Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/af69KKT_pFKO4s5kQJsm0M-MwJY.roa
File: af69KKT_pFKO4s5kQJsm0M-MwJY.roa (raw, json)
Hash identifier: sa9QFDGrk+08Yq+UQ0b6og0jptbKVzK1fbTEGTkAdc4=
Subject key identifier: 69:FE:BD:28:A4:FF:A4:52:8E:E2:CE:64:40:9B:26:D0:CF:8C:C0:96
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0182F949F3393DD0504B532FD77828200F6C
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/af69KKT_pFKO4s5kQJsm0M-MwJY.roa
Signing time: Thu 01 Sep 2022 13:42:29 +0000
ROA not before: Thu 01 Sep 2022 13:42:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205896
IP address blocks: 185.143.242.0/24 maxlen: 24
185.200.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:49:f3:39:3d:d0:50:4b:53:2f:d7:78:28:20:0f:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Sep 1 13:42:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69febd28a4ffa4528ee2ce64409b26d0cf8cc096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1d:3b:f6:20:9c:56:26:4b:58:aa:2d:9d:a4:
74:50:79:3d:18:5f:a6:2e:3b:e0:d0:41:3c:2f:c7:
b5:50:51:7b:ec:e8:75:32:07:30:67:9e:79:76:2a:
b0:7f:3a:9b:24:7f:46:66:ae:7c:35:20:c4:1a:85:
78:43:87:d9:31:a2:c2:4d:e4:70:48:15:2d:0c:b9:
9f:d8:0b:f8:2b:3e:43:c6:7e:5f:cc:ce:cf:2f:04:
94:d7:b3:03:c4:06:e1:c3:61:07:a7:e7:3d:67:90:
52:c7:a8:61:7e:09:c9:d6:10:98:6e:c0:f1:ef:20:
fb:f3:f5:23:13:50:fb:12:4b:e4:f1:d6:64:df:b8:
c4:da:99:c8:dd:41:26:a6:1c:62:cf:89:49:b5:f9:
7d:69:6a:7d:7a:5a:76:14:5b:b8:a5:4a:3a:c5:fe:
14:78:b9:c8:a2:d6:52:f6:ce:53:dc:d3:08:ac:82:
80:bb:7c:75:c3:76:16:3b:3b:99:e9:6b:ce:fa:e7:
e7:9a:d3:28:e7:01:d5:93:a8:f1:60:38:56:8a:f1:
9c:5f:3b:63:98:d8:8f:33:5c:b3:83:4a:ca:25:6e:
d1:de:cd:fa:04:c8:cd:1d:c4:6e:5d:e0:35:98:1a:
ba:e2:92:bb:aa:4d:34:2e:a6:9f:ba:aa:40:1a:32:
e8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FE:BD:28:A4:FF:A4:52:8E:E2:CE:64:40:9B:26:D0:CF:8C:C0:96
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/af69KKT_pFKO4s5kQJsm0M-MwJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.242.0/24
185.200.245.0/24
Signature Algorithm: sha256WithRSAEncryption
53:65:49:cc:c6:fc:00:6e:e7:8d:ad:52:21:1d:66:c9:2a:11:
a4:1f:12:a7:63:84:22:5c:19:58:c3:a6:40:90:a2:45:ef:28:
50:70:3d:5e:29:bb:1f:bd:c4:7a:f1:df:73:cc:50:ad:c2:f1:
e2:a6:dc:b9:96:1a:92:0a:b0:ae:de:7b:04:96:2c:ce:a2:52:
ca:6e:cf:09:3f:c9:1f:24:53:f1:9b:4e:09:54:24:2b:31:d1:
90:dc:fc:56:76:e0:be:46:4a:03:cd:0f:d1:51:47:5f:87:61:
3c:20:23:0a:8c:85:d7:4c:7f:8f:e3:a1:5e:f8:be:a5:8d:1c:
73:df:47:3b:9b:07:b1:d8:32:75:f5:d8:44:f4:11:f0:be:b4:
59:5b:ab:2b:9d:0f:1b:9a:6e:6e:3f:c0:4a:80:ae:cb:fd:f6:
de:6b:cf:fc:22:c6:5b:5f:14:88:de:90:45:93:f0:56:d1:f4:
2f:07:0e:91:1c:6e:09:8c:46:62:9a:3c:42:5f:cf:c7:43:60:
63:28:84:57:b4:e7:35:33:cf:dd:27:9a:69:c2:f3:16:02:1a:
7c:04:f9:90:f4:a7:94:f7:7e:08:1a:1c:16:95:df:69:45:4e:
66:3c:07:a7:55:fc:a6:29:4b:f4:79:88:a6:24:f5:33:73:e1:
5d:e9:1d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:29 2024 by rpki-client on console-ams.rpki-client.org