Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/4c5c3d-21b0-4058-89fd-6c1b4471f7ee/1/714hUKX7An7t9izf7IOeAxFoHDc.roa
File: 714hUKX7An7t9izf7IOeAxFoHDc.roa (raw, json)
Hash identifier: mBQeIhrDF+a+IhIvv6yyZPRgWj6EXYLEuBOb+8wLPwk=
Subject key identifier: EF:5E:21:50:A5:FB:02:7E:ED:F6:2C:DF:EC:83:9E:03:11:68:1C:37
Certificate issuer: /CN=c784128505f7f99c7570442980adeb8af90cc270
Certificate serial: 09E089B5
Authority key identifier: C7:84:12:85:05:F7:F9:9C:75:70:44:29:80:AD:EB:8A:F9:0C:C2:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4QShQX3-Zx1cEQpgK3rivkMwnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/4c5c3d-21b0-4058-89fd-6c1b4471f7ee/1/714hUKX7An7t9izf7IOeAxFoHDc.roa
Signing time: Sat 01 Jan 2022 13:01:03 +0000
ROA not before: Sat 01 Jan 2022 13:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61273
IP address blocks: 185.151.204.0/24 maxlen: 24
185.151.205.0/24 maxlen: 24
185.151.206.0/24 maxlen: 24
185.151.207.0/24 maxlen: 24
185.230.39.0/24 maxlen: 24
185.255.24.0/22 maxlen: 24
2a0b:14c0:2::/48 maxlen: 48
2a0b:14c0:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165710261 (0x9e089b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c784128505f7f99c7570442980adeb8af90cc270
Validity
Not Before: Jan 1 13:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef5e2150a5fb027eedf62cdfec839e0311681c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7f:ec:8c:4d:55:84:8c:cd:d0:72:7b:7c:98:
bf:b2:2b:c2:a0:cf:72:da:df:81:bf:b3:f3:3b:c3:
8e:1a:9d:cb:e5:1f:a8:9f:23:ec:67:e7:51:35:ba:
65:b0:55:f9:f8:a6:19:26:f9:2d:18:e2:95:b2:8c:
b0:44:99:f0:cd:49:0b:ba:83:8e:51:22:a7:e5:8f:
18:e2:2e:ea:bb:e3:06:4d:5c:71:93:5c:3a:eb:90:
b6:c3:fe:1b:c6:d5:db:b0:55:f2:9d:63:ed:0d:df:
c2:7d:0c:07:47:28:61:a8:3c:7d:e7:17:5e:3b:41:
58:a9:1c:e3:8f:e1:76:35:b6:26:95:83:d6:06:4a:
10:3c:c2:8b:83:e8:03:55:4d:e9:8b:8d:47:2d:dc:
f6:eb:bb:d4:0a:cd:49:48:ef:9d:0f:ae:bd:a4:b0:
3a:85:10:b7:e2:e5:ad:65:a4:cf:d3:a0:b0:0d:9b:
ac:56:79:1d:b7:57:f9:d8:18:21:a2:de:ad:ee:dc:
33:e3:45:47:81:78:80:8f:19:d3:10:14:1a:af:30:
ee:c6:e4:fa:cd:bf:0b:40:73:43:8a:3d:67:1e:54:
8d:99:f0:92:f4:b8:f8:3f:5e:59:1e:0c:73:65:fe:
21:54:1a:a2:04:e3:72:96:4a:61:23:98:c0:85:f6:
f7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5E:21:50:A5:FB:02:7E:ED:F6:2C:DF:EC:83:9E:03:11:68:1C:37
X509v3 Authority Key Identifier:
keyid:C7:84:12:85:05:F7:F9:9C:75:70:44:29:80:AD:EB:8A:F9:0C:C2:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4QShQX3-Zx1cEQpgK3rivkMwnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4c5c3d-21b0-4058-89fd-6c1b4471f7ee/1/714hUKX7An7t9izf7IOeAxFoHDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4c5c3d-21b0-4058-89fd-6c1b4471f7ee/1/x4QShQX3-Zx1cEQpgK3rivkMwnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.204.0/22
185.230.39.0/24
185.255.24.0/22
IPv6:
2a0b:14c0:2::/48
2a0b:14c0:4::/48
Signature Algorithm: sha256WithRSAEncryption
6f:fa:50:3f:ed:a7:69:dc:d9:a7:3e:62:e1:74:56:f8:8e:37:
37:f5:b4:35:6d:ee:f8:27:7e:26:65:80:b4:a8:59:43:43:c2:
0b:ec:d5:98:21:47:7b:05:9c:8a:3c:08:b6:cf:08:2a:d9:50:
80:38:68:40:67:df:1b:e3:7b:df:33:55:4a:cc:43:15:ae:6d:
f9:a4:9a:71:22:33:63:20:a6:cb:ee:8d:e3:ac:92:9b:c0:6a:
43:85:a2:d6:ed:88:7a:97:34:ce:70:aa:6c:b8:d4:5d:34:87:
96:39:86:70:74:43:6e:26:48:1b:29:29:9b:2b:95:ff:b4:5a:
dc:b7:bd:c8:9b:b0:7e:c5:c2:d1:4d:d5:2a:26:88:3a:05:35:
cb:9d:44:da:12:f1:90:7d:dd:b1:69:28:a0:d6:99:e7:c4:17:
61:75:46:63:06:13:d0:6c:85:6f:1c:56:ce:c0:de:ce:5e:22:
70:93:a5:0f:5e:7b:ab:a8:bf:64:2d:68:91:37:87:5a:2d:e0:
59:cb:af:41:10:46:75:99:1f:cb:b5:2c:33:97:89:d1:14:22:
8c:7a:ff:cd:fe:fb:e0:3c:25:dd:17:92:45:a3:3b:bf:37:7c:
1b:8f:d2:5e:91:46:86:2f:05:53:fb:48:b9:e3:0d:a9:f3:93:
ac:3b:0c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:24 2024 by rpki-client on console-ams.rpki-client.org