Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/PBqtoCFjeJ0D7qdrzfa5zIh9znA.roa
File: PBqtoCFjeJ0D7qdrzfa5zIh9znA.roa (raw, json)
Hash identifier: qDMK7FznO5k1RuOrVnNB61D03al+WLxH5WMCNGj9SYY=
Subject key identifier: 3C:1A:AD:A0:21:63:78:9D:03:EE:A7:6B:CD:F6:B9:CC:88:7D:CE:70
Certificate issuer: /CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Certificate serial: 3577C4
Authority key identifier: CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/PBqtoCFjeJ0D7qdrzfa5zIh9znA.roa
Signing time: Thu 24 Mar 2022 13:44:31 +0000
ROA not before: Thu 24 Mar 2022 13:44:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60706
IP address blocks: 185.26.197.0/24 maxlen: 24
185.26.196.0/24 maxlen: 24
2a00:8c60:a::/48 maxlen: 48
2a00:8c60:b::/48 maxlen: 48
2a00:8c60:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3504068 (0x3577c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Validity
Not Before: Mar 24 13:44:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c1aada02163789d03eea76bcdf6b9cc887dce70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:a0:a0:89:f0:4d:ef:00:1f:bb:62:db:ae:
1e:0f:66:2f:0f:1f:39:77:7b:6d:24:4d:1f:0d:01:
f1:71:98:84:33:45:d2:d6:38:34:8a:86:de:05:54:
26:cd:ca:81:74:2f:c1:33:bb:15:38:c8:b8:f2:7f:
ae:c8:ef:9e:4e:c3:14:a4:2d:4e:6a:86:4e:91:85:
c7:bb:66:5f:ec:df:0f:99:d5:99:c2:ff:e6:85:79:
7d:a5:52:59:dd:6a:43:df:da:94:a9:04:f7:83:05:
64:7a:02:a6:27:fc:e2:05:87:63:d1:d0:a6:86:5a:
13:9d:d9:64:21:1b:29:9a:f8:cd:2d:30:73:9b:67:
16:36:cc:6b:59:7c:3c:3e:16:da:64:a5:50:4a:a2:
14:c7:91:ec:c3:3a:c7:d6:dc:f4:c1:48:c5:52:54:
25:75:04:a7:f2:5f:6e:7d:1d:79:6c:40:a0:5b:4b:
e8:6a:c3:c3:b3:ca:16:b3:15:09:38:6b:4f:7a:e5:
a9:46:b1:f3:da:ef:99:3b:03:5d:e5:3e:93:08:c6:
b6:9b:e1:1f:6f:86:bf:98:cb:22:bd:2c:0f:c4:60:
02:0f:db:db:99:d7:48:52:0d:4b:59:ad:18:9c:ec:
e8:4f:4e:47:23:49:d4:e9:82:eb:a3:6d:75:b3:f8:
e8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1A:AD:A0:21:63:78:9D:03:EE:A7:6B:CD:F6:B9:CC:88:7D:CE:70
X509v3 Authority Key Identifier:
keyid:CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/PBqtoCFjeJ0D7qdrzfa5zIh9znA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.196.0/23
IPv6:
2a00:8c60:1::/48
2a00:8c60:a::/47
Signature Algorithm: sha256WithRSAEncryption
6c:b8:d2:39:c5:77:c8:e3:8d:8a:97:5c:92:ed:41:ab:b6:d3:
1c:c4:e6:d2:6b:3e:ac:3b:d6:b8:9e:44:af:63:0a:1d:b3:2d:
37:4d:24:11:f3:1c:b7:70:7c:ce:89:58:76:c3:46:b4:d3:a8:
22:a1:ec:0d:42:dd:0f:13:8c:e0:1c:cc:f0:e4:ef:13:3d:34:
88:3f:34:2f:80:85:28:e5:0f:c2:5b:7a:f3:ab:43:ba:60:ff:
fb:fd:0f:04:bf:a4:69:75:0e:e9:b3:ec:c2:1b:0b:d4:e6:32:
4a:5b:13:5d:2c:78:06:c6:72:a1:25:0d:ef:ef:09:e9:a6:2b:
e7:bc:fc:1e:23:4d:52:8d:45:3b:1b:c9:ee:2a:65:e1:d7:60:
c2:d7:12:92:c3:44:9f:78:31:dc:4b:96:3c:36:4e:07:11:9f:
85:21:01:f6:31:4f:46:0a:52:b7:50:80:7b:47:78:d0:34:cd:
c2:e4:e6:ad:a9:38:9a:9a:c4:33:e1:6d:af:21:32:eb:fc:fc:
9a:33:08:88:87:fb:8b:11:6d:6d:4b:7d:b9:fc:f4:cc:0d:a3:
40:a2:83:21:f8:58:b7:b0:b1:8d:28:6a:48:95:0b:46:c9:b8:
a4:81:fe:8a:f5:09:fd:df:7b:65:0b:20:46:08:a4:a7:33:13:
31:d0:1e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:14 2024 by rpki-client on console-fra.rpki-client.org