Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/t-2rtxWxcyJVc2tYFDO7KolvxYQ.roa
File: t-2rtxWxcyJVc2tYFDO7KolvxYQ.roa (raw, json)
Hash identifier: j3a8ZK3Dj2ZqGMOgpy/endSdes40pGWG1ubEN7+fzNo=
Subject key identifier: B7:ED:AB:B7:15:B1:73:22:55:73:6B:58:14:33:BB:2A:89:6F:C5:84
Certificate issuer: /CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Certificate serial: 14B0FAC6
Authority key identifier: 5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/t-2rtxWxcyJVc2tYFDO7KolvxYQ.roa
Signing time: Sat 01 Jan 2022 09:59:33 +0000
ROA not before: Sat 01 Jan 2022 09:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60728
IP address blocks: 185.22.53.0/24 maxlen: 24
185.22.52.0/22 maxlen: 22
185.22.52.0/24 maxlen: 24
185.22.55.0/24 maxlen: 24
185.22.54.0/24 maxlen: 24
2a04:1d40::/32 maxlen: 32
2a04:1d43::/32 maxlen: 32
2a04:1d45::/32 maxlen: 32
2a04:1d40::/29 maxlen: 29
2a04:1d42::/32 maxlen: 32
2a04:1d46::/32 maxlen: 32
2a04:1d47::/32 maxlen: 32
2a04:1d41::/32 maxlen: 32
2a04:1d44::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 347142854 (0x14b0fac6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6c15ca903d7d25453eaeb5f724a04e3aa65908
Validity
Not Before: Jan 1 09:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7edabb715b1732255736b581433bb2a896fc584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:21:66:0a:7f:1f:7a:05:94:3e:49:39:f4:1d:
3f:56:92:de:3d:25:0b:2b:d4:60:71:0d:db:f1:91:
64:81:19:8b:67:fa:0f:84:3e:f7:af:1c:ec:e6:52:
61:cf:8e:fb:01:2a:63:82:2c:4c:e0:db:ea:af:cc:
25:62:91:2d:91:04:2c:f6:97:dc:e9:d2:62:93:a9:
d5:7c:17:c9:76:35:40:a2:61:9f:cc:99:d4:71:2b:
a6:f1:ee:3a:80:07:2b:90:fc:16:47:3c:0b:77:b9:
c3:83:97:5f:99:2a:61:a4:d4:bb:cb:a3:c8:e6:f5:
e8:6e:54:bf:ff:f9:7a:72:f1:a2:6a:9d:f3:6c:9e:
ab:4f:0d:c3:af:10:f4:d7:ea:33:77:19:b4:87:9d:
1c:11:e5:dc:89:b5:a9:6e:ff:83:05:36:f3:fc:9f:
05:92:17:b7:65:8c:80:77:8e:42:e3:a7:bd:41:83:
6a:9b:38:f4:cc:92:d0:6c:e4:2b:25:d7:72:1b:b8:
f6:a8:da:fd:73:be:ef:b2:07:be:b6:9d:0f:70:4d:
a5:5b:cb:a8:7d:11:12:f9:27:6a:f8:be:8c:d7:33:
53:2a:b8:de:3e:6c:6d:5c:ce:ba:a6:fa:c3:6f:0a:
8c:b0:37:e5:d4:37:aa:01:02:2f:16:ad:e1:1d:c3:
85:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:ED:AB:B7:15:B1:73:22:55:73:6B:58:14:33:BB:2A:89:6F:C5:84
X509v3 Authority Key Identifier:
keyid:5D:6C:15:CA:90:3D:7D:25:45:3E:AE:B5:F7:24:A0:4E:3A:A6:59:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWwVypA9fSVFPq619ySgTjqmWQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/t-2rtxWxcyJVc2tYFDO7KolvxYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2864c8-c042-428f-a02d-3b34c23b9c5a/1/XWwVypA9fSVFPq619ySgTjqmWQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.52.0/22
IPv6:
2a04:1d40::/29
Signature Algorithm: sha256WithRSAEncryption
7c:19:01:29:79:57:af:0b:61:51:44:2b:bc:f1:a7:1e:b3:0f:
92:76:f4:22:42:82:2c:58:02:2e:4d:99:70:5e:f4:4b:be:29:
c7:1b:0f:fa:26:a8:8f:45:74:97:3c:dd:6e:28:1f:a1:5f:35:
a1:48:7c:4b:8e:4a:b8:7c:0b:fd:2c:de:6b:bf:e1:e3:3b:97:
cd:dc:5f:b8:ee:39:76:e5:91:a2:88:35:83:7f:e3:84:d5:52:
ed:dc:52:2d:27:26:92:97:88:90:61:f0:8e:c7:1c:63:82:88:
28:ff:7c:69:9f:c4:e8:08:5e:ec:40:f2:64:b1:8e:a6:58:4e:
8a:90:3d:ce:b3:c4:db:a5:c0:66:c2:df:42:85:40:50:38:30:
bb:71:9a:61:e5:6b:a3:03:b3:55:46:a3:4c:d6:7b:24:07:a6:
35:aa:a7:4b:ff:86:7e:36:bd:68:cd:0a:e3:1f:77:a9:f2:6e:
5a:35:0c:6d:d3:13:7f:eb:8e:3b:2f:40:f8:55:0b:6f:f3:5e:
4d:c5:24:bb:a1:5a:ff:e7:b4:09:01:e5:73:48:ce:2a:dd:4f:
cf:8f:67:cf:6d:c1:de:15:68:cc:93:e4:97:8e:26:fe:5e:94:
c4:e7:b6:13:8a:72:47:d5:56:d3:4f:56:5b:e1:64:20:06:fa:
86:09:6c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:41 2024 by rpki-client on console-ams.rpki-client.org