f2:8d:1a:
13:d5:58:77:ed:b3:de:4d:2c:8a:97:01:30:0f:ad:c1:25:fc:
fb:0a:51:24:8e:50:c8:58:0c:b4:e1:7a:16:c8:48:57:f8:82:
f6:bc:60:7e:71:e4:d1:ba:95:64:4d:95:bf:16:09:d3:f3:69:
a1:5e:4d:5a:d3:91:cf:41:29:4c:e8:0e:ac:11:de:d3:09:f0:
b3:a6:7b:33:4d:cd:95:69:10:e8:01:4f:71:3e:02:f6:58:c7:
05:7c:dc:33:1a:14:0f:8f:aa:d2:8e:e3:80:6a:fb:0c:a4:97:
ae:52:65:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:06 2024 by rpki-client on console-ams.rpki-client.org