Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/l4DGPSM_7-ucmpBbavQpTKyNgco.roa
File: l4DGPSM_7-ucmpBbavQpTKyNgco.roa (raw, json)
Hash identifier: shl7pU7pXekteccMX5DJz0BD3zSl3ovhcIxcRy5Nf8Y=
Subject key identifier: 97:80:C6:3D:23:3F:EF:EB:9C:9A:90:5B:6A:F4:29:4C:AC:8D:81:CA
Certificate issuer: /CN=11466326406436e31478b7bca2dda16c96d5a964
Certificate serial: 06C78CEF
Authority key identifier: 11:46:63:26:40:64:36:E3:14:78:B7:BC:A2:DD:A1:6C:96:D5:A9:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/l4DGPSM_7-ucmpBbavQpTKyNgco.roa
Signing time: Sat 01 Jan 2022 11:54:33 +0000
ROA not before: Sat 01 Jan 2022 11:54:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39421
IP address blocks: 185.142.52.0/24 maxlen: 24
185.142.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113741039 (0x6c78cef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11466326406436e31478b7bca2dda16c96d5a964
Validity
Not Before: Jan 1 11:54:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9780c63d233fefeb9c9a905b6af4294cac8d81ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6a:cd:fb:98:d5:d9:7f:d1:00:42:8e:83:65:
ea:0d:6d:a7:92:d4:ad:c2:56:11:2b:f8:01:05:8a:
a3:03:70:52:a1:32:ca:bc:ba:22:2f:a4:f9:4f:73:
04:3a:1e:25:f0:d0:9d:2a:fe:ee:92:a7:b3:a2:42:
9a:34:55:da:6f:c1:34:78:2f:2d:51:b3:0f:8a:7f:
1e:06:8d:ba:9b:8c:d8:07:17:44:a8:8d:f5:33:6d:
ff:51:4e:f6:04:b2:48:3d:62:1f:02:f2:18:9c:ac:
a3:6e:77:4e:94:43:4a:b0:d3:96:46:77:67:a1:b4:
46:f7:b7:b3:81:df:40:77:a6:db:30:f2:83:f3:7b:
11:de:9a:e5:0b:08:2d:24:a8:b3:b2:66:25:8c:ef:
f8:f8:4a:aa:ef:0b:1b:95:b2:31:ad:35:93:bd:6f:
20:62:6d:f1:c6:b6:ff:9d:e0:2d:d7:35:6d:76:3e:
ad:73:0c:9c:a2:c6:0b:e5:92:5f:95:8b:ce:56:4e:
1b:a4:7e:a1:58:f4:53:7f:bb:45:ac:46:f1:93:bf:
c8:35:c6:01:65:6f:11:52:10:74:47:9d:36:54:ec:
6d:63:cb:6b:95:12:3e:13:30:65:3c:64:88:ed:ae:
e7:49:8d:d4:9f:6f:8d:51:f2:01:1b:51:21:0a:51:
e2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:80:C6:3D:23:3F:EF:EB:9C:9A:90:5B:6A:F4:29:4C:AC:8D:81:CA
X509v3 Authority Key Identifier:
keyid:11:46:63:26:40:64:36:E3:14:78:B7:BC:A2:DD:A1:6C:96:D5:A9:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/l4DGPSM_7-ucmpBbavQpTKyNgco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/9ba66c-bee7-44c9-82e5-d95a5155dd02/1/EUZjJkBkNuMUeLe8ot2hbJbVqWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.52.0/24
185.142.55.0/24
Signature Algorithm: sha256WithRSAEncryption
35:f8:a5:33:09:10:4c:28:2a:2c:e4:a9:c4:39:d5:46:57:d9:
50:64:ec:ea:68:db:92:13:9f:7c:be:6e:08:7f:0b:e8:ab:13:
28:28:b9:6c:03:b5:f8:48:b7:67:26:24:ce:25:c6:01:60:1d:
a3:77:8e:bf:79:26:01:f8:68:b0:56:ec:2f:d1:ad:44:33:ae:
6b:37:62:0c:e4:e4:92:37:f2:b4:ee:32:45:05:18:ef:43:97:
be:8d:cb:cd:d8:1c:2f:71:50:a1:77:81:5f:6f:f8:4f:59:33:
d0:ca:2e:6a:61:a0:52:ba:18:12:b5:64:71:9d:a7:eb:19:a8:
3b:f4:bd:cc:72:37:d4:ce:d5:b4:3a:d4:16:69:67:bb:74:77:
ec:d9:64:a5:7d:99:ea:fa:d5:a8:4b:4b:0c:b9:ef:d1:fb:35:
b1:b5:02:03:55:33:9c:31:5f:f4:a8:af:d3:6a:88:c3:55:fc:
b7:7d:35:58:f9:d6:f7:be:c8:09:40:c7:e2:23:11:bc:44:85:
4c:28:ba:4c:ae:d6:46:72:84:42:f9:7d:41:b0:33:21:2b:1e:
3a:d2:8e:7b:8c:5e:8d:90:5c:79:9e:a2:d1:ab:c5:c2:ae:e7:
b3:36:12:f4:bf:90:03:6b:7a:49:1b:ad:8b:ef:75:99:5d:b7:
36:56:70:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:10 2023 by rpki-client on console-ams.rpki-client.org