Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/xY3b9xYLMyKMeviqwy5hPhJZQBE.roa
File: xY3b9xYLMyKMeviqwy5hPhJZQBE.roa (raw, json)
Hash identifier: p7GDxkUlDN7+uv20HM5VvGpPAOlTlVEGb/A3rE3R9AE=
Subject key identifier: C5:8D:DB:F7:16:0B:33:22:8C:7A:F8:AA:C3:2E:61:3E:12:59:40:11
Certificate issuer: /CN=58bb54987639ba0c6cfbcad598c3f5e39fca945c
Certificate serial: 07288A0C
Authority key identifier: 58:BB:54:98:76:39:BA:0C:6C:FB:CA:D5:98:C3:F5:E3:9F:CA:94:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLtUmHY5ugxs-8rVmMP145_KlFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/xY3b9xYLMyKMeviqwy5hPhJZQBE.roa
Signing time: Sat 01 Jan 2022 08:02:41 +0000
ROA not before: Sat 01 Jan 2022 08:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59871
IP address blocks: 185.68.68.0/22 maxlen: 22
2a03:2a60:8100::/48 maxlen: 48
2a03:2a60:8000::/48 maxlen: 48
2a03:2a60:8101::/48 maxlen: 48
2a03:2a60:8001::/48 maxlen: 48
2a03:2a60:dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120097292 (0x7288a0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bb54987639ba0c6cfbcad598c3f5e39fca945c
Validity
Not Before: Jan 1 08:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c58ddbf7160b33228c7af8aac32e613e12594011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:49:07:23:13:75:23:43:eb:5a:be:8b:54:e1:
28:8e:0f:76:c5:2e:6e:52:ea:29:fc:22:52:ba:9a:
a5:d7:2a:60:23:b4:14:6f:e6:36:ba:81:f5:fc:69:
75:ba:69:5d:54:3d:75:05:4f:19:93:14:65:24:ac:
67:a9:bf:c8:56:87:30:b0:47:2a:a9:fa:87:56:a2:
46:6f:cc:cf:c5:c0:88:94:3c:a8:1c:68:1c:82:3d:
e7:5f:92:f1:38:d9:00:dd:ca:9a:38:b0:42:c1:70:
c1:7e:f7:1d:00:c6:8d:9f:93:25:bb:11:ff:b1:b1:
9a:cf:9d:a8:44:93:17:08:05:99:4c:bc:d1:cb:8a:
6e:65:f7:3f:e2:8c:72:51:9f:06:3a:2e:11:1b:5e:
ba:4a:4c:be:ab:f3:20:7b:45:91:bd:b7:27:aa:2d:
d2:c1:18:0b:02:a0:2a:76:bd:d9:b6:0e:76:82:f5:
1d:d7:cb:db:4b:bc:57:d9:03:cb:7a:45:e7:8b:60:
b4:fe:99:f2:71:e4:39:64:88:c6:b5:f1:3b:68:04:
e1:c2:86:c4:05:ca:2b:86:cf:f4:7b:ce:30:40:88:
b0:8a:f5:d8:9a:37:15:fc:14:90:b5:3d:b5:38:09:
6e:90:96:26:7f:de:e3:44:a6:f1:e8:14:08:ae:42:
c4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8D:DB:F7:16:0B:33:22:8C:7A:F8:AA:C3:2E:61:3E:12:59:40:11
X509v3 Authority Key Identifier:
keyid:58:BB:54:98:76:39:BA:0C:6C:FB:CA:D5:98:C3:F5:E3:9F:CA:94:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLtUmHY5ugxs-8rVmMP145_KlFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/xY3b9xYLMyKMeviqwy5hPhJZQBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/23a2b2-69bb-4933-ae6f-8c9f2d705948/1/WLtUmHY5ugxs-8rVmMP145_KlFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.68.0/22
IPv6:
2a03:2a60:dc::/48
2a03:2a60:8000::/47
2a03:2a60:8100::/47
Signature Algorithm: sha256WithRSAEncryption
b7:a5:81:1b:c2:54:10:16:40:c7:90:2f:94:da:ce:7a:9b:e9:
d2:18:3e:24:e4:00:f7:b3:01:fc:18:27:f9:ce:ed:92:38:c0:
b7:e0:1f:71:5c:3b:c2:44:30:b2:a5:e0:77:e0:b0:3d:10:a2:
b8:54:05:cc:49:13:ce:02:3e:f0:95:d3:50:06:f5:a7:ea:52:
43:ab:19:48:4e:b0:a5:04:74:fa:ea:4b:a9:a9:14:3a:34:e7:
30:bf:5c:0a:2a:ab:2d:80:7a:48:0b:ae:ef:94:21:d5:8d:9f:
e7:f2:91:c6:6d:e3:bb:fb:ad:f8:dc:93:49:d9:a1:5d:bc:65:
12:3d:8e:8d:ac:5a:a3:61:71:13:0b:88:f9:e6:75:2c:02:46:
aa:4f:27:57:2b:f0:01:49:c1:26:5d:7d:da:e6:d3:b5:72:8c:
33:fd:df:5d:15:d9:87:e4:8a:db:4f:11:1a:8c:3b:1b:40:d6:
17:bf:e3:d3:79:36:b6:1e:22:74:ba:30:6f:40:92:5f:db:2b:
5e:08:8c:cd:ba:bd:7c:1d:0e:7d:f4:49:2b:b7:6d:09:5b:3b:
71:6e:b3:ad:7b:1a:bb:7d:9f:6b:1e:98:6a:fd:a1:d5:9c:4e:
7a:f3:ba:41:19:8f:10:fe:bd:f2:5b:d3:1c:b9:4d:a2:5f:b7:
51:3f:48:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:12 2024 by rpki-client on console-ams.rpki-client.org