Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/9A4HZFRRT4Qe6wsdJwq_gMlt6us.roa
File: 9A4HZFRRT4Qe6wsdJwq_gMlt6us.roa (raw, json)
Hash identifier: QYbbgjBJWk0mOWOWT1BSlQ2x48Tecg6K5nKcddf8YyI=
Subject key identifier: F4:0E:07:64:54:51:4F:84:1E:EB:0B:1D:27:0A:BF:80:C9:6D:EA:EB
Certificate issuer: /CN=8e7b69927dd21bb9e1455fa88ed88ed247c718da
Certificate serial: 040AC867
Authority key identifier: 8E:7B:69:92:7D:D2:1B:B9:E1:45:5F:A8:8E:D8:8E:D2:47:C7:18:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jntpkn3SG7nhRV-ojtiO0kfHGNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/9A4HZFRRT4Qe6wsdJwq_gMlt6us.roa
Signing time: Sat 01 Jan 2022 01:55:13 +0000
ROA not before: Sat 01 Jan 2022 01:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44650
IP address blocks: 185.175.240.0/24 maxlen: 24
185.175.242.0/24 maxlen: 24
185.175.243.0/24 maxlen: 24
185.175.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67815527 (0x40ac867)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7b69927dd21bb9e1455fa88ed88ed247c718da
Validity
Not Before: Jan 1 01:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f40e076454514f841eeb0b1d270abf80c96deaeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:db:06:fa:95:25:81:66:b5:53:11:71:61:0f:
e3:43:e6:68:6b:2d:aa:81:b4:d1:73:b2:7f:bd:a9:
0e:e1:cd:8a:54:36:18:ce:f8:63:af:20:f7:44:20:
8f:1c:70:c9:cf:38:e5:41:72:7a:65:7d:ae:69:77:
63:f5:7b:d8:f9:95:c2:ba:8c:91:ab:75:f8:ad:73:
dc:88:72:50:44:bd:17:a9:59:09:4f:99:77:ab:88:
76:56:83:ff:15:4d:c8:e2:bd:76:3b:d2:c9:50:0e:
fb:e4:d7:52:70:0b:13:54:2d:a7:04:8c:bb:b3:cf:
c1:50:44:22:22:2e:f6:d6:22:08:a1:a2:bc:c5:07:
d1:f7:eb:17:2a:2b:2e:18:59:b3:bd:64:5b:c4:2b:
f5:5f:a7:4d:f2:db:b5:fd:e5:0c:19:d6:0c:d3:40:
69:a9:96:07:e5:70:6f:6d:39:ed:93:7e:53:52:41:
f2:bc:7c:84:bd:d7:85:d3:1f:47:9e:93:e3:7c:10:
56:88:37:86:04:41:71:6f:af:4f:e9:a8:5e:1a:1b:
4e:b5:06:23:0b:c2:8c:eb:f2:52:ac:92:eb:70:e1:
7d:18:3b:fd:ac:5f:e7:83:6c:a7:6d:e8:c9:05:81:
1a:a6:8a:ac:8f:7b:10:7b:96:2a:1b:36:cb:5d:06:
df:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:0E:07:64:54:51:4F:84:1E:EB:0B:1D:27:0A:BF:80:C9:6D:EA:EB
X509v3 Authority Key Identifier:
keyid:8E:7B:69:92:7D:D2:1B:B9:E1:45:5F:A8:8E:D8:8E:D2:47:C7:18:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jntpkn3SG7nhRV-ojtiO0kfHGNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/9A4HZFRRT4Qe6wsdJwq_gMlt6us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/jntpkn3SG7nhRV-ojtiO0kfHGNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.240.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:af:e7:85:5f:cc:46:c3:0a:64:2f:4e:eb:b8:2e:33:46:83:
90:3b:1f:f8:1d:c8:e0:e6:77:6e:52:01:83:4b:04:58:b9:5d:
42:da:4c:1f:ec:e6:bd:68:ce:60:d7:01:7b:98:d3:0e:49:34:
47:7b:17:db:a9:f4:32:06:35:f2:50:61:6c:4c:21:18:31:03:
31:14:5a:71:7f:a5:f8:5b:70:d2:bf:f6:36:40:ef:58:04:29:
47:7d:ea:66:4c:58:ff:6b:9f:4c:5d:17:91:e5:ca:00:25:5f:
0c:7b:f7:1d:e9:90:34:58:4a:29:59:6e:f7:ed:f9:84:ef:43:
ab:78:7d:32:9a:5e:90:76:03:04:20:b9:59:89:ff:be:66:f2:
9f:8c:3b:68:6a:5d:e8:90:b4:ea:6d:8f:e8:cc:a2:3c:4d:db:
ba:f4:80:17:a4:c0:dc:7c:19:ed:77:01:ad:82:b6:8f:66:cd:
aa:0f:54:65:e5:34:fd:de:b9:cf:c3:43:74:29:a4:97:14:09:
2b:84:e3:40:ea:c1:ae:b3:90:df:f9:59:93:8c:91:b3:f1:06:
c6:4e:a7:2e:90:d2:80:c7:f5:66:5b:a0:f5:c2:10:35:c0:62:
36:b9:d8:9b:ca:98:b2:44:9d:08:15:7b:f4:98:8a:a8:a3:67:
a3:32:5d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:05 2024 by rpki-client on console-fra.rpki-client.org