Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/1-KLF07D6QGI3m-yDh_9Ny7X1mB8.roa
File: 1-KLF07D6QGI3m-yDh_9Ny7X1mB8.roa (raw, json)
Hash identifier: B534KWAOituxX/zmMbLAFyRyS/3VOH+7YCHFleB1l1Y=
Subject key identifier: F8:A2:C5:D3:B0:FA:40:62:37:9B:EC:83:87:FF:4D:CB:B5:F5:98:1F
Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Certificate serial: 35E08E28
Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/1-KLF07D6QGI3m-yDh_9Ny7X1mB8.roa
Signing time: Sat 01 Jan 2022 12:57:07 +0000
ROA not before: Sat 01 Jan 2022 12:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47674
IP address blocks: 185.11.146.0/24 maxlen: 32
185.11.147.0/24 maxlen: 32
188.209.49.0/24 maxlen: 24
188.209.52.0/24 maxlen: 32
185.62.188.0/24 maxlen: 32
185.62.189.0/24 maxlen: 32
185.62.190.0/24 maxlen: 32
185.11.145.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 903908904 (0x35e08e28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Validity
Not Before: Jan 1 12:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8a2c5d3b0fa4062379bec8387ff4dcbb5f5981f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a7:e2:a5:77:73:f9:d5:53:1f:4f:a7:d4:b6:
41:b9:e0:ee:43:f8:8b:72:df:5a:d1:88:cf:76:ab:
17:ae:df:03:94:15:9a:2f:0e:ed:9e:2f:b6:82:a0:
18:6e:52:96:28:16:f4:c4:94:c8:61:de:d3:84:d1:
3e:c2:69:f2:13:b7:57:69:c0:75:b1:72:0a:65:05:
1c:6a:a3:46:33:c1:1a:76:eb:3e:75:a7:7d:eb:cb:
21:1e:09:11:5b:fa:ef:05:05:46:82:15:8b:7e:83:
59:95:08:46:f0:2c:57:02:12:5d:42:dc:7f:68:20:
96:7d:8b:8c:81:5a:b8:1a:af:9e:e9:76:f8:98:51:
fc:97:5e:d9:38:23:d2:cd:57:6e:a4:e6:64:b0:cf:
4a:ca:90:61:81:30:fc:50:e9:c0:7d:f3:01:17:0c:
02:a2:d1:2e:6c:d2:87:15:07:7f:70:83:99:d4:5f:
86:76:d7:d2:13:33:17:08:cf:a0:f5:66:a9:65:53:
de:33:2f:b4:ed:d7:5b:07:00:ac:d7:c7:2e:32:a7:
67:d3:29:95:b3:b4:98:a1:f0:2d:cd:93:40:34:61:
61:94:89:4d:40:af:2d:86:52:7c:f9:37:e1:cb:14:
ca:a7:fe:96:59:32:1a:e3:b7:28:dc:ba:c8:e3:d7:
2a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A2:C5:D3:B0:FA:40:62:37:9B:EC:83:87:FF:4D:CB:B5:F5:98:1F
X509v3 Authority Key Identifier:
keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/1-KLF07D6QGI3m-yDh_9Ny7X1mB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.145.0-185.11.147.255
185.62.188.0-185.62.190.255
188.209.49.0/24
188.209.52.0/24
Signature Algorithm: sha256WithRSAEncryption
98:8e:3a:08:78:c4:0f:16:e6:ca:9a:13:da:42:16:39:4c:79:
18:af:59:a2:60:c7:2d:71:33:0e:0e:e7:0d:ca:50:2c:2a:3e:
19:e7:be:3d:80:5d:71:c1:d3:5c:0f:23:03:a6:37:62:a7:3b:
d9:dd:3b:9c:50:2f:cd:54:3f:0b:8d:12:f8:02:b2:5c:5e:7f:
c3:ff:8c:8e:09:92:b1:f3:c4:87:d0:90:31:ac:5e:be:f5:d5:
4a:13:dc:d5:51:6b:51:4d:42:83:93:31:05:f3:2b:06:c0:86:
ff:dc:6c:40:4d:73:fd:98:2b:97:67:1d:07:4b:c7:33:bc:2a:
90:67:d3:3e:2c:8b:bb:1c:2f:ed:df:5e:cd:26:93:ee:84:8c:
88:3f:8b:e9:a2:2d:ea:e2:0f:8c:d9:08:66:64:d3:12:a7:c3:
3e:c9:1b:69:2c:b3:68:ce:4c:1e:7a:a7:ca:62:c4:43:c4:2d:
c2:6a:be:6b:55:08:b8:c7:07:41:28:33:42:80:fa:cb:51:bd:
71:02:de:c1:7a:13:bf:fb:d2:78:05:a3:bd:e5:88:80:20:b1:
0c:66:69:0b:02:9c:53:0f:a7:25:2e:8a:26:f5:da:4f:a8:08:
58:14:0e:16:b7:5a:78:84:4e:37:89:98:14:5c:44:f4:db:a5:
a2:81:06:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:11 2024 by rpki-client on console-ams.rpki-client.org