Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/oQMEhgp8icBC0x-7_bxlqRKF06s.roa
File: oQMEhgp8icBC0x-7_bxlqRKF06s.roa (raw, json)
Hash identifier: tduhqxbtOejTtFhpVATPwbaWgnRstvCCMnr6SzrxrYA=
Subject key identifier: A1:03:04:86:0A:7C:89:C0:42:D3:1F:BB:FD:BC:65:A9:12:85:D3:AB
Certificate issuer: /CN=2fcb30fd7d6e449493ec7cb0d9f78600458be21b
Certificate serial: 09C72964
Authority key identifier: 2F:CB:30:FD:7D:6E:44:94:93:EC:7C:B0:D9:F7:86:00:45:8B:E2:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8sw_X1uRJST7Hyw2feGAEWL4hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/oQMEhgp8icBC0x-7_bxlqRKF06s.roa
Signing time: Mon 09 May 2022 10:53:10 +0000
ROA not before: Mon 09 May 2022 10:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60798
IP address blocks: 185.242.181.0/24 maxlen: 24
185.242.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164047204 (0x9c72964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcb30fd7d6e449493ec7cb0d9f78600458be21b
Validity
Not Before: May 9 10:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a10304860a7c89c042d31fbbfdbc65a91285d3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c4:31:85:e3:92:a5:93:cb:6b:3d:5d:a9:6c:
11:44:0d:44:a5:72:24:95:26:d6:34:2e:fe:9b:d2:
49:3e:28:ab:96:e7:6e:8e:64:49:58:be:05:ac:c2:
9d:45:85:09:88:22:6d:2a:ee:de:b4:34:d4:a6:09:
70:a8:6b:a4:99:4e:ed:d3:dc:93:9a:96:8c:f4:a9:
be:37:a6:49:f2:49:ea:39:d2:bc:14:d2:0e:b8:08:
6c:45:dc:cb:39:8d:96:7e:a6:e0:a4:d1:89:3a:3a:
d9:17:3a:e9:21:42:5e:99:97:dd:99:bb:0a:fe:b1:
52:17:fa:94:9c:b9:9d:d3:56:6d:0b:f6:be:2f:9c:
d5:31:39:c3:fd:80:3c:82:47:49:64:8b:ce:b0:a9:
b8:80:c7:18:01:c4:86:a2:94:d3:01:09:18:af:6e:
0d:34:c8:a9:4c:37:bf:c0:7c:a6:8a:27:a4:e6:f6:
f4:0e:fb:5d:48:20:95:dc:66:3f:a5:03:29:98:09:
03:30:e1:ec:16:d7:55:7b:bc:4f:be:4e:5a:de:11:
bc:42:3b:1a:5f:ae:54:20:6d:16:62:d7:3b:40:80:
2a:b8:fe:5b:36:cd:23:ce:dc:1f:65:b0:ea:27:94:
49:50:73:d9:c6:9a:99:61:02:cc:84:f4:5b:f1:e4:
ce:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:03:04:86:0A:7C:89:C0:42:D3:1F:BB:FD:BC:65:A9:12:85:D3:AB
X509v3 Authority Key Identifier:
keyid:2F:CB:30:FD:7D:6E:44:94:93:EC:7C:B0:D9:F7:86:00:45:8B:E2:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8sw_X1uRJST7Hyw2feGAEWL4hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/oQMEhgp8icBC0x-7_bxlqRKF06s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b910bf-e49b-4cdc-be79-4dd4dc3391ac/1/L8sw_X1uRJST7Hyw2feGAEWL4hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.180.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:59:df:97:20:6d:29:ea:50:35:93:ff:8a:c6:c3:ea:1d:ab:
a1:cb:4f:b8:2d:91:81:2a:87:77:b8:86:b5:c4:c5:34:7d:06:
6d:d0:f4:26:9d:03:e2:db:fd:35:61:46:03:fc:40:64:18:74:
9a:39:50:b3:dc:2e:a1:67:61:bc:cf:2e:1f:12:93:2e:27:91:
46:c6:22:f3:20:19:63:d1:90:a1:f9:c9:b2:05:44:30:24:81:
a7:4f:23:6f:ca:93:f1:99:9d:1a:88:b6:78:c8:90:bd:5f:97:
a4:1a:ad:76:6e:9c:83:37:4d:07:f6:23:e3:75:d3:fd:e7:38:
2b:73:4a:af:6d:15:10:70:a3:0e:8d:03:5c:c8:b2:7a:b7:95:
a5:1d:5c:bd:59:66:8b:76:7b:7a:71:f5:d7:49:4d:f9:59:79:
58:7d:aa:96:6c:2e:31:d2:fa:5a:9d:35:a6:f3:77:58:81:70:
25:05:63:51:63:02:34:5c:d0:21:b7:f1:fa:eb:35:67:6a:0d:
17:71:b4:f7:93:34:9a:cf:53:27:cf:45:8b:29:10:ca:cc:b4:
a6:b6:5c:e5:bd:5d:f8:c2:50:30:d7:f7:20:d2:03:36:6c:8a:
30:cb:03:bd:b7:8f:a5:2b:57:53:72:50:ea:71:e1:9c:da:83:
62:28:9a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:52 2024 by rpki-client on console-fra.rpki-client.org