Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/PvciB0LDmdNVwkvfI_-Whqnu9Nk.roa
File: PvciB0LDmdNVwkvfI_-Whqnu9Nk.roa (raw, json)
Hash identifier: jl5yTDM7l+ElX0tX9At1PgOsoyaw/G/WFi8tKANyQEs=
Subject key identifier: 3E:F7:22:07:42:C3:99:D3:55:C2:4B:DF:23:FF:96:86:A9:EE:F4:D9
Certificate issuer: /CN=1bb45744a541285eea0e4e04e5de766a9c823b53
Certificate serial: 0D4B81E5
Authority key identifier: 1B:B4:57:44:A5:41:28:5E:EA:0E:4E:04:E5:DE:76:6A:9C:82:3B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7RXRKVBKF7qDk4E5d52apyCO1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/PvciB0LDmdNVwkvfI_-Whqnu9Nk.roa
Signing time: Sat 01 Jan 2022 05:03:58 +0000
ROA not before: Sat 01 Jan 2022 05:03:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200623
IP address blocks: 185.100.250.0/24 maxlen: 24
185.100.249.0/24 maxlen: 24
185.100.248.0/24 maxlen: 24
185.100.248.0/22 maxlen: 22
2a00:9da0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223052261 (0xd4b81e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bb45744a541285eea0e4e04e5de766a9c823b53
Validity
Not Before: Jan 1 05:03:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ef7220742c399d355c24bdf23ff9686a9eef4d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7e:c0:ec:b7:50:2b:b8:dd:64:01:b9:c4:c7:
ad:0f:85:b1:39:9d:e0:95:41:04:43:31:8f:04:65:
2d:1c:84:40:48:75:4d:13:52:d6:b0:3a:4e:20:93:
f9:a6:68:3a:96:94:f0:6a:7f:9d:3f:f8:66:0e:30:
90:26:54:f5:54:41:84:a3:82:ca:74:ec:9b:04:52:
9a:3a:43:cc:fc:f7:40:3e:7d:63:ea:72:ac:0a:c9:
8f:dd:ab:cb:cf:fb:4a:ff:35:24:d7:30:15:1b:b5:
8c:a3:a3:0a:e9:fa:d7:13:d8:b0:b4:0f:53:95:28:
1a:31:e5:34:8a:fc:73:e8:d5:9a:cd:35:0d:81:27:
b8:f9:ab:92:05:99:5d:7c:c2:89:4c:6f:71:1d:8b:
c9:8a:97:99:95:14:1c:f7:1f:79:bf:33:f1:62:ea:
48:16:99:1d:70:90:ce:cf:40:d1:08:e7:23:42:7b:
ec:d4:e9:3b:bb:91:f2:13:77:4d:7d:4a:12:5f:ef:
77:34:9f:62:f7:52:07:d9:2c:92:20:b8:9b:32:39:
37:9a:04:b3:41:77:ac:57:5d:6c:37:8e:fd:78:60:
f3:b7:6f:c7:55:2d:40:52:01:2b:b9:11:10:52:e5:
1d:2f:9e:25:ac:e7:9f:e1:e5:c8:94:36:de:99:d2:
71:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F7:22:07:42:C3:99:D3:55:C2:4B:DF:23:FF:96:86:A9:EE:F4:D9
X509v3 Authority Key Identifier:
keyid:1B:B4:57:44:A5:41:28:5E:EA:0E:4E:04:E5:DE:76:6A:9C:82:3B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7RXRKVBKF7qDk4E5d52apyCO1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/PvciB0LDmdNVwkvfI_-Whqnu9Nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/G7RXRKVBKF7qDk4E5d52apyCO1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.248.0/22
IPv6:
2a00:9da0::/32
Signature Algorithm: sha256WithRSAEncryption
0b:81:69:fb:06:d6:d8:96:34:19:1b:56:25:31:05:04:58:e1:
09:fa:5c:c2:12:e8:c1:74:ed:64:f0:2c:70:d6:58:45:54:42:
9a:6c:01:30:38:85:fe:a2:a8:8d:67:22:15:00:6b:0a:c5:fa:
aa:cf:5a:58:da:84:78:77:0f:2e:50:7d:67:3b:04:62:81:bc:
18:81:fa:aa:58:b8:a9:6a:5f:32:69:a8:40:50:5a:ed:6d:27:
b0:70:0d:a0:1a:57:44:40:2b:d3:14:6c:86:ed:ca:c4:d0:55:
21:19:75:e6:bf:6f:e8:b0:95:19:1c:17:8d:b2:28:41:8e:7b:
26:68:b6:af:a4:50:b4:b9:67:a3:36:6c:21:95:39:76:07:55:
f8:9f:82:74:c1:09:98:61:ca:31:1b:24:6f:24:28:f7:8e:97:
b4:83:34:68:27:6f:63:e1:1d:5c:4f:dd:66:77:7e:30:2d:50:
36:a3:b8:27:b8:c0:e0:5f:11:4c:b0:c8:17:45:a0:eb:eb:3b:
5d:e3:2b:b8:06:61:9d:1e:8b:a6:7d:50:4c:7d:96:5d:7e:da:
2f:2d:98:3a:58:92:ce:b5:38:b7:a0:95:07:0f:69:20:e3:25:
8f:ed:00:3c:23:37:af:48:39:90:72:53:47:5c:bc:24:33:22:
ab:05:a2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:29 2024 by rpki-client on console-ams.rpki-client.org