Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/e4c8bc-5ba3-4fc2-bf4a-a5581b3be0ce/1/51zHF9GSybdt-GYWCIXK9faj76g.roa
File: 51zHF9GSybdt-GYWCIXK9faj76g.roa (raw, json)
Hash identifier: YMKiUubgLZdqmP0u8lQ8FOQL9ND6eXIWZtNB/jqRnqA=
Subject key identifier: E7:5C:C7:17:D1:92:C9:B7:6D:F8:66:16:08:85:CA:F5:F6:A3:EF:A8
Certificate issuer: /CN=2a0254bae699a6c6fcb67ee4ba3b01d02f18099d
Certificate serial: 010900
Authority key identifier: 2A:02:54:BA:E6:99:A6:C6:FC:B6:7E:E4:BA:3B:01:D0:2F:18:09:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgJUuuaZpsb8tn7kujsB0C8YCZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/e4c8bc-5ba3-4fc2-bf4a-a5581b3be0ce/1/51zHF9GSybdt-GYWCIXK9faj76g.roa
Signing time: Tue 31 May 2022 13:06:24 +0000
ROA not before: Tue 31 May 2022 13:06:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206668
IP address blocks: 185.179.124.0/24 maxlen: 24
185.179.125.0/24 maxlen: 24
185.179.127.0/24 maxlen: 24
185.179.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67840 (0x10900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a0254bae699a6c6fcb67ee4ba3b01d02f18099d
Validity
Not Before: May 31 13:06:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e75cc717d192c9b76df866160885caf5f6a3efa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:26:ba:67:05:f5:c9:ad:79:1e:58:49:ca:84:
81:b6:12:84:da:a9:e6:24:ea:21:65:28:30:32:8d:
11:bc:30:a7:40:3e:77:1b:ff:46:56:3b:68:a4:f4:
02:91:36:99:a0:76:31:f9:a4:b1:75:4d:f6:93:63:
c2:e9:ee:c4:41:67:78:2f:77:01:dc:1c:38:14:02:
dd:0b:19:b2:a7:67:44:b0:fe:58:c8:b3:26:30:22:
e5:96:38:88:f0:43:40:aa:4a:f9:33:88:b1:69:20:
65:a1:f3:bd:cd:0d:b4:d0:0e:54:3f:1c:c4:6a:28:
1e:c3:27:24:fa:cb:0a:ad:08:fa:cf:3b:5f:de:8d:
c0:7f:5a:50:e0:37:f5:87:cf:de:7d:27:b8:fb:41:
ca:54:c6:49:1a:19:c8:25:f2:9a:f4:dc:bb:81:9c:
63:30:27:d6:75:64:c5:b3:dc:30:21:6b:cc:df:9b:
54:25:ae:56:0b:52:b0:2e:00:73:53:c7:1f:60:9c:
98:21:37:75:39:7b:6b:c1:da:51:49:b7:f8:33:da:
64:57:83:ca:fa:aa:42:63:f7:3a:ec:d2:ce:b2:99:
6e:10:bf:cd:46:6d:b5:ba:94:78:51:ba:00:2b:51:
73:96:06:9f:48:ac:5b:70:db:4d:27:f1:9b:d3:fc:
88:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:5C:C7:17:D1:92:C9:B7:6D:F8:66:16:08:85:CA:F5:F6:A3:EF:A8
X509v3 Authority Key Identifier:
keyid:2A:02:54:BA:E6:99:A6:C6:FC:B6:7E:E4:BA:3B:01:D0:2F:18:09:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgJUuuaZpsb8tn7kujsB0C8YCZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e4c8bc-5ba3-4fc2-bf4a-a5581b3be0ce/1/51zHF9GSybdt-GYWCIXK9faj76g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/e4c8bc-5ba3-4fc2-bf4a-a5581b3be0ce/1/KgJUuuaZpsb8tn7kujsB0C8YCZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.124.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:b8:3b:e9:1a:7b:e2:68:19:e1:7d:87:91:42:e3:35:d7:45:
3f:91:41:57:2b:89:4d:04:c2:3e:88:07:69:4d:d0:d4:3e:ee:
3b:04:dd:0c:69:a4:7f:25:8b:84:5a:ce:b6:b3:0e:71:78:3e:
e7:49:61:df:7b:9f:fe:38:ed:3d:5f:59:9f:3a:c9:2a:c7:5c:
1e:3e:4d:c1:2c:f6:4a:fc:8a:a2:cc:77:53:14:0c:81:54:14:
50:f1:e1:fd:98:ec:b7:3c:eb:ba:ad:ad:5d:73:66:b7:05:c6:
b9:10:88:5c:87:1e:cf:aa:e2:49:c5:b2:97:40:38:90:31:34:
18:ea:da:b0:df:bf:cf:72:69:c9:b3:ba:15:02:f8:80:0e:e9:
02:0a:89:7c:aa:52:3e:8d:7f:bc:f3:d9:92:c1:70:b4:8b:69:
1b:1c:2b:82:e6:0b:98:c3:7e:83:10:85:f4:cb:24:84:97:99:
c6:4c:8f:f2:e5:81:b7:0c:53:b6:dd:b3:ad:83:d5:61:15:3a:
40:92:e1:e4:0f:9e:b6:7d:46:05:68:ce:b7:5a:d8:fb:4f:b4:
37:6c:09:74:c2:05:8c:15:01:8a:20:45:75:9d:aa:00:e3:d5:
cc:fa:93:9c:b0:ee:2c:02:ed:76:bc:28:7f:bf:57:7a:28:ea:
83:56:00:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:43 2024 by rpki-client on console-fra.rpki-client.org