Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/SLRKxvGX_D8ECiTcIFJI47zRS8w.roa
File: SLRKxvGX_D8ECiTcIFJI47zRS8w.roa (raw, json)
Hash identifier: 8YTSCSJgvNiALk5L6QL1SfTRKFF4/dUTFyCOk3CCKyU=
Subject key identifier: 48:B4:4A:C6:F1:97:FC:3F:04:0A:24:DC:20:52:48:E3:BC:D1:4B:CC
Certificate issuer: /CN=4f123e248e6ec0368e0712345f726d71f60f826b
Certificate serial: 0CFA8BF9
Authority key identifier: 4F:12:3E:24:8E:6E:C0:36:8E:07:12:34:5F:72:6D:71:F6:0F:82:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxI-JI5uwDaOBxI0X3JtcfYPgms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/SLRKxvGX_D8ECiTcIFJI47zRS8w.roa
Signing time: Fri 28 Jan 2022 10:24:11 +0000
ROA not before: Fri 28 Jan 2022 10:24:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201597
IP address blocks: 185.66.92.0/22 maxlen: 22
185.232.252.0/22 maxlen: 22
185.232.254.0/24 maxlen: 24
2a05:680::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217746425 (0xcfa8bf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f123e248e6ec0368e0712345f726d71f60f826b
Validity
Not Before: Jan 28 10:24:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48b44ac6f197fc3f040a24dc205248e3bcd14bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:05:a7:5b:3b:50:fb:56:90:27:32:34:e2:17:
14:99:8a:3c:51:78:d3:7b:ef:3c:a5:66:2c:be:92:
2c:07:67:5c:1f:ab:d9:83:4c:37:e8:bb:3d:1d:9f:
cc:5e:97:d2:55:b9:45:80:cd:5f:b5:b2:18:5b:55:
c6:45:5d:5b:23:db:25:b6:70:6d:53:2b:b2:fd:b0:
8f:a7:3a:d2:56:d9:12:77:17:9c:49:b3:c2:e8:9a:
b1:bb:48:15:ff:98:1a:f3:33:7e:8f:7a:0a:29:e4:
a6:c2:73:38:61:af:6a:69:07:a7:c5:41:b1:c3:bf:
d1:d0:e1:d4:31:5c:22:33:f4:07:fc:df:43:b3:77:
f4:fc:1f:cf:14:bb:61:85:7a:14:b8:e4:a7:c0:d3:
fd:95:be:44:23:bd:ed:a9:99:5d:b9:d3:d3:db:1e:
01:7c:20:cc:7a:55:9c:9e:e5:e2:a5:f1:65:a2:e9:
90:aa:45:c4:6c:eb:8c:9e:fb:0b:a6:aa:21:00:75:
f1:61:87:3d:38:d7:fd:d3:5a:86:d6:e4:b7:cc:3b:
61:19:5c:2d:b8:9d:b0:f0:60:1f:1b:4f:01:a6:82:
03:7b:a1:4d:81:da:76:93:fd:f1:da:9a:00:fd:12:
3c:d8:b4:ee:08:bc:8e:7d:ea:d6:27:df:d5:d3:de:
e0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B4:4A:C6:F1:97:FC:3F:04:0A:24:DC:20:52:48:E3:BC:D1:4B:CC
X509v3 Authority Key Identifier:
keyid:4F:12:3E:24:8E:6E:C0:36:8E:07:12:34:5F:72:6D:71:F6:0F:82:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxI-JI5uwDaOBxI0X3JtcfYPgms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/SLRKxvGX_D8ECiTcIFJI47zRS8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6d9ce2-6d88-4977-ae06-c1e941e59c14/1/TxI-JI5uwDaOBxI0X3JtcfYPgms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.92.0/22
185.232.252.0/22
IPv6:
2a05:680::/29
Signature Algorithm: sha256WithRSAEncryption
55:12:f2:02:0f:0e:3f:29:c8:9e:54:1d:d0:05:81:8f:a8:95:
b5:6f:69:8f:12:ef:99:43:f5:94:98:f9:c4:dc:8d:79:b2:32:
cc:d4:ec:72:d6:21:fc:ad:b7:43:7b:ee:3a:9c:b9:a1:ae:d4:
11:ec:6c:37:47:65:e8:3f:fd:cb:7e:0d:80:46:5f:a7:37:93:
ef:0e:d6:c5:b9:28:cf:d8:42:ad:f6:f8:78:ab:15:15:c6:d2:
fd:b6:f6:8f:e9:e9:06:58:2e:6e:fc:0f:13:61:01:ab:23:04:
2a:a8:1c:41:54:6a:fe:fb:b9:ba:98:99:7a:b9:94:f0:21:f7:
cf:74:f8:6e:6a:34:69:ca:81:19:12:ad:18:a7:40:fb:5f:22:
fd:f7:6d:a9:a6:83:8b:dc:e8:54:86:00:33:93:48:c6:28:87:
ea:eb:a2:a8:89:28:d2:7c:dc:ae:99:37:6a:31:cb:0d:81:57:
9b:55:23:f6:ed:59:43:1b:02:aa:12:5e:e8:fd:85:0e:a9:1a:
9d:06:a4:79:51:19:d8:ef:74:ba:3b:7a:16:7c:d8:6d:13:da:
52:ac:b7:38:cc:e4:b8:af:a7:e2:14:5a:0b:dd:32:be:7b:e3:
09:e7:4e:5f:17:76:ed:37:eb:85:2f:21:05:09:ab:79:28:ee:
2d:bf:e3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:20 2024 by rpki-client on console-ams.rpki-client.org