Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/6e4544-e65f-4bf0-94c8-3fc96594b4c5/1/Lm1yYVeWRedSEOsQBOFtJAoJz6E.roa
File: Lm1yYVeWRedSEOsQBOFtJAoJz6E.roa (raw, json)
Hash identifier: JxUd073+I5TakOjvNBOmP7oyIuohFdWb9EHDn1RI2GU=
Subject key identifier: 2E:6D:72:61:57:96:45:E7:52:10:EB:10:04:E1:6D:24:0A:09:CF:A1
Certificate issuer: /CN=2b7ab6569de78d3c4a082fde6dd1d6a3f0d509c2
Certificate serial: 02D051
Authority key identifier: 2B:7A:B6:56:9D:E7:8D:3C:4A:08:2F:DE:6D:D1:D6:A3:F0:D5:09:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K3q2Vp3njTxKCC_ebdHWo_DVCcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/6e4544-e65f-4bf0-94c8-3fc96594b4c5/1/Lm1yYVeWRedSEOsQBOFtJAoJz6E.roa
Signing time: Thu 17 Mar 2022 09:47:24 +0000
ROA not before: Thu 17 Mar 2022 09:47:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201015
IP address blocks: 185.111.66.0/24 maxlen: 24
185.111.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184401 (0x2d051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b7ab6569de78d3c4a082fde6dd1d6a3f0d509c2
Validity
Not Before: Mar 17 09:47:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e6d7261579645e75210eb1004e16d240a09cfa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d6:b8:fb:79:0e:9e:a1:be:f9:6c:5f:c8:fd:
16:ba:bb:fe:d1:75:df:02:0f:44:e2:d7:e7:39:02:
6c:7f:65:31:e6:1c:7c:73:06:61:f3:bf:7a:ea:a9:
56:6f:8c:35:96:22:8a:ae:33:2b:e5:07:f6:19:36:
5b:06:49:5e:27:d0:cb:9d:bf:35:39:d2:87:2a:31:
64:d2:49:4c:96:0f:06:28:af:9a:d9:57:13:cc:bb:
b1:ad:30:5c:8e:cd:1a:1c:1a:0b:a7:56:e6:b2:82:
5a:1b:a7:33:f9:67:5a:cf:17:df:a5:c3:44:f2:65:
c8:8e:65:82:ae:c8:d3:53:50:54:58:f3:33:2c:c5:
d6:36:fd:83:3a:a8:f4:53:cc:d6:3e:ea:25:16:42:
39:2f:93:54:2a:bf:56:c0:ee:d0:bf:54:21:e0:4f:
0c:c1:18:ce:14:f7:8e:9f:03:3f:be:f0:6a:2a:27:
d6:8c:c7:29:a4:9d:6d:a9:f8:4b:16:fd:eb:52:f4:
75:30:ee:73:b1:af:a4:4a:49:06:52:00:b9:79:58:
dc:f7:92:26:91:17:23:7e:90:f5:19:84:75:8b:aa:
d0:3e:9a:53:5a:31:97:75:b8:55:11:51:af:7e:ac:
d4:5e:22:8c:ab:0b:9b:da:91:21:22:82:b3:87:77:
68:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6D:72:61:57:96:45:E7:52:10:EB:10:04:E1:6D:24:0A:09:CF:A1
X509v3 Authority Key Identifier:
keyid:2B:7A:B6:56:9D:E7:8D:3C:4A:08:2F:DE:6D:D1:D6:A3:F0:D5:09:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K3q2Vp3njTxKCC_ebdHWo_DVCcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6e4544-e65f-4bf0-94c8-3fc96594b4c5/1/Lm1yYVeWRedSEOsQBOFtJAoJz6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6e4544-e65f-4bf0-94c8-3fc96594b4c5/1/K3q2Vp3njTxKCC_ebdHWo_DVCcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.66.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:cd:23:de:d3:e5:7d:42:5a:a9:28:49:97:ff:1c:dd:2c:78:
e2:8c:dd:66:80:ac:d9:fd:9d:e2:f4:09:44:0c:39:d2:ac:c2:
b4:14:10:03:53:12:5c:05:75:d1:62:eb:b0:5e:0e:9c:2e:b3:
64:0d:99:56:8f:af:ee:b6:61:43:44:be:3d:4a:36:1d:57:c1:
56:be:b7:dc:f5:67:ac:f7:6e:70:15:17:52:81:79:28:c5:3a:
26:b9:2d:29:03:2e:65:2b:26:5a:4a:53:2b:25:b8:c9:f1:e6:
71:f1:e4:50:31:c9:81:96:8d:ee:6f:ae:bc:6a:77:67:70:4d:
54:a9:78:4d:ca:9f:78:54:11:a5:d8:2a:92:a2:92:e5:3e:5c:
a7:e9:6b:c7:d3:d8:ef:eb:6c:4c:aa:25:60:b8:a6:10:5b:aa:
86:57:b6:33:ac:21:dc:e9:0e:98:74:93:53:21:46:74:f1:cf:
5e:b2:9c:89:38:36:17:b2:b6:b6:4f:86:44:8c:69:bf:36:99:
ab:11:a7:08:59:91:02:18:4f:35:8f:f6:56:11:f2:8d:d6:01:
35:48:4c:ea:d7:52:ab:75:33:93:90:92:9e:6c:6e:a0:94:5e:
03:19:bb:b6:bd:24:e7:1d:43:2e:14:3a:8b:aa:51:89:c9:3e:
e8:a6:a6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:06 2024 by rpki-client on console-fra.rpki-client.org