Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/vK0G85rZBd00g-B6kAXCG6DpTh8.roa
File: vK0G85rZBd00g-B6kAXCG6DpTh8.roa (raw, json)
Hash identifier: uOID13G3oOH21rE/CKtADF0RF3hxuVm3cvEuzFhITr4=
Subject key identifier: BC:AD:06:F3:9A:D9:05:DD:34:83:E0:7A:90:05:C2:1B:A0:E9:4E:1F
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0AC012C4
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/vK0G85rZBd00g-B6kAXCG6DpTh8.roa
Signing time: Sat 01 Jan 2022 03:02:29 +0000
ROA not before: Sat 01 Jan 2022 03:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29262
IP address blocks: 185.87.24.0/24 maxlen: 24
185.87.27.0/24 maxlen: 24
185.87.26.0/24 maxlen: 24
185.85.191.0/24 maxlen: 24
185.85.190.0/24 maxlen: 24
185.85.189.0/24 maxlen: 24
185.87.123.0/24 maxlen: 24
185.87.122.0/24 maxlen: 24
185.87.121.0/24 maxlen: 24
185.119.83.0/24 maxlen: 24
185.119.82.0/24 maxlen: 24
185.119.81.0/24 maxlen: 24
185.119.80.0/24 maxlen: 24
185.85.237.0/24 maxlen: 24
185.85.239.0/24 maxlen: 24
185.85.238.0/24 maxlen: 24
185.86.5.0/24 maxlen: 24
185.86.13.0/24 maxlen: 24
185.86.154.0/24 maxlen: 24
185.86.153.0/24 maxlen: 24
185.86.166.0/24 maxlen: 24
185.86.165.0/24 maxlen: 24
185.86.164.0/24 maxlen: 24
185.86.167.0/24 maxlen: 24
185.98.60.0/24 maxlen: 24
2a0b:6780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180359876 (0xac012c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 03:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcad06f39ad905dd3483e07a9005c21ba0e94e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:94:cd:69:9c:9c:59:91:51:83:b1:81:cc:be:
7a:fe:9c:82:ef:7a:2a:dd:76:79:8a:02:6a:c2:53:
bb:25:5a:81:16:3f:f5:85:fb:85:fd:06:54:52:36:
1d:52:1b:73:be:96:a4:bf:2c:ae:40:45:e4:20:cb:
86:03:b5:dc:a0:7b:3b:a1:f0:67:8e:54:ae:f2:e7:
ed:c4:69:05:9f:6a:a1:1a:49:7e:bd:f4:66:9c:49:
1d:93:c2:85:cb:52:15:31:6a:6f:57:84:73:e9:e6:
28:72:c0:64:03:3d:48:ca:83:59:fe:1b:b7:cf:11:
c2:05:aa:a4:b3:25:91:7e:02:d8:7a:e2:66:82:76:
f1:1c:3a:a8:c0:06:2d:c6:f9:8a:8a:44:71:ac:08:
03:f8:ec:be:0c:69:54:b8:00:3e:76:10:e7:b3:fa:
11:17:03:2d:7f:e2:d3:dc:e3:26:f6:50:84:74:01:
1f:4c:c4:f4:77:e8:8e:73:5d:01:1d:2c:95:3d:f7:
e8:0b:62:82:84:b5:6f:da:2f:d1:bc:3b:7d:1b:32:
da:2c:1b:dd:11:bb:39:6a:f1:17:0e:81:83:cc:94:
f4:25:ad:8d:28:33:9e:14:b6:ec:ae:e7:46:69:27:
a0:9b:78:53:20:f8:63:dc:e7:f4:a2:29:86:98:b6:
ba:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AD:06:F3:9A:D9:05:DD:34:83:E0:7A:90:05:C2:1B:A0:E9:4E:1F
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/vK0G85rZBd00g-B6kAXCG6DpTh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.189.0-185.85.191.255
185.85.237.0-185.85.239.255
185.86.5.0/24
185.86.13.0/24
185.86.153.0-185.86.154.255
185.86.164.0/22
185.87.24.0/24
185.87.26.0/23
185.87.121.0-185.87.123.255
185.98.60.0/24
185.119.80.0/22
IPv6:
2a0b:6780::/29
Signature Algorithm: sha256WithRSAEncryption
8d:2a:54:7d:6d:77:6d:5c:5f:2e:90:b3:e3:68:80:91:ed:b1:
04:3d:ba:9f:35:8c:b6:60:72:92:99:6b:cd:3f:87:6f:49:6d:
79:4b:d4:da:6c:81:5e:68:d9:dd:d0:36:52:8e:60:47:99:04:
51:e7:69:c9:e9:ed:23:5a:cf:7d:1b:2c:3b:9c:3f:60:0e:02:
fc:54:44:33:81:60:ec:e1:b9:c9:46:3a:95:a7:a8:d0:4f:94:
ad:b4:6b:29:c4:44:de:34:47:21:1c:d5:b3:8c:5b:6c:40:b4:
18:ac:d7:0a:c6:94:83:eb:0e:93:d4:cd:9c:7f:86:0f:e4:5c:
55:19:d1:ae:97:37:80:72:00:38:7c:79:b0:e9:94:16:2d:d8:
10:4f:ba:f1:37:8a:e3:de:66:b7:45:c6:bd:14:65:06:8b:4a:
e3:b3:ec:b1:53:9f:4b:4a:2b:df:1f:56:6c:6d:ed:21:fa:79:
08:4c:29:5b:ef:04:fd:39:59:ec:70:91:32:6d:c7:a0:65:00:
4b:46:08:52:9b:cb:c6:c7:9f:5b:e2:b6:35:14:db:57:37:fd:
ef:3c:df:f9:30:8e:94:45:dc:d7:e6:bc:6c:05:45:1a:5e:37:
50:c4:58:f9:4c:43:74:d1:b5:57:b1:23:ce:23:25:c1:65:90:
3e:2e:71:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org