Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3i5Zi-WnWRnt12zeAS6AmQ8wODU.roa
File: 3i5Zi-WnWRnt12zeAS6AmQ8wODU.roa (raw, json)
Hash identifier: n+IkXpN62I522ZiZzcMmaH+EDpnjin/osLrS3vwRKtM=
Subject key identifier: DE:2E:59:8B:E5:A7:59:19:ED:D7:6C:DE:01:2E:80:99:0F:30:38:35
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03DCEF61
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3i5Zi-WnWRnt12zeAS6AmQ8wODU.roa
Signing time: Sat 01 Jan 2022 13:04:07 +0000
ROA not before: Sat 01 Jan 2022 13:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203068
IP address blocks: 185.241.120.0/23 maxlen: 23
185.244.232.0/23 maxlen: 23
185.242.173.0/24 maxlen: 24
185.242.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64810849 (0x3dcef61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de2e598be5a75919edd76cde012e80990f303835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:30:11:47:21:a7:63:3e:43:d4:f8:4e:28:3b:
84:12:6f:1e:78:78:a9:c2:2c:a3:83:da:52:46:02:
a1:db:33:ae:ce:d8:e9:db:a5:1c:e1:20:4f:7c:db:
6b:75:97:e9:d9:d5:b8:c4:6b:cd:9e:7b:a1:48:36:
b1:4f:bd:0d:dd:f2:a0:38:49:b9:c2:b1:92:2a:98:
b5:44:7f:2d:b0:3c:dd:3e:03:04:7d:a7:a1:7a:4b:
4e:25:79:15:1d:e9:40:48:38:90:51:af:ad:08:83:
63:f8:60:6c:72:e4:96:e7:b4:fe:c6:02:58:50:01:
38:f8:12:39:2d:b7:fe:43:6e:b1:72:ff:08:2a:1f:
d4:e0:83:10:26:b4:54:6a:98:f4:26:cb:ca:88:c7:
96:a8:77:21:b3:60:ed:ad:5c:eb:6a:73:a3:40:c4:
33:4d:c9:1e:1c:ea:52:5e:32:27:80:85:4a:b9:12:
b9:15:f8:fb:df:64:26:29:dc:a3:5a:08:ed:18:e4:
14:f1:0b:13:bb:86:f1:5b:1e:b2:ed:72:ea:fa:aa:
eb:15:c0:03:01:09:6c:38:3a:b6:1e:77:a1:21:f1:
42:6b:b8:cc:97:19:8f:5f:f4:a7:7a:ef:37:b7:a4:
2b:62:28:68:60:51:da:a7:db:2f:de:73:f0:a6:ff:
59:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2E:59:8B:E5:A7:59:19:ED:D7:6C:DE:01:2E:80:99:0F:30:38:35
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3i5Zi-WnWRnt12zeAS6AmQ8wODU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.120.0/23
185.242.173.0-185.242.174.255
185.244.232.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:e0:71:17:50:5e:ca:0a:28:82:62:94:2b:c7:a1:3d:28:90:
f6:ec:69:aa:f7:e9:89:9f:f5:e0:6c:96:d8:73:ac:3a:8b:45:
92:9e:c8:45:68:6b:6b:ce:87:ed:81:09:f3:35:d2:05:ec:dd:
d6:d1:5a:a7:85:51:92:95:6b:c3:e7:58:6e:4b:cb:26:03:08:
dc:d1:a3:cd:dc:12:3b:3a:e5:65:b4:b5:87:86:72:26:bb:1b:
9f:e3:e0:5f:2f:91:29:5d:d4:05:52:cb:ce:30:12:27:82:a3:
53:36:9a:67:e5:36:b1:f8:76:db:a6:f3:1e:7a:16:88:8e:06:
1b:9c:20:fb:b0:0e:f7:49:7b:a7:2c:5b:44:c8:85:21:8f:a2:
64:3c:b6:47:27:14:4f:1f:7e:46:3a:a6:28:78:14:c8:50:69:
13:aa:6a:74:c9:c0:37:0a:ab:bf:f7:b3:1a:80:b1:bd:f7:08:
2d:3b:90:10:64:68:0b:1b:06:11:eb:12:18:e5:ac:1c:24:eb:
fe:47:7a:d3:7f:3c:14:2f:c1:b7:74:b1:a8:c8:fa:66:76:03:
2e:2a:df:65:1f:7b:5b:29:b8:03:dc:dc:fe:39:0b:e8:60:4a:
13:04:25:59:34:a7:bf:06:53:87:3f:0f:1a:05:29:66:7a:2a:
46:b2:8b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:34 2024 by rpki-client on console-ams.rpki-client.org