Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/AJb-gV2aKrpjKvowJ2t5vGMIPbg.roa
File: AJb-gV2aKrpjKvowJ2t5vGMIPbg.roa (raw, json)
Hash identifier: tVaff/jKakBz1O4T5D97LGkPnocGuRbeu8muL/Q2BzQ=
Subject key identifier: 00:96:FE:81:5D:9A:2A:BA:63:2A:FA:30:27:6B:79:BC:63:08:3D:B8
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0B641943
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/AJb-gV2aKrpjKvowJ2t5vGMIPbg.roa
Signing time: Thu 24 Feb 2022 10:52:39 +0000
ROA not before: Thu 24 Feb 2022 10:52:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29262
IP address blocks: 185.87.24.0/24 maxlen: 24
185.87.27.0/24 maxlen: 24
185.87.26.0/24 maxlen: 24
185.85.191.0/24 maxlen: 24
185.85.190.0/24 maxlen: 24
185.85.189.0/24 maxlen: 24
185.87.123.0/24 maxlen: 24
185.87.122.0/24 maxlen: 24
185.87.121.0/24 maxlen: 24
185.119.83.0/24 maxlen: 24
185.119.82.0/24 maxlen: 24
185.119.81.0/24 maxlen: 24
185.119.80.0/24 maxlen: 24
160.20.111.0/24 maxlen: 24
160.20.110.0/24 maxlen: 24
185.85.237.0/24 maxlen: 24
185.85.239.0/24 maxlen: 24
185.85.238.0/24 maxlen: 24
185.86.5.0/24 maxlen: 24
185.86.13.0/24 maxlen: 24
185.86.154.0/24 maxlen: 24
185.86.153.0/24 maxlen: 24
185.86.166.0/24 maxlen: 24
185.86.165.0/24 maxlen: 24
185.86.164.0/24 maxlen: 24
185.86.167.0/24 maxlen: 24
185.98.60.0/24 maxlen: 24
2a0b:6780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191109443 (0xb641943)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Feb 24 10:52:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0096fe815d9a2aba632afa30276b79bc63083db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:24:01:f3:1c:df:d6:ee:a4:31:e9:f0:78:99:
88:48:d1:87:b7:3b:43:f2:e4:20:21:77:1a:0a:79:
bc:14:d2:3c:6d:06:17:cd:3c:c8:6d:d8:8d:98:7f:
ca:87:90:b7:50:38:48:eb:a5:37:d3:5c:18:9a:d6:
a8:17:68:af:c5:f2:a0:8b:53:9e:11:d3:4b:fe:89:
19:27:4c:1a:57:2b:e6:32:4d:1f:ee:c4:dc:bc:01:
5d:9f:4d:0d:39:11:42:be:28:c2:5b:e3:3b:c4:e2:
e8:3a:7a:a2:54:ea:3a:0c:33:0c:f3:ad:4b:6c:95:
be:e3:91:bc:ac:ad:87:e5:47:9c:3c:04:f3:c6:54:
0b:d6:84:4a:db:1d:80:af:ed:4e:20:10:1c:3f:17:
cb:0f:c8:09:69:aa:39:fa:9f:02:e4:b8:e8:35:a8:
26:de:86:d5:d4:b8:5e:72:fa:fa:84:48:da:df:19:
4b:9b:07:e6:60:fb:3d:8a:a8:d6:07:63:c2:90:48:
1d:fb:aa:3a:41:d1:fb:24:27:e1:62:9c:2a:5d:c5:
1e:00:85:22:e5:ee:ec:2d:0e:fe:6b:2c:47:c9:99:
79:19:b2:42:81:ef:8a:84:a7:e6:9c:20:98:2a:ac:
42:8e:8f:af:3f:cb:3f:91:e4:f0:7c:f5:63:21:bb:
24:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:96:FE:81:5D:9A:2A:BA:63:2A:FA:30:27:6B:79:BC:63:08:3D:B8
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/AJb-gV2aKrpjKvowJ2t5vGMIPbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.110.0/23
185.85.189.0-185.85.191.255
185.85.237.0-185.85.239.255
185.86.5.0/24
185.86.13.0/24
185.86.153.0-185.86.154.255
185.86.164.0/22
185.87.24.0/24
185.87.26.0/23
185.87.121.0-185.87.123.255
185.98.60.0/24
185.119.80.0/22
IPv6:
2a0b:6780::/29
Signature Algorithm: sha256WithRSAEncryption
0c:44:ff:61:f7:8d:21:48:f5:28:ee:25:f1:fa:43:cd:22:ef:
82:10:46:07:8d:ed:d9:03:0e:c1:4e:f1:ac:a2:02:58:c9:1e:
81:0f:d1:1a:03:4d:10:61:ca:b1:27:b5:16:ba:ad:fb:9f:65:
07:d2:b1:2d:82:32:b6:da:1e:a0:49:48:27:0e:f8:91:79:d1:
b0:b9:69:96:38:d4:ed:61:0f:bf:d4:4f:42:38:78:22:77:48:
8d:83:af:e1:a8:92:77:d3:83:56:75:72:3e:b0:0c:f1:45:d8:
70:77:a3:c1:48:c5:69:ae:e6:7e:16:f6:94:3b:3f:51:f5:ee:
19:65:39:ae:ee:b9:85:8a:27:40:26:ea:98:53:f8:3b:4b:85:
39:64:e4:51:5c:c3:fc:25:d5:b5:52:38:64:8a:40:2f:f5:67:
e3:db:91:78:a8:35:6f:57:07:b1:84:74:76:07:10:dc:4a:af:
80:9f:25:ec:7b:0c:60:15:16:79:93:49:ab:e0:8b:26:47:b5:
f0:d3:33:6c:43:e0:4a:bc:6b:1f:05:85:06:5d:fe:2c:9c:33:
f6:52:5c:a5:f8:d4:f4:c0:45:25:9c:f7:71:d8:ba:a4:76:6d:
65:0d:e7:ac:5f:c9:01:db:b2:7c:1a:25:fc:3f:73:66:79:85:
19:3a:ac:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org