Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/DrVy6aFYE-l-n4_I0BzP9plras0.roa
File: DrVy6aFYE-l-n4_I0BzP9plras0.roa (raw, json)
Hash identifier: 7EEwCS77zdLV3ftxCR4KbN2DouZWtdfHPZQcu2dTNb8=
Subject key identifier: 0E:B5:72:E9:A1:58:13:E9:7E:9F:8F:C8:D0:1C:CF:F6:99:6B:6A:CD
Certificate issuer: /CN=11466326406436e31478b7bca2dda16c96d5a964
Certificate serial: 06C8AE55
Authority key identifier: 11:46:63:26:40:64:36:E3:14:78:B7:BC:A2:DD:A1:6C:96:D5:A9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/DrVy6aFYE-l-n4_I0BzP9plras0.roa
Signing time: Sat 01 Jan 2022 11:54:34 +0000
ROA not before: Sat 01 Jan 2022 11:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49434
IP address blocks: 185.142.53.0/24 maxlen: 24
185.142.54.0/24 maxlen: 24
193.178.0.0/24 maxlen: 24
193.177.162.0/24 maxlen: 24
193.177.182.0/24 maxlen: 24
193.177.0.0/24 maxlen: 24
2a0f:9240::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113815125 (0x6c8ae55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11466326406436e31478b7bca2dda16c96d5a964
Validity
Not Before: Jan 1 11:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eb572e9a15813e97e9f8fc8d01ccff6996b6acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e7:2c:19:62:1a:ca:8b:c5:49:05:e6:86:1d:
8a:67:d9:6e:3f:b9:5f:dd:8d:55:58:02:b6:10:f8:
02:3c:59:c6:c8:cb:46:80:47:f6:f3:d7:81:e9:6c:
7e:7b:b1:8c:d5:e5:26:fe:ac:6f:71:5d:25:57:dc:
bf:51:0f:bc:ea:fb:06:d0:46:45:e5:9e:2f:aa:d7:
63:8c:e4:f2:da:7a:fd:44:eb:86:b3:40:1e:13:1a:
5c:be:0e:49:41:d1:ec:c1:e4:4b:a0:77:3b:1c:cb:
d1:85:2b:20:9f:f3:ac:e9:54:ad:79:88:de:a6:06:
76:63:5d:61:0a:38:68:1a:68:79:c7:ef:53:ba:53:
fe:2c:2e:3b:1b:a8:00:5d:f3:68:fc:1d:61:78:c9:
53:76:20:2b:c3:2a:e5:89:61:b1:ee:c2:29:27:6c:
5e:38:b9:54:ac:72:0a:2e:6d:4d:b0:9c:46:6e:d2:
d4:40:86:45:4f:0c:c6:3b:58:a4:87:c4:c9:60:e4:
9a:cb:e6:6c:41:d2:d3:8b:99:b9:f9:71:a3:4d:f9:
49:6b:64:d2:ae:12:d5:c1:a9:1c:66:e4:59:30:df:
5f:5e:e5:b4:39:0e:b2:e1:dc:ed:89:cd:4c:74:c7:
7f:be:3f:bd:50:07:ec:50:32:55:5b:7c:8f:c5:97:
d9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B5:72:E9:A1:58:13:E9:7E:9F:8F:C8:D0:1C:CF:F6:99:6B:6A:CD
X509v3 Authority Key Identifier:
keyid:11:46:63:26:40:64:36:E3:14:78:B7:BC:A2:DD:A1:6C:96:D5:A9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/DrVy6aFYE-l-n4_I0BzP9plras0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.53.0-185.142.54.255
193.177.0.0/24
193.177.162.0/24
193.177.182.0/24
193.178.0.0/24
IPv6:
2a0f:9240::/32
Signature Algorithm: sha256WithRSAEncryption
46:2c:51:4a:8e:5b:26:77:d7:f3:e5:36:17:86:f7:3e:5b:e3:
c2:bc:60:e8:fc:84:2b:95:ad:dd:33:cd:c8:2a:cf:9f:b1:b4:
c8:ef:4b:65:e4:87:4b:a1:a2:c4:00:ac:47:58:dc:e2:22:42:
4e:f0:b5:af:87:66:46:c3:da:bc:7c:f3:83:57:7a:b6:df:b4:
87:1c:d1:93:87:4a:af:25:ee:b1:1f:70:11:88:8b:0f:b5:f4:
9c:a0:84:40:e6:bb:3f:8d:16:0f:81:c6:cd:d5:33:68:f4:61:
ef:b1:8f:ea:95:7a:cc:09:82:69:ed:18:c5:af:9c:da:d6:e1:
7a:c5:bc:75:76:87:97:43:2d:40:a2:d8:09:62:9c:61:76:70:
9e:9f:50:2c:26:b5:4e:5a:c3:7e:ee:50:b9:68:ea:3f:5e:e3:
0a:98:c7:22:7a:d2:48:94:c5:e0:c5:a3:92:d0:83:f0:7f:ff:
d1:89:3c:61:b0:58:8e:b1:64:db:1c:f2:96:f4:ca:d6:91:71:
df:85:9a:2a:f4:01:4e:f7:e4:5c:34:0b:c8:ac:f2:66:6a:c6:
bc:d5:a0:6f:fb:82:76:b6:6f:26:7f:04:f1:8a:7c:0f:b3:9d:
d7:88:60:79:4d:81:75:ba:a6:6e:da:bc:0e:d1:50:fd:45:91:
37:5d:b2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:10 2023 by rpki-client on console-ams.rpki-client.org