Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/meqnNKgS2Be1UuJpvoTD1zZ_S-0.roa
File: meqnNKgS2Be1UuJpvoTD1zZ_S-0.roa (raw, json)
Hash identifier: L3U3qitMUUAzYkO4kALlDIEP6eHdGrPI3vZY8XxCe7Y=
Subject key identifier: 99:EA:A7:34:A8:12:D8:17:B5:52:E2:69:BE:84:C3:D7:36:7F:4B:ED
Certificate issuer: /CN=8eee7a3ad152bb8725a7db9bb7520804b6f1155f
Certificate serial: 0D6FC728
Authority key identifier: 8E:EE:7A:3A:D1:52:BB:87:25:A7:DB:9B:B7:52:08:04:B6:F1:15:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ju56OtFSu4clp9ubt1IIBLbxFV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/meqnNKgS2Be1UuJpvoTD1zZ_S-0.roa
Signing time: Sat 01 Jan 2022 15:06:27 +0000
ROA not before: Sat 01 Jan 2022 15:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39705
IP address blocks: 185.228.240.0/22 maxlen: 32
2a0d:4e00::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225429288 (0xd6fc728)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eee7a3ad152bb8725a7db9bb7520804b6f1155f
Validity
Not Before: Jan 1 15:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99eaa734a812d817b552e269be84c3d7367f4bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8c:18:60:51:17:a1:99:61:45:0e:e8:c6:3f:
f8:ac:63:9e:6f:df:0e:53:88:78:24:44:f6:94:c0:
b4:ca:57:39:fb:a1:56:23:5c:30:c8:4a:8a:fd:39:
b8:0b:3a:7c:f7:65:77:8e:4a:60:0f:8d:4d:d4:8e:
99:1f:28:71:35:5e:1a:98:ef:ed:59:07:bd:5d:07:
27:e9:aa:26:db:16:7f:32:b4:3a:f6:87:95:f1:e3:
28:14:75:f5:f6:9e:59:45:6e:d7:4b:5d:38:b4:82:
e4:01:a4:49:f4:02:18:57:b1:ae:62:7f:01:e1:6a:
72:94:f4:1b:f8:72:0e:71:13:3a:c9:86:7b:11:7f:
d7:10:52:4e:09:84:6a:cf:06:11:0b:73:b4:2b:9f:
26:3c:20:3a:10:89:e3:d9:e4:b3:f4:80:80:37:2d:
03:1d:ac:a6:ee:46:58:37:e2:5e:7c:2d:4a:66:91:
cd:76:39:48:8d:b8:a5:7a:95:2d:df:ee:b1:4d:a1:
1e:ba:1e:d4:7b:0c:6e:80:0c:b8:ec:ec:36:db:a6:
cb:6d:82:ea:b5:d3:22:62:1d:e0:ca:53:0e:ce:f4:
25:58:07:f5:a9:73:2e:86:1a:f0:82:4c:8b:86:00:
14:1b:fd:01:bb:00:6f:5a:3b:7a:cb:56:3f:72:49:
87:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EA:A7:34:A8:12:D8:17:B5:52:E2:69:BE:84:C3:D7:36:7F:4B:ED
X509v3 Authority Key Identifier:
keyid:8E:EE:7A:3A:D1:52:BB:87:25:A7:DB:9B:B7:52:08:04:B6:F1:15:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ju56OtFSu4clp9ubt1IIBLbxFV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/meqnNKgS2Be1UuJpvoTD1zZ_S-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/ju56OtFSu4clp9ubt1IIBLbxFV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.240.0/22
IPv6:
2a0d:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
84:5d:2b:d7:02:3d:eb:78:9d:92:63:99:7b:1f:6d:b0:70:86:
ab:6e:f6:a6:ad:56:af:a3:31:c2:0f:a7:11:d0:9a:20:56:fc:
6a:c4:96:4f:46:95:bc:5f:45:e4:e8:88:e1:8a:7d:8c:3a:d8:
aa:f7:bf:76:df:c9:0e:d0:ac:7d:4d:10:e0:3f:ff:ad:3f:fd:
89:1f:3c:8e:16:6a:14:c2:15:3a:67:2e:b8:b1:a2:fe:eb:cc:
be:0c:a2:51:41:fe:67:4e:c4:cb:39:fb:0c:f2:c0:0f:3c:5a:
58:16:28:7e:ff:b2:24:1a:72:15:1b:10:18:59:68:4e:0a:6e:
fb:16:f4:38:4f:d4:e1:95:13:fd:e2:15:41:65:e8:26:8f:5f:
d3:8e:d8:d2:4a:7c:35:4c:0e:0e:e7:fe:d3:4d:bd:34:ae:cb:
7b:b8:a9:fd:37:64:fa:c8:d4:c9:81:5c:c4:67:bb:d8:62:00:
82:e1:40:f0:9b:00:c4:ad:81:55:e6:c9:ed:27:3e:e6:24:e2:
69:0d:76:76:42:f5:ea:7e:6e:6d:e8:4c:db:a8:1f:6f:7a:62:
d7:c7:59:69:f4:5e:57:4f:4c:a7:c1:a7:dd:6f:36:55:c4:db:
cc:18:ed:a3:a2:fd:88:ce:1c:74:1b:a6:e3:79:f4:6f:c7:66:
0e:5d:87:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:54 2024 by rpki-client on console-ams.rpki-client.org