Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/Ox6b6E-L3Iwe7O0IXqwPJY9y7C8.roa
File: Ox6b6E-L3Iwe7O0IXqwPJY9y7C8.roa (raw, json)
Hash identifier: OXy+F31tsGS6C8Ug6YFWenqrV1ZOdqGIRN1X+lRkjGY=
Subject key identifier: 3B:1E:9B:E8:4F:8B:DC:8C:1E:EC:ED:08:5E:AC:0F:25:8F:72:EC:2F
Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Certificate serial: 019C00DA
Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/Ox6b6E-L3Iwe7O0IXqwPJY9y7C8.roa
Signing time: Sat 01 Jan 2022 06:03:29 +0000
ROA not before: Sat 01 Jan 2022 06:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211582
IP address blocks: 212.60.24.0/21 maxlen: 21
185.214.188.0/22 maxlen: 22
80.243.224.0/22 maxlen: 22
5.45.144.0/22 maxlen: 22
2a10:b040:1::/48 maxlen: 48
2a10:b040:4::/48 maxlen: 48
2a10:b040:2::/48 maxlen: 48
2a10:b040:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27001050 (0x19c00da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Validity
Not Before: Jan 1 06:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b1e9be84f8bdc8c1eeced085eac0f258f72ec2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:35:03:a6:6f:f6:58:46:b7:43:02:91:e7:fd:
d2:55:ae:12:ee:f5:95:84:f5:48:0a:47:1a:bb:13:
50:6f:56:37:92:d2:54:ad:45:ef:f2:b5:b9:29:7b:
ec:9f:0f:4b:18:66:c2:65:27:a3:b4:03:f0:f8:25:
f3:b4:f8:e2:9e:a0:ef:65:a6:4e:88:19:10:d3:4a:
eb:11:18:1d:20:61:c3:d8:de:c7:3f:d6:35:fa:d9:
31:54:06:1c:95:e4:b2:3a:d9:5b:c2:28:35:0d:35:
68:7f:e4:2f:ca:b5:16:1c:7a:c1:d3:d9:c6:94:37:
cd:d4:54:ca:47:9c:7d:04:ef:e0:83:98:ea:85:09:
35:07:cc:48:6b:5e:58:73:3f:60:99:db:b6:cf:9e:
f0:64:2d:f0:d0:0f:46:a4:6d:a9:64:ce:07:20:1b:
bf:8f:b1:75:d8:f7:b2:a6:43:8a:01:31:06:ab:3a:
ed:48:f4:02:6a:32:6a:bc:d5:af:f5:f2:c4:be:8c:
1d:87:3f:b8:76:c3:4b:2a:c9:45:91:7a:9c:67:2f:
f2:22:e7:ef:0b:57:19:d0:83:cd:7a:54:e9:87:4c:
18:f9:dd:8a:35:9c:07:11:5f:b5:ac:a2:90:4c:d4:
5b:7a:50:97:3a:46:f9:7e:ea:4f:f5:f8:ce:d5:54:
63:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:1E:9B:E8:4F:8B:DC:8C:1E:EC:ED:08:5E:AC:0F:25:8F:72:EC:2F
X509v3 Authority Key Identifier:
keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/Ox6b6E-L3Iwe7O0IXqwPJY9y7C8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.144.0/22
80.243.224.0/22
185.214.188.0/22
212.60.24.0/21
IPv6:
2a10:b040:1::-2a10:b040:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6c:ff:e4:75:73:07:b9:a1:7f:99:06:16:db:72:f0:82:41:86:
bf:72:2d:e7:81:a4:38:1a:eb:df:80:cb:5a:89:36:ca:57:f9:
4c:9d:38:01:ef:60:ed:f8:96:50:ac:e6:e0:da:9d:f0:43:dc:
06:95:2d:e9:53:02:d9:67:8f:59:5b:30:c8:6c:40:dd:3b:c6:
ca:6f:71:a0:c1:e6:2b:5a:53:c3:7f:a5:b0:35:33:8b:b1:a4:
0c:16:2a:53:d5:47:2f:cb:57:8e:3e:a0:03:2a:8f:90:94:b7:
ff:91:13:e1:59:4f:58:d0:7f:4e:df:3b:5a:20:35:15:b1:54:
a3:8c:14:12:59:de:33:c4:d2:3d:41:e4:6b:e5:cc:39:a2:a1:
ce:01:11:91:02:4c:47:6d:a2:9b:3d:9b:98:bf:6e:5e:86:e5:
d8:36:40:dd:e1:82:70:90:f5:28:a7:1c:d1:f5:9f:60:18:77:
62:2f:38:e8:1e:14:67:d8:b7:b9:6b:8a:23:c7:1e:47:4a:84:
f3:11:38:2b:07:71:8a:7e:ea:76:80:b8:01:70:01:b7:fe:dc:
5a:d9:20:5b:11:13:bd:8b:10:d1:41:10:6a:f8:dc:e7:75:01:
9e:cf:e5:ea:87:f2:67:af:8c:74:af:84:d4:af:c5:71:80:7d:
9d:da:dd:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:16 2024 by rpki-client on console-fra.rpki-client.org