Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/3c9f4a-4456-4581-b287-52d6b3e4789f/1/4eIvJTrypYynyy6rv7C2vPQpx6Q.roa
File: 4eIvJTrypYynyy6rv7C2vPQpx6Q.roa (raw, json)
Hash identifier: TdnTgIpkZVDUCpve9v/lxYoAw6hLDjvgTLkDA6VUgoA=
Subject key identifier: E1:E2:2F:25:3A:F2:A5:8C:A7:CB:2E:AB:BF:B0:B6:BC:F4:29:C7:A4
Certificate issuer: /CN=998e9cb27f3d1abcc4cc61c3c1bbfdc72628e57b
Certificate serial: 15F068A0
Authority key identifier: 99:8E:9C:B2:7F:3D:1A:BC:C4:CC:61:C3:C1:BB:FD:C7:26:28:E5:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mY6csn89GrzEzGHDwbv9xyYo5Xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/3c9f4a-4456-4581-b287-52d6b3e4789f/1/4eIvJTrypYynyy6rv7C2vPQpx6Q.roa
Signing time: Wed 26 Jan 2022 14:23:21 +0000
ROA not before: Wed 26 Jan 2022 14:23:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59866
IP address blocks: 185.68.134.0/23 maxlen: 23
185.68.134.0/24 maxlen: 24
185.68.135.0/24 maxlen: 24
2a05:1840::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368076960 (0x15f068a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=998e9cb27f3d1abcc4cc61c3c1bbfdc72628e57b
Validity
Not Before: Jan 26 14:23:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1e22f253af2a58ca7cb2eabbfb0b6bcf429c7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ce:dd:8b:61:03:a2:12:70:4c:9d:27:c2:4b:
fa:51:e2:43:a3:52:42:17:34:e0:77:4d:88:dc:ec:
b4:73:54:8e:32:8a:aa:1a:17:b9:80:cd:e6:ac:40:
26:23:75:71:5a:82:02:8a:40:32:86:39:70:59:f6:
9b:89:27:80:4d:af:6c:47:fd:aa:83:91:6c:5f:c5:
e3:15:16:20:e9:53:53:1e:74:b3:2d:df:07:64:0c:
bd:00:60:4d:d7:ae:7e:f7:24:ac:81:da:00:57:7f:
c8:81:b3:1c:f3:7a:01:e8:00:38:3d:a6:d2:e6:b6:
5f:17:9b:b4:05:17:f9:68:8f:45:16:7b:f1:cd:82:
08:86:cf:8b:9f:62:07:49:c4:42:80:4b:6d:f6:cb:
c1:22:4a:83:3a:2f:22:03:24:04:7c:fd:3e:f2:b8:
47:9b:f3:1b:29:ab:dd:c6:bb:c2:3e:83:a1:b8:b1:
3e:83:bd:5b:5a:ae:02:1e:d6:4d:f9:1d:3e:f4:82:
7c:d6:e9:29:63:19:03:20:c1:a3:e5:7e:34:2e:7a:
47:3f:c3:0f:fc:96:26:d3:b6:73:37:5c:2b:62:b3:
f7:ad:c3:0e:74:24:c0:30:e3:ec:5a:7a:17:18:76:
a8:0c:ed:37:13:d0:45:0a:0e:02:b9:2b:d4:36:87:
cc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E2:2F:25:3A:F2:A5:8C:A7:CB:2E:AB:BF:B0:B6:BC:F4:29:C7:A4
X509v3 Authority Key Identifier:
keyid:99:8E:9C:B2:7F:3D:1A:BC:C4:CC:61:C3:C1:BB:FD:C7:26:28:E5:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mY6csn89GrzEzGHDwbv9xyYo5Xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/3c9f4a-4456-4581-b287-52d6b3e4789f/1/4eIvJTrypYynyy6rv7C2vPQpx6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/3c9f4a-4456-4581-b287-52d6b3e4789f/1/mY6csn89GrzEzGHDwbv9xyYo5Xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.134.0/23
IPv6:
2a05:1840::/29
Signature Algorithm: sha256WithRSAEncryption
5c:46:4a:af:a4:09:73:c5:70:18:99:50:3a:82:e1:62:f4:0d:
49:e0:3e:73:30:86:ac:9e:65:34:4b:cc:2c:a6:9c:25:19:b1:
f6:6c:e9:1c:16:32:2d:75:ec:9b:d9:cc:95:41:57:30:ef:a1:
c5:76:f1:09:f0:d3:16:be:10:48:e6:42:ad:c7:84:ef:2d:e2:
9a:ef:58:52:9b:a4:0e:d1:16:2a:f0:32:e7:89:3c:11:d8:5e:
4c:26:ce:72:6c:3f:77:fa:1f:39:96:b1:77:19:e9:c0:50:6d:
5c:4b:2e:7b:7a:4f:ab:bc:8b:6d:ad:9c:92:97:96:44:50:6c:
8d:50:1c:bc:fa:e9:16:a0:5c:a7:a4:5d:08:2f:07:f0:21:1e:
ae:e8:63:d4:89:00:e2:02:9f:2a:ef:ec:f4:c6:bd:a7:ab:a9:
69:b9:55:65:8a:5e:fa:cc:60:45:fd:82:f1:d5:13:94:9d:a8:
56:2c:fe:f3:d4:f7:90:e6:fa:fa:cd:21:db:3c:00:01:d1:eb:
28:86:18:6b:69:7f:47:c1:60:9a:a7:a9:71:9d:c9:ed:5c:94:
19:2b:88:e6:ab:07:95:45:11:ce:e2:ee:49:03:51:f5:5e:50:
81:af:c2:a8:3c:ae:8d:86:71:10:5a:03:0c:0d:83:f0:7c:82:
ad:dc:d8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:19 2024 by rpki-client on console-ams.rpki-client.org