Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LPcyefbAmm7YJe3Tl2md_Bv5DpA.roa
File: LPcyefbAmm7YJe3Tl2md_Bv5DpA.roa (raw, json)
Hash identifier: UWUY8be/HWrFEuXhsh+gQrKzJo5OlzzlzIFc9ICOwU4=
Subject key identifier: 2C:F7:32:79:F6:C0:9A:6E:D8:25:ED:D3:97:69:9D:FC:1B:F9:0E:90
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 01440EBF
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LPcyefbAmm7YJe3Tl2md_Bv5DpA.roa
Signing time: Sun 02 Jan 2022 20:24:57 +0000
ROA not before: Sun 02 Jan 2022 20:24:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 104.249.25.0/24 maxlen: 24
104.249.63.0/24 maxlen: 24
104.249.62.0/24 maxlen: 24
216.173.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21237439 (0x1440ebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 2 20:24:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cf73279f6c09a6ed825edd397699dfc1bf90e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8b:de:d3:42:20:16:fb:b7:54:78:68:4d:90:
95:77:c0:47:b8:c6:b7:f7:a9:b0:76:15:bc:b4:11:
86:87:3e:2c:b2:20:12:8d:2a:08:3e:91:fe:e9:ae:
85:bb:02:17:0c:a0:92:26:a9:a0:1c:eb:80:79:47:
ca:b0:e6:aa:37:fb:8f:39:2d:6f:23:e1:4f:aa:41:
fc:f7:bb:4f:4c:97:78:f9:05:57:99:28:30:79:9f:
ff:2e:18:37:79:d4:19:ca:14:e1:d4:4a:7b:5d:5c:
d1:fa:53:ae:bb:b2:1e:dd:77:5b:05:5d:5c:02:ed:
f0:4a:2d:aa:82:ea:18:87:47:cc:d0:30:82:69:54:
a5:30:2b:cb:6f:35:a4:85:09:e6:76:97:db:91:ab:
36:0e:f5:52:ed:9f:d3:3f:d2:e0:35:a6:aa:11:11:
96:be:da:16:03:2a:15:06:99:22:6e:06:38:bd:6c:
10:d0:4e:b0:45:f6:03:86:99:61:ae:b9:d7:00:66:
78:81:38:71:2f:96:81:5e:c9:df:e9:c6:d8:05:d9:
99:2a:90:c7:42:e7:a7:62:57:11:6f:9d:8c:0b:22:
72:58:a1:d1:34:83:4b:bb:6a:a7:15:ce:c2:1f:db:
57:93:93:83:4b:7d:58:bd:e4:3d:31:96:93:16:92:
65:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F7:32:79:F6:C0:9A:6E:D8:25:ED:D3:97:69:9D:FC:1B:F9:0E:90
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LPcyefbAmm7YJe3Tl2md_Bv5DpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.249.25.0/24
104.249.62.0/23
216.173.112.0/21
Signature Algorithm: sha256WithRSAEncryption
18:bf:a9:42:3e:c8:c6:4d:f7:18:78:f6:ec:9d:98:67:03:d1:
ff:0d:4d:32:c4:cd:9c:62:00:81:76:63:46:3e:b6:5c:9e:ab:
7a:6c:25:39:c2:1e:b2:ff:93:0b:92:34:7f:14:e1:ee:51:a5:
6b:9a:b4:5b:02:9e:37:7f:3e:28:cd:2c:14:98:9d:2a:d2:37:
e9:81:63:5e:0e:9a:0d:96:27:5b:2c:72:b4:a0:1a:cc:aa:52:
6f:a2:8d:f5:a7:13:7c:d2:85:9a:a6:69:c5:28:97:50:01:d3:
cc:2d:00:e6:f1:2f:e9:df:37:bd:9a:3d:95:22:24:45:c3:a6:
e1:2f:27:4d:82:6d:44:c3:b3:54:8f:23:7e:55:72:47:a1:97:
eb:0c:a9:2f:82:a1:ba:df:90:cc:12:28:ce:30:66:ab:87:62:
41:3e:3a:8e:45:77:5c:40:f2:2f:60:8f:d7:0e:19:db:ca:6f:
46:b6:34:7b:56:b0:fc:86:27:61:6b:6a:ca:d9:c0:fd:38:2f:
69:3f:70:60:7b:88:97:2a:47:3e:b8:15:c0:24:09:fb:47:fd:
44:a6:a1:f7:ce:ef:a6:65:77:b7:7d:67:49:41:f1:27:02:5b:
6b:e1:36:f5:b5:6b:b3:cc:de:77:2a:c0:b7:b1:5a:95:b2:53:
b6:1b:f2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:44 2024 by rpki-client on console-ams.rpki-client.org