Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/41ebbf-80ca-41e1-b1cc-ca378e52930c/1/LrgRgsn2Svj4-hQOtrHIg7qJkVg.roa
File: LrgRgsn2Svj4-hQOtrHIg7qJkVg.roa (raw, json)
Hash identifier: 4Yna8tluThHtUrtof/k+wJbtDeCgKZZf5VPrcJBP24A=
Subject key identifier: 2E:B8:11:82:C9:F6:4A:F8:F8:FA:14:0E:B6:B1:C8:83:BA:89:91:58
Certificate issuer: /CN=8f3012474e6aa1b36b42064dd175b30ed822e735
Certificate serial: 0479530C
Authority key identifier: 8F:30:12:47:4E:6A:A1:B3:6B:42:06:4D:D1:75:B3:0E:D8:22:E7:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzASR05qobNrQgZN0XWzDtgi5zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/41ebbf-80ca-41e1-b1cc-ca378e52930c/1/LrgRgsn2Svj4-hQOtrHIg7qJkVg.roa
Signing time: Sat 01 Jan 2022 12:55:09 +0000
ROA not before: Sat 01 Jan 2022 12:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205843
IP address blocks: 185.158.205.0/24 maxlen: 24
2a10:2140::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75059980 (0x479530c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3012474e6aa1b36b42064dd175b30ed822e735
Validity
Not Before: Jan 1 12:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2eb81182c9f64af8f8fa140eb6b1c883ba899158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5e:43:d9:25:1f:65:fe:c7:aa:84:52:00:ad:
94:4d:1e:05:23:55:43:34:3a:96:52:26:ac:0d:bb:
0a:d2:8a:81:11:8a:51:fd:e2:b4:45:66:1d:d6:8b:
6e:07:08:72:32:84:c2:47:60:38:91:b0:93:40:61:
89:69:70:27:d3:aa:7f:8e:38:21:23:1b:aa:d8:93:
34:66:7e:a9:5f:84:ff:47:4a:18:a5:a8:52:4b:85:
e0:ab:c1:53:57:ed:5f:af:d4:32:c5:04:c7:de:de:
b6:ac:5c:b2:7f:8b:fb:68:a5:e8:52:fd:85:ba:6e:
1e:44:2b:c5:98:12:c5:e6:db:e1:db:b0:94:d4:e0:
f9:69:73:00:4e:52:d4:e2:e4:62:89:fd:64:36:8c:
1a:c9:c1:eb:f1:cc:58:58:1a:27:df:78:0e:3a:c9:
80:50:9a:7a:81:da:9c:39:41:60:f2:70:8e:21:45:
0b:f9:b0:85:8f:69:a4:21:ec:6c:c7:ba:d3:4c:6a:
d5:0c:46:f4:ea:89:75:be:ce:53:f2:8f:9a:6e:c3:
12:b0:ce:1d:03:dd:d2:0a:0d:57:c0:f5:67:ab:93:
ee:a2:43:8a:72:dd:4f:83:1f:98:3b:02:c2:5b:0b:
2a:b9:40:07:30:14:da:df:a6:5a:53:6b:d2:b3:10:
46:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B8:11:82:C9:F6:4A:F8:F8:FA:14:0E:B6:B1:C8:83:BA:89:91:58
X509v3 Authority Key Identifier:
keyid:8F:30:12:47:4E:6A:A1:B3:6B:42:06:4D:D1:75:B3:0E:D8:22:E7:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzASR05qobNrQgZN0XWzDtgi5zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/41ebbf-80ca-41e1-b1cc-ca378e52930c/1/LrgRgsn2Svj4-hQOtrHIg7qJkVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/41ebbf-80ca-41e1-b1cc-ca378e52930c/1/jzASR05qobNrQgZN0XWzDtgi5zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.205.0/24
IPv6:
2a10:2140::/29
Signature Algorithm: sha256WithRSAEncryption
8a:14:1e:00:8b:0a:83:d4:bc:3d:3c:24:32:f6:0f:95:d9:07:
39:ac:c8:42:6b:ba:30:52:4c:68:c5:00:f4:af:40:d6:51:66:
8a:95:ab:30:e7:42:8c:95:a5:55:32:86:25:03:9f:d7:60:eb:
3c:7c:6a:47:c3:bd:23:bf:0b:c7:16:79:64:f1:5e:a0:c8:a3:
cf:7a:7b:87:ca:e6:c6:47:71:b5:45:a8:ce:e4:11:b2:b7:4d:
2a:79:7e:07:c4:1d:0c:84:e1:bc:6d:85:ad:19:21:47:83:3a:
47:a1:7b:5a:bc:de:1e:83:67:37:8d:a5:d6:3a:90:9d:45:ab:
ac:5b:9e:6e:6f:89:af:f8:d9:39:34:12:30:bd:18:f1:5f:bc:
3b:09:9c:84:72:e7:8f:ed:85:a6:1d:30:18:58:3a:93:82:0f:
2b:f4:90:39:a8:a7:6c:01:42:39:2e:bc:27:19:aa:ae:71:49:
6e:cf:d4:9b:18:78:c5:dc:51:fe:ad:f5:c0:08:11:11:5f:18:
b6:d8:a7:4e:0d:2b:e3:64:cc:46:7d:b6:fc:a0:4f:91:6d:3b:
08:e8:d7:aa:e5:39:c9:5b:57:2f:12:63:ef:b7:f3:b4:92:0d:
41:39:39:86:38:67:49:07:26:c4:10:eb:8f:b1:c8:01:6d:d2:
60:18:69:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:34 2024 by rpki-client on console-fra.rpki-client.org