Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/3kZT9ERb4eC8V1mL-6S7vVCf47c.roa
File: 3kZT9ERb4eC8V1mL-6S7vVCf47c.roa (raw, json)
Hash identifier: 7Jnnmt0kaZEXDa8Vz50HqK562hKxkc8xxIVQnBHtu8I=
Subject key identifier: DE:46:53:F4:44:5B:E1:E0:BC:57:59:8B:FB:A4:BB:BD:50:9F:E3:B7
Certificate issuer: /CN=a8801be2363f211bd2f57818adeaf9c0dbe14bdb
Certificate serial: 0635EAF1
Authority key identifier: A8:80:1B:E2:36:3F:21:1B:D2:F5:78:18:AD:EA:F9:C0:DB:E1:4B:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qIAb4jY_IRvS9XgYrer5wNvhS9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/3kZT9ERb4eC8V1mL-6S7vVCf47c.roa
Signing time: Sat 01 Jan 2022 05:54:31 +0000
ROA not before: Sat 01 Jan 2022 05:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.66.203.0/24 maxlen: 24
185.66.202.0/24 maxlen: 24
82.115.214.0/24 maxlen: 24
2a07:e3c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104196849 (0x635eaf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8801be2363f211bd2f57818adeaf9c0dbe14bdb
Validity
Not Before: Jan 1 05:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de4653f4445be1e0bc57598bfba4bbbd509fe3b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:34:7f:34:14:f7:65:b6:87:9d:30:1c:64:3e:
d1:3d:15:d4:20:ae:f4:5e:8c:3b:3f:a7:e5:0d:6f:
ff:a8:ba:95:7f:fa:5d:ae:bd:45:67:0f:68:9a:36:
59:a5:66:9a:9b:60:df:48:ed:a6:e8:a2:e0:ba:86:
76:52:6e:44:44:b5:82:38:70:27:fe:bb:70:4d:51:
0e:69:98:53:fb:76:41:0a:92:91:dd:a3:7e:38:f8:
87:4d:fc:61:91:3f:e2:46:85:d8:c8:a1:07:f2:bc:
24:30:dc:e7:27:5a:dc:71:22:95:9f:16:fa:7b:89:
0c:14:32:1b:b5:c3:70:79:c6:0c:52:aa:a8:00:f3:
eb:8d:55:08:35:3c:b5:ea:ca:c8:67:1d:c8:e9:aa:
2d:17:06:b2:d0:39:90:d6:c0:98:9c:22:5b:bd:fd:
49:f1:85:45:35:1b:e9:7a:c5:a9:28:74:2b:82:0c:
24:c3:78:15:74:5a:61:ed:f7:fe:db:ee:39:ab:eb:
10:57:be:c1:d2:f7:05:b6:59:40:55:23:d8:7d:ae:
dd:c0:15:f4:da:5d:ce:e9:42:0e:58:00:79:10:5b:
a3:e8:29:ef:64:90:f8:ae:31:c4:84:82:6f:c5:87:
c9:c1:5d:06:0f:01:c9:03:3a:0c:58:84:3b:fa:06:
35:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:46:53:F4:44:5B:E1:E0:BC:57:59:8B:FB:A4:BB:BD:50:9F:E3:B7
X509v3 Authority Key Identifier:
keyid:A8:80:1B:E2:36:3F:21:1B:D2:F5:78:18:AD:EA:F9:C0:DB:E1:4B:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qIAb4jY_IRvS9XgYrer5wNvhS9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/3kZT9ERb4eC8V1mL-6S7vVCf47c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/811e73-cf30-494d-acac-8420ae9e0622/1/qIAb4jY_IRvS9XgYrer5wNvhS9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.214.0/24
185.66.202.0/23
IPv6:
2a07:e3c0::/48
Signature Algorithm: sha256WithRSAEncryption
3c:63:0c:ea:b8:b2:5f:1b:95:da:a2:bd:6a:2f:7c:58:81:18:
cf:ad:1a:3f:fc:99:97:3f:cc:8f:ef:d0:c2:72:36:87:5e:fa:
3f:87:f9:82:ee:0a:7f:bc:a5:8d:fc:56:05:cc:16:2f:cb:da:
72:81:84:47:f1:10:1b:71:cd:ff:e6:5d:7a:b9:03:4d:f4:a5:
09:28:46:84:60:d7:71:52:89:43:04:eb:f8:13:0b:6c:ac:d5:
21:76:e8:c1:a2:a1:62:78:bb:ef:ea:a1:69:f9:12:a0:58:01:
18:33:43:e8:ec:b7:f8:0b:80:13:bc:44:90:97:41:a3:65:9d:
5f:ec:0c:2b:d1:a2:ec:65:83:2a:3b:b4:f8:ee:fd:5f:2d:c4:
b6:85:f9:68:19:d4:b4:1b:b2:0f:29:d8:da:37:25:48:ea:b8:
3e:61:ad:8e:be:95:f2:66:47:b9:a6:9e:23:50:72:59:71:44:
d4:67:a3:57:09:a7:2e:ad:81:fb:99:81:8b:48:87:70:41:c1:
36:39:05:12:16:b1:22:21:70:91:a5:1a:c8:8e:17:2a:ea:30:
0d:01:72:c8:b3:e5:be:07:92:75:de:36:db:db:8a:96:e5:1b:
90:e6:ae:1b:f1:fa:9a:61:3f:f9:d2:2d:ad:63:5b:52:43:5e:
22:a6:0b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:45 2024 by rpki-client on console-fra.rpki-client.org