Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/8k8lxAgFLDzA1IYCCkFNwuKKchg.roa
File: 8k8lxAgFLDzA1IYCCkFNwuKKchg.roa (raw, json)
Hash identifier: cDbnrICmfoUtDGMkjjoyXvf7aPBYqO2UqICZXxq5v5s=
Subject key identifier: F2:4F:25:C4:08:05:2C:3C:C0:D4:86:02:0A:41:4D:C2:E2:8A:72:18
Certificate issuer: /CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Certificate serial: A5299A
Authority key identifier: 34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/8k8lxAgFLDzA1IYCCkFNwuKKchg.roa
Signing time: Sun 08 May 2022 11:41:35 +0000
ROA not before: Sun 08 May 2022 11:41:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51235
IP address blocks: 185.136.182.0/24 maxlen: 24
185.136.180.0/24 maxlen: 24
185.136.183.0/24 maxlen: 24
185.136.181.0/24 maxlen: 24
185.107.245.0/24 maxlen: 24
185.107.246.0/24 maxlen: 24
185.107.244.0/24 maxlen: 24
185.107.247.0/24 maxlen: 24
2a12:5440::/45 maxlen: 45
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10824090 (0xa5299a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Validity
Not Before: May 8 11:41:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f24f25c408052c3cc0d486020a414dc2e28a7218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5f:fc:5d:95:49:b2:3b:c1:eb:67:6c:c6:53:
88:86:12:92:f8:d0:f0:44:0a:31:21:32:a2:72:f2:
50:d6:71:10:db:7a:57:2b:bd:4a:d0:d8:13:11:18:
92:cd:27:33:cb:80:8b:bb:89:83:de:e8:c2:79:14:
51:b3:47:27:41:84:19:24:af:46:00:10:6f:d2:ce:
64:7f:c7:7c:ec:a6:b9:3a:89:c6:6c:24:98:3e:c6:
5e:2a:f7:da:5c:4d:ea:f7:32:72:d8:39:dd:af:33:
8e:3c:a7:28:d9:48:a6:96:c4:2f:c8:c5:20:08:22:
da:a1:25:cc:ba:e2:69:64:e9:e8:e2:99:bb:d3:23:
4f:52:95:83:af:d2:8b:4a:56:e5:4b:74:75:45:aa:
c9:10:08:bb:2f:88:1c:84:27:cc:06:ce:8c:13:53:
ca:a6:35:90:f8:8a:8a:1d:aa:a7:88:8c:41:1b:87:
e9:cc:d7:ae:99:ae:ed:df:09:21:08:a3:38:14:f1:
60:98:75:d5:bd:e1:9a:8d:fd:d3:e0:d3:7f:f3:4c:
a1:a2:5e:96:41:42:be:8d:0b:dc:df:8d:69:1a:7d:
5b:6d:ac:92:89:d3:06:b8:1b:43:71:84:a4:b8:cf:
69:fb:18:05:64:cd:68:42:7a:0d:07:1c:0b:d8:56:
f4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:4F:25:C4:08:05:2C:3C:C0:D4:86:02:0A:41:4D:C2:E2:8A:72:18
X509v3 Authority Key Identifier:
keyid:34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/8k8lxAgFLDzA1IYCCkFNwuKKchg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/NFMcVLHnlWwsw3GyPgp1VnqidRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.244.0/22
185.136.180.0/22
IPv6:
2a12:5440::/45
Signature Algorithm: sha256WithRSAEncryption
ae:9c:19:86:8d:28:38:ec:26:fb:2a:30:0d:e4:8e:f0:24:ac:
88:47:79:a1:7d:23:d4:00:93:af:59:ff:7b:f4:fb:79:f1:e2:
3d:06:4c:c0:0d:d2:a5:c7:e3:b0:24:35:9b:d9:66:f8:79:48:
fc:d2:2a:42:a5:24:fb:95:d4:59:54:d1:c2:2e:aa:b2:c5:6b:
a2:c3:bf:12:0b:22:e0:58:d9:d0:33:2d:d7:1d:d0:34:02:04:
9f:8c:ff:2f:53:9a:c3:19:04:d2:01:f8:fe:db:16:f2:c6:bd:
9c:41:44:7f:c1:d6:7c:20:90:ff:05:e3:a9:43:73:cd:91:ec:
e1:3c:ae:e5:e5:e5:0b:17:d7:66:9f:9b:9e:26:2f:d2:58:0d:
3b:23:9b:a8:21:ee:16:eb:65:17:b2:bb:7f:51:f5:73:31:dd:
ac:72:e7:f3:58:c0:f1:a0:74:88:8e:3b:f1:4c:38:28:ca:a1:
bb:97:ac:17:ea:c1:00:bf:87:b6:05:c1:1d:65:2f:6c:1a:0b:
14:9e:b8:78:cf:7e:89:98:ce:3f:cf:d8:26:17:8b:59:65:c0:
8f:4c:e9:43:42:08:bb:b1:25:a2:ed:15:0e:f6:b7:f2:4a:54:
9a:db:ab:0e:3f:c8:53:0e:da:b6:be:fc:b1:6a:b2:1b:11:5a:
56:29:38:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:49 2024 by rpki-client on console-fra.rpki-client.org