Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/tKFM8aH2Lrk3LL6Yf13UY73b14c.roa
File: tKFM8aH2Lrk3LL6Yf13UY73b14c.roa (raw, json)
Hash identifier: qXwRFrdZrzu1tOR72TvPh+RPNDAboH1jHBv8uth5HaU=
Subject key identifier: B4:A1:4C:F1:A1:F6:2E:B9:37:2C:BE:98:7F:5D:D4:63:BD:DB:D7:87
Certificate issuer: /CN=7a478c5aa226a278e8b1906f371c60cfc7d87e8e
Certificate serial: 04070077
Authority key identifier: 7A:47:8C:5A:A2:26:A2:78:E8:B1:90:6F:37:1C:60:CF:C7:D8:7E:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekeMWqImonjosZBvNxxgz8fYfo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/tKFM8aH2Lrk3LL6Yf13UY73b14c.roa
Signing time: Wed 04 May 2022 01:25:22 +0000
ROA not before: Wed 04 May 2022 01:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 185.236.125.0/24 maxlen: 24
185.236.124.0/24 maxlen: 24
185.236.126.0/24 maxlen: 24
185.236.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67567735 (0x4070077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a478c5aa226a278e8b1906f371c60cfc7d87e8e
Validity
Not Before: May 4 01:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4a14cf1a1f62eb9372cbe987f5dd463bddbd787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:27:15:1b:b3:04:be:56:c9:70:3d:6e:96:ed:
c6:91:5e:d1:8b:a8:1c:a2:86:a8:f7:18:f7:c9:96:
51:73:ec:06:8c:87:c3:f8:da:e2:43:d1:be:23:86:
d6:82:5b:35:8e:ff:0a:10:87:37:88:7e:86:e3:7a:
17:57:7a:b7:e9:fd:05:cf:d0:b2:2a:aa:ab:d6:ac:
46:19:e0:55:89:5f:41:f6:33:3c:23:71:0f:b8:ea:
2d:e3:75:20:b6:f4:6e:82:e3:9e:9f:61:f1:7c:5b:
50:73:67:99:af:85:39:a4:c8:f9:8b:76:7f:0d:8a:
05:ea:33:20:71:15:38:80:a6:7b:5f:1d:52:fd:53:
8f:57:a4:a5:3b:8c:0a:e3:e6:b3:22:cb:98:c3:49:
3e:c0:e0:4a:68:e3:42:6f:ed:3f:79:17:88:dc:5c:
45:fd:dc:c0:f6:2d:90:3c:46:a0:ab:a9:3b:b7:3a:
a2:05:d5:83:77:6d:89:6d:7b:61:e6:22:55:6d:d4:
0f:5a:1e:27:2b:dd:3c:ef:2f:84:57:df:96:b4:70:
83:ca:75:5e:62:e0:99:15:f1:34:68:a1:4d:48:50:
e4:48:61:55:f1:ff:2f:55:8a:62:e6:aa:4f:17:fd:
32:fa:30:56:ed:2a:f1:f3:29:56:0a:fb:df:43:b6:
a0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A1:4C:F1:A1:F6:2E:B9:37:2C:BE:98:7F:5D:D4:63:BD:DB:D7:87
X509v3 Authority Key Identifier:
keyid:7A:47:8C:5A:A2:26:A2:78:E8:B1:90:6F:37:1C:60:CF:C7:D8:7E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekeMWqImonjosZBvNxxgz8fYfo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/tKFM8aH2Lrk3LL6Yf13UY73b14c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/ekeMWqImonjosZBvNxxgz8fYfo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.124.0/22
Signature Algorithm: sha256WithRSAEncryption
38:ad:25:73:02:2a:9d:e5:e8:38:2c:f7:4d:43:98:c7:3f:99:
59:ed:2b:91:7d:ec:f9:ac:39:11:f0:06:60:8d:f1:48:13:2b:
f7:ba:54:fb:84:20:59:ad:06:0e:d4:1e:cf:ce:72:a8:88:31:
fb:1f:5a:5b:cb:10:a7:2b:7a:c5:1d:a3:75:ac:46:87:9c:0c:
66:b5:2c:ed:d8:dc:41:9a:c3:38:3f:e2:e4:6a:c1:27:2d:03:
bd:35:e7:84:e9:b1:41:6e:66:9b:73:2b:a5:9a:7e:7b:0a:47:
54:bf:c1:d8:b7:b1:33:0a:a8:7a:44:72:02:17:65:79:c0:d9:
bf:af:67:f8:fa:3a:d4:fe:50:95:6d:5e:3b:b6:34:1c:77:03:
ea:89:02:f1:5f:84:fc:2b:7c:be:0d:f3:a9:fd:1c:cd:fb:65:
1c:fc:ba:b1:5d:d4:d8:17:19:55:6e:df:af:f8:7c:8d:b9:35:
7c:c7:2c:85:05:b9:da:9f:c6:2e:a5:04:67:75:98:c3:2b:0c:
a8:a4:76:e8:a3:b9:18:a3:44:c9:6e:37:b2:fd:f1:23:f2:b1:
bc:6b:12:b0:31:1e:54:32:f3:b0:c3:4f:5b:2d:91:25:50:66:
37:9c:99:bb:e4:6e:9e:80:13:ad:2d:8f:6f:8d:da:dc:83:54:
11:84:dd:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:12 2023 by rpki-client on console-fra.rpki-client.org