Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/599528-b89d-4402-a808-6c832050e77a/1/3enAR9BrcxSoLSTbfHGGKAIhE8E.roa
File: 3enAR9BrcxSoLSTbfHGGKAIhE8E.roa (raw, json)
Hash identifier: zRItUyV9UZsImsVlvXnRAV3hqPttPIibGlMZgulr+Jg=
Subject key identifier: DD:E9:C0:47:D0:6B:73:14:A8:2D:24:DB:7C:71:86:28:02:21:13:C1
Certificate issuer: /CN=6a4623f76bd5bb2df0af66f360ff74ff1c00db02
Certificate serial: 0B5BD426
Authority key identifier: 6A:46:23:F7:6B:D5:BB:2D:F0:AF:66:F3:60:FF:74:FF:1C:00:DB:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/akYj92vVuy3wr2bzYP90_xwA2wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/599528-b89d-4402-a808-6c832050e77a/1/3enAR9BrcxSoLSTbfHGGKAIhE8E.roa
Signing time: Sat 01 Jan 2022 12:06:11 +0000
ROA not before: Sat 01 Jan 2022 12:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199246
IP address blocks: 185.4.132.0/22 maxlen: 22
185.138.40.0/22 maxlen: 24
2a02:c500::/29 maxlen: 32
2a07:8c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190567462 (0xb5bd426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a4623f76bd5bb2df0af66f360ff74ff1c00db02
Validity
Not Before: Jan 1 12:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dde9c047d06b7314a82d24db7c718628022113c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:4e:f2:24:fd:4d:f0:85:ba:48:48:03:96:
a1:ab:e9:01:71:09:99:95:4b:8a:05:45:39:67:bf:
cb:7e:62:bd:57:c0:b6:29:71:6e:b2:a3:0d:20:ee:
94:b0:e9:f8:60:e7:9e:25:7b:e2:2e:ad:ac:ac:18:
e0:f0:cc:2a:5b:bb:e7:2e:06:cb:7d:c8:9c:6a:89:
bb:10:a7:d6:11:de:8c:f2:b2:1e:de:ef:eb:d6:73:
e1:1b:be:6f:ff:72:8a:de:bb:fc:d2:04:0a:74:dd:
2f:e6:c9:99:a5:5d:a0:f2:93:15:e3:6d:14:ee:8d:
1c:5d:b6:15:73:b3:50:e1:9d:45:ee:7c:91:07:b7:
0e:1c:6f:fa:17:50:e5:a2:a3:cb:93:ef:b6:c7:78:
ee:d7:dc:77:ae:02:ec:52:26:90:a8:84:04:7a:b8:
31:d8:f3:f8:e7:aa:c2:a4:92:91:ca:45:b8:08:d3:
bb:8d:a3:9a:0a:e2:bb:83:53:29:af:36:a9:33:3e:
13:ad:3d:f7:aa:17:5b:cf:e7:31:11:15:2a:a6:6a:
63:a9:bf:e1:45:c6:5e:05:24:f5:1d:4b:9b:e2:1b:
7a:26:3c:08:64:e1:0d:4c:0d:f0:cc:f8:1f:45:24:
c6:dd:86:6f:b1:60:d7:2d:6f:31:2f:8f:ff:b7:13:
76:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E9:C0:47:D0:6B:73:14:A8:2D:24:DB:7C:71:86:28:02:21:13:C1
X509v3 Authority Key Identifier:
keyid:6A:46:23:F7:6B:D5:BB:2D:F0:AF:66:F3:60:FF:74:FF:1C:00:DB:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/akYj92vVuy3wr2bzYP90_xwA2wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/599528-b89d-4402-a808-6c832050e77a/1/3enAR9BrcxSoLSTbfHGGKAIhE8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/599528-b89d-4402-a808-6c832050e77a/1/akYj92vVuy3wr2bzYP90_xwA2wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.132.0/22
185.138.40.0/22
IPv6:
2a02:c500::/29
2a07:8c0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:a4:53:a8:9a:90:35:71:7a:55:40:f9:1e:0a:61:1d:e4:6f:
51:fc:06:53:76:0e:a2:b2:96:ff:4f:cb:dd:af:af:a3:14:59:
d6:60:f8:a5:fe:02:56:4e:32:35:e4:fe:62:15:83:1c:f1:2f:
13:5e:d7:7b:08:b5:0b:11:4e:82:78:57:cf:90:d9:c4:ef:1c:
cf:76:48:80:51:d3:25:b2:60:45:36:77:c3:89:9a:aa:41:97:
c3:b3:5f:95:0c:55:42:e4:6e:eb:f4:63:04:a3:a8:98:06:1f:
19:ed:db:2b:4c:dd:2c:45:0c:0e:93:cf:d6:2a:fb:74:4c:6b:
6b:75:19:80:5d:6b:cc:ca:10:d1:89:54:a6:ab:b9:fb:ef:76:
34:9e:27:57:ce:d2:17:17:1a:a1:d1:93:ee:5a:e0:10:fb:ee:
2f:2c:f5:ba:87:ed:06:1b:03:91:31:df:e7:cc:81:46:a2:2d:
bc:66:a8:b1:e6:6f:30:cd:a9:fe:8c:62:80:26:67:d5:04:6f:
2a:2d:0d:05:66:94:f9:c4:94:1b:55:f1:4b:f0:dc:23:7d:92:
34:75:dd:92:14:35:f2:72:f2:b2:32:13:c4:4b:3d:1f:52:d6:
14:06:1d:8b:bd:4a:f3:a5:c8:da:71:e6:4b:d7:35:42:38:35:
22:aa:31:e5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:41 2024 by rpki-client on console-fra.rpki-client.org