Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/68b521-c790-4957-9e52-2d26f1b56e20/1/RxKXtGxDPMw80iQCAQZ_wC_rLBA.roa
File: RxKXtGxDPMw80iQCAQZ_wC_rLBA.roa (raw, json)
Hash identifier: t158rGsnq//rIYZSau1Ra90z+VVVDpYR/7N3BA3LteU=
Subject key identifier: 47:12:97:B4:6C:43:3C:CC:3C:D2:24:02:01:06:7F:C0:2F:EB:2C:10
Certificate issuer: /CN=c0eb668b735a1839374e48f79cb2436dbf417caa
Certificate serial: 02410EA1
Authority key identifier: C0:EB:66:8B:73:5A:18:39:37:4E:48:F7:9C:B2:43:6D:BF:41:7C:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wOtmi3NaGDk3Tkj3nLJDbb9BfKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/68b521-c790-4957-9e52-2d26f1b56e20/1/RxKXtGxDPMw80iQCAQZ_wC_rLBA.roa
Signing time: Sat 23 Apr 2022 08:26:24 +0000
ROA not before: Sat 23 Apr 2022 08:26:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200402
IP address blocks: 185.84.57.0/24 maxlen: 24
185.84.56.0/24 maxlen: 24
185.84.56.0/22 maxlen: 22
2a03:6ee0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37818017 (0x2410ea1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0eb668b735a1839374e48f79cb2436dbf417caa
Validity
Not Before: Apr 23 08:26:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=471297b46c433ccc3cd2240201067fc02feb2c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:91:5c:cb:bb:fa:ec:66:a6:dc:04:2f:9f:db:
71:d9:5f:94:38:61:2b:d1:ce:1e:39:6a:e3:cf:66:
f9:ca:a2:35:60:fa:91:b3:bd:37:3c:d6:7a:85:6d:
d7:b8:57:fd:9d:ed:5b:f5:ef:41:92:ad:3a:f7:01:
c7:2d:ac:ab:e7:4f:e9:70:72:b9:ed:a8:72:95:88:
f5:71:5c:7a:58:9e:94:23:bd:ef:a8:71:be:fc:84:
b9:9f:64:6a:be:4f:97:77:62:d9:35:78:98:9f:5f:
34:12:ac:ba:ed:6c:60:6d:59:0c:88:7d:6e:45:c3:
83:3d:eb:29:a1:bd:88:65:e8:cd:04:44:3d:24:34:
ce:74:b5:57:4f:52:a9:cb:b1:ec:15:9a:45:56:30:
df:41:21:b2:37:e2:48:a2:01:aa:6b:70:8e:cd:c6:
89:d1:2e:5c:01:e8:6b:ba:e0:e2:48:96:ae:55:b9:
1a:7c:ce:af:8a:1b:53:a8:ea:8c:e9:7b:f1:2d:f1:
7a:65:d8:66:70:b8:66:20:7b:00:8e:cd:3c:fc:11:
8a:61:05:8b:24:7b:05:12:03:de:5c:0e:e6:3d:77:
6a:4f:dc:96:ca:3c:9a:7f:4d:fe:cd:a7:2d:a6:ad:
01:84:a6:4e:42:a2:b8:93:0b:ee:a1:04:46:28:5c:
fb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:12:97:B4:6C:43:3C:CC:3C:D2:24:02:01:06:7F:C0:2F:EB:2C:10
X509v3 Authority Key Identifier:
keyid:C0:EB:66:8B:73:5A:18:39:37:4E:48:F7:9C:B2:43:6D:BF:41:7C:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wOtmi3NaGDk3Tkj3nLJDbb9BfKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/68b521-c790-4957-9e52-2d26f1b56e20/1/RxKXtGxDPMw80iQCAQZ_wC_rLBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/68b521-c790-4957-9e52-2d26f1b56e20/1/wOtmi3NaGDk3Tkj3nLJDbb9BfKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.56.0/22
IPv6:
2a03:6ee0::/32
Signature Algorithm: sha256WithRSAEncryption
97:9c:16:8d:6c:99:70:00:9d:e9:af:8b:f8:b6:7a:df:ec:d4:
69:7f:a0:be:d1:2e:bb:63:90:00:79:a7:a7:22:e4:d4:e2:45:
bf:63:a6:99:e3:af:bd:dc:da:b3:a1:a1:19:78:a9:b2:66:2b:
59:28:66:a8:bc:c4:36:be:5f:9e:64:9c:de:98:a0:99:fe:cb:
78:a8:2c:a8:1b:6c:d4:b2:82:1b:70:5e:f2:f5:bf:05:16:45:
d3:28:06:e1:df:ed:4a:5b:a1:e6:ed:3e:06:bd:3a:43:9f:4c:
a5:c4:de:af:b1:d1:01:d5:0c:d2:23:63:db:a9:a3:0a:9f:2b:
a4:a6:a1:99:aa:fe:21:b0:72:32:f3:96:bb:e8:e3:50:4f:05:
a6:1e:17:5b:9c:62:78:b2:fc:92:5a:70:31:d8:96:df:58:a6:
ae:d4:4e:62:a4:23:e7:92:8f:f0:5d:17:06:b0:78:8c:7b:70:
10:3b:b3:70:b9:cc:97:37:c9:62:f3:1e:e2:d0:19:34:19:5b:
57:b4:4b:ba:32:02:76:f3:b0:3b:d0:85:12:ef:15:25:d4:27:
97:32:93:cf:a2:75:d0:d0:ac:18:c1:55:3c:db:05:c5:5a:eb:
cb:7b:2c:b9:e4:dd:4f:3b:a3:e0:42:1b:ff:2f:7c:bf:62:ad:
22:ee:17:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:44 2024 by rpki-client on console-ams.rpki-client.org