Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/Vng4W3dFKSQMqYjYRQ-wDRe1FEs.roa
File: Vng4W3dFKSQMqYjYRQ-wDRe1FEs.roa (raw, json)
Hash identifier: PBKA7/wJbbfLUkOxW8UvJCuQ2H7iQ48AwuVVqoJ8IyE=
Subject key identifier: 56:78:38:5B:77:45:29:24:0C:A9:88:D8:45:0F:B0:0D:17:B5:14:4B
Certificate issuer: /CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Certificate serial: 028F1E68
Authority key identifier: CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/Vng4W3dFKSQMqYjYRQ-wDRe1FEs.roa
Signing time: Wed 09 Feb 2022 09:25:28 +0000
ROA not before: Wed 09 Feb 2022 09:25:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207023
IP address blocks: 185.115.64.0/22 maxlen: 22
185.126.72.0/22 maxlen: 24
185.126.76.0/22 maxlen: 24
185.174.90.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42933864 (0x28f1e68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Validity
Not Before: Feb 9 09:25:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5678385b774529240ca988d8450fb00d17b5144b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9d:09:89:06:3c:5e:87:93:d2:3b:27:49:e2:
00:0f:c2:8d:b3:8b:74:8a:1b:ac:ef:00:25:a3:c7:
2c:e3:3a:db:76:10:92:52:4e:5d:41:b5:46:4f:85:
4b:67:a2:f0:b2:1c:ad:bf:f3:c1:61:c9:bd:81:08:
99:c3:71:c9:e2:b8:3b:38:12:cb:54:a5:9e:ce:61:
79:65:20:27:9d:dc:93:74:f1:23:12:33:03:af:5e:
bf:ba:dc:fe:54:87:27:13:68:cd:a3:8d:ef:8e:a3:
fb:5f:93:cb:a7:99:1a:69:0d:7b:3c:1d:c9:3f:a6:
1c:84:68:9a:68:b9:e8:a9:3c:7a:4e:4c:dc:73:82:
a9:4f:81:50:28:56:55:70:9d:4f:89:78:84:49:9e:
d5:08:40:2e:10:0d:97:76:8c:56:f5:8a:ce:4b:8d:
aa:bb:85:0e:94:ad:b0:8d:19:3c:5c:9e:82:6d:fa:
cc:51:3b:70:65:a5:c4:21:cc:03:ba:aa:bd:8e:92:
f7:a8:6c:9d:fd:54:91:a0:3c:cd:b6:a0:b7:89:8b:
c4:f7:22:c6:b2:d8:1c:9f:96:41:2c:66:4b:d0:f9:
59:2a:b5:03:21:bc:f7:bf:af:89:e5:fc:7b:02:c0:
4b:38:92:1a:72:f5:cd:78:d2:ba:13:ff:8c:cd:54:
23:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:78:38:5B:77:45:29:24:0C:A9:88:D8:45:0F:B0:0D:17:B5:14:4B
X509v3 Authority Key Identifier:
keyid:CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/Vng4W3dFKSQMqYjYRQ-wDRe1FEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/zpWPGB-1B6CiqCGFa4vg1UsRi4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.64.0/22
185.126.72.0/21
185.174.90.0/23
Signature Algorithm: sha256WithRSAEncryption
21:72:62:fd:3b:e2:07:79:fa:88:c3:1a:22:a2:43:49:bf:58:
92:01:40:a6:15:bf:8a:de:75:95:ea:c4:e5:23:90:9a:31:ac:
74:aa:ba:43:e2:1b:c0:34:52:06:7a:af:48:50:61:59:8f:b4:
d4:d7:e8:9c:5e:c8:dc:13:53:94:fd:8d:81:25:d3:c9:30:28:
c0:62:d1:cd:63:92:be:a3:e7:b7:92:15:b8:f3:4e:ad:48:c9:
62:43:20:0a:23:4e:b3:d1:74:38:c0:9d:cb:28:e7:90:14:69:
20:e2:a9:26:e8:c9:17:a5:b5:a0:44:5a:a2:45:ca:01:3e:75:
c3:26:cb:ac:3d:d5:f0:75:e7:65:4d:af:d3:6a:1d:96:75:98:
48:74:e8:cc:8e:fb:7d:92:2b:9e:e3:f4:02:0f:11:ad:13:a6:
75:ed:a8:60:28:82:2b:a7:93:af:27:57:89:a9:73:14:6f:1c:
d7:f3:3a:82:da:f7:c1:7e:fb:fd:29:dd:e2:23:ec:72:c5:98:
e3:06:5d:14:13:80:f7:30:01:90:f4:f8:39:f5:b8:4c:c6:e3:
18:67:c6:00:e8:d4:93:ea:ff:1d:12:50:5b:01:de:9d:31:7d:
fc:73:d2:96:76:57:49:be:8d:a4:ac:bf:f6:6f:ee:cb:de:1c:
7d:21:04:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:29 2024 by rpki-client on console-fra.rpki-client.org