Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/t24twc6Scv1DNXbuc9oDnaTrT6U.roa
File: t24twc6Scv1DNXbuc9oDnaTrT6U.roa (raw, json)
Hash identifier: S/SiCJPoRrFE/cOipNuWNiSODf0NBakXpSP5ueB+bOQ=
Subject key identifier: B7:6E:2D:C1:CE:92:72:FD:43:35:76:EE:73:DA:03:9D:A4:EB:4F:A5
Certificate issuer: /CN=1d4404c8392e82d4b7029b69cb6ee290b9b42c00
Certificate serial: 10E4ED5C
Authority key identifier: 1D:44:04:C8:39:2E:82:D4:B7:02:9B:69:CB:6E:E2:90:B9:B4:2C:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUQEyDkugtS3Aptpy27ikLm0LAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/t24twc6Scv1DNXbuc9oDnaTrT6U.roa
Signing time: Wed 23 Mar 2022 11:39:40 +0000
ROA not before: Wed 23 Mar 2022 11:39:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201453
IP address blocks: 185.112.78.0/24 maxlen: 24
185.112.76.0/22 maxlen: 22
185.112.76.0/24 maxlen: 24
185.112.79.0/24 maxlen: 24
2a06:6382::/32 maxlen: 32
2a06:6386::/32 maxlen: 32
2a06:6387::/32 maxlen: 32
2a06:6381::/32 maxlen: 32
2a06:6384::/32 maxlen: 32
2a06:6380::/32 maxlen: 32
2a06:6383::/32 maxlen: 32
2a06:6385::/32 maxlen: 32
2a06:6380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283438428 (0x10e4ed5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d4404c8392e82d4b7029b69cb6ee290b9b42c00
Validity
Not Before: Mar 23 11:39:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b76e2dc1ce9272fd433576ee73da039da4eb4fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:41:cc:06:3e:95:ad:cb:b4:02:ed:9c:5b:c2:
77:21:0b:5d:e8:02:89:e7:be:da:cf:50:09:49:77:
1c:6c:73:5a:6f:90:d7:a6:70:cc:a9:bb:37:26:15:
5a:ff:28:8e:6f:3d:9d:a9:dc:5a:77:38:9f:23:00:
2f:61:92:82:b0:08:2d:95:6c:1f:86:c7:e0:52:11:
12:4c:87:e5:89:a9:92:67:d6:ca:25:92:13:dc:3f:
c4:05:a8:53:88:cb:e9:dc:19:02:6c:b0:68:2f:30:
15:65:14:98:aa:06:d2:5a:46:d8:63:9c:10:35:09:
e8:1e:b2:c3:29:87:8e:f2:9c:f6:37:1e:ae:57:7f:
0d:0e:4f:cd:54:fd:7a:40:8d:01:e1:79:8b:9f:d4:
09:42:79:39:cb:6a:93:c4:99:70:fd:a4:76:52:0d:
73:4f:72:4f:9a:20:87:de:e2:e8:66:a9:fa:9e:ff:
85:ca:d7:a7:7a:64:cb:85:2b:92:ec:7a:6c:d1:ae:
18:22:f5:43:3a:4e:1e:b0:aa:3f:6c:ef:a4:09:36:
a7:26:67:da:98:6b:35:ff:98:5b:66:8d:3f:be:80:
cb:76:d2:32:75:68:a9:e4:58:c9:7d:8a:80:02:52:
42:73:0c:e5:4f:5b:60:3a:2d:90:10:37:cb:61:af:
9e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6E:2D:C1:CE:92:72:FD:43:35:76:EE:73:DA:03:9D:A4:EB:4F:A5
X509v3 Authority Key Identifier:
keyid:1D:44:04:C8:39:2E:82:D4:B7:02:9B:69:CB:6E:E2:90:B9:B4:2C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUQEyDkugtS3Aptpy27ikLm0LAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/t24twc6Scv1DNXbuc9oDnaTrT6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d4b835-f5b5-4704-ae97-c26328561030/1/HUQEyDkugtS3Aptpy27ikLm0LAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.76.0/22
IPv6:
2a06:6380::/29
Signature Algorithm: sha256WithRSAEncryption
04:8b:c1:60:f5:7e:e5:5b:56:16:a2:04:a7:33:c3:05:6d:5f:
21:98:df:e3:99:4e:40:47:9b:02:14:ca:b2:c8:77:28:12:52:
b5:f5:bd:8f:4d:9f:5b:66:eb:87:c7:f8:a2:9a:62:5a:61:44:
2a:63:d5:32:eb:f7:f5:d4:ce:4d:29:9d:85:f2:5d:b0:73:04:
35:36:6a:8a:2d:8d:37:09:0c:24:5e:a7:24:df:38:cc:ca:0f:
34:c0:4e:4a:f2:a8:27:5f:24:b5:93:26:93:d0:f3:b6:1d:16:
d9:cf:d7:f4:44:38:a5:95:2d:27:e8:61:ee:2a:5c:10:64:6e:
18:a5:a7:44:c6:cf:80:4d:d5:d5:5f:8b:31:64:61:d9:e8:23:
68:10:a9:0c:e1:8c:7b:91:22:36:7e:a9:0d:23:95:0a:1e:7f:
32:78:bb:96:cb:17:fb:32:36:dd:23:ce:e5:7d:9e:fa:5b:ca:
99:f1:ca:f2:97:c6:2a:50:a1:ce:cf:77:1a:d6:41:65:8a:47:
cd:d8:4a:8d:96:50:2d:4a:32:ee:07:42:02:c3:48:1e:be:a8:
bd:56:c7:30:13:60:bc:a9:e1:6f:e2:d9:8b:88:6e:dc:6a:51:
28:98:06:49:c1:dd:03:4d:88:8a:2e:24:52:58:c8:b9:42:3c:
f0:e6:cd:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:09 2023 by rpki-client on console-fra.rpki-client.org