Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/LS9jedGwk1T8I_8aaXQAn9aX9Y4.roa
File: LS9jedGwk1T8I_8aaXQAn9aX9Y4.roa (raw, json)
Hash identifier: 7xn/gHz31Cye6xIGc6/tPDeNXnQdCS8tE5bAIFF4O6c=
Subject key identifier: 2D:2F:63:79:D1:B0:93:54:FC:23:FF:1A:69:74:00:9F:D6:97:F5:8E
Certificate issuer: /CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f
Certificate serial: 0223D676
Authority key identifier: D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/LS9jedGwk1T8I_8aaXQAn9aX9Y4.roa
Signing time: Sat 01 Jan 2022 08:04:37 +0000
ROA not before: Sat 01 Jan 2022 08:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51782
IP address blocks: 185.66.204.0/22 maxlen: 24
149.255.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35903094 (0x223d676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f
Validity
Not Before: Jan 1 08:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d2f6379d1b09354fc23ff1a6974009fd697f58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:23:b8:4c:8f:f6:a2:16:63:69:40:22:04:b5:
bf:31:49:e3:be:4e:f1:cd:1a:aa:5c:a6:7b:c5:1a:
7a:2d:d4:db:04:88:52:bd:c9:1c:07:bb:24:73:42:
27:57:c4:bb:18:7f:91:89:7e:2e:0d:24:78:c2:41:
ba:f9:0c:da:97:28:89:c0:59:01:59:0d:90:67:74:
ae:67:51:c3:63:21:59:ba:71:1d:5f:53:6e:c1:50:
c1:69:a0:92:ba:10:4f:e3:47:74:e1:19:21:9c:09:
e7:7a:1b:54:86:8a:6a:ed:64:21:96:ec:ec:a0:9c:
eb:1a:5a:de:68:53:68:e1:36:96:19:bb:aa:3c:8d:
24:60:d2:5a:a1:03:dc:77:95:1d:a2:07:d0:39:0b:
13:a2:47:1d:90:b7:25:d7:39:ff:e6:12:e4:aa:7d:
17:cc:2e:6e:01:d0:11:90:27:6c:4b:3e:c0:65:60:
d8:7c:47:b5:cf:63:5b:31:a9:c0:e4:c3:1e:d6:d8:
84:2c:75:e3:d4:64:52:d6:a1:b0:ab:fe:69:02:b5:
73:45:ec:7a:ac:c0:bb:d4:ed:64:58:b3:ed:f4:55:
fd:44:2f:bb:46:51:d3:df:2a:9f:f0:c6:a7:16:79:
5d:2e:f3:65:34:3e:07:95:38:40:70:ca:4d:60:e5:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:2F:63:79:D1:B0:93:54:FC:23:FF:1A:69:74:00:9F:D6:97:F5:8E
X509v3 Authority Key Identifier:
keyid:D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/LS9jedGwk1T8I_8aaXQAn9aX9Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.255.168.0/21
185.66.204.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:e8:bc:85:ba:09:2a:92:69:7b:90:ba:ac:cd:e0:a7:94:ce:
66:2d:6c:9d:50:dc:e5:b5:6c:e5:1b:ec:15:9e:3f:13:cd:41:
83:0d:22:47:47:36:a0:1a:80:f1:8d:dd:b5:2c:8e:a6:bb:a2:
e8:a8:e3:2c:1c:0d:26:e9:4d:80:78:26:f5:ec:05:49:e4:f2:
e2:91:92:f9:62:3c:16:9e:31:63:f1:fa:ae:fd:97:da:35:d9:
99:e3:aa:17:4a:86:83:9e:21:f8:18:ed:96:3f:74:58:f5:8b:
0f:26:0c:5a:e4:69:88:8e:c9:24:0d:6d:0e:71:be:46:7a:25:
06:29:7e:b7:18:42:4f:25:bf:ef:da:95:0f:5a:ab:e5:fc:18:
c3:d6:dd:7f:b6:aa:90:7a:5e:33:cc:4b:ec:dc:87:9b:c2:9d:
92:e1:b4:34:f9:41:cb:03:0e:78:76:35:d6:50:0a:f5:96:4c:
85:85:c6:53:52:15:81:2c:a2:88:c7:92:05:1f:8b:6b:d4:4c:
b9:54:4d:e6:4d:a6:57:b2:50:df:f2:92:e4:77:31:5f:9b:d3:
5f:f1:26:eb:89:54:d6:54:24:6c:59:00:3d:30:5f:76:cd:46:
a3:b8:6c:32:10:7a:c1:8e:50:31:3a:dc:24:1a:56:30:76:a9:
30:b1:83:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:18 2024 by rpki-client on console-ams.rpki-client.org