Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/0de683-7316-40c2-b89c-b2c0dfa8a0e1/1/bxhPj_wFBz_4ydzqBvVfNMADN6k.roa
File: bxhPj_wFBz_4ydzqBvVfNMADN6k.roa (raw, json)
Hash identifier: a89aVxtXXtjDx1imSc1scCyg258FHK+O6pfuBqiIgm4=
Subject key identifier: 6F:18:4F:8F:FC:05:07:3F:F8:C9:DC:EA:06:F5:5F:34:C0:03:37:A9
Certificate issuer: /CN=c5a968edb72c15f5f9567fd34267b87485ef36d1
Certificate serial: 0184EEA5499A98C68740081C9A6971D58A1C
Authority key identifier: C5:A9:68:ED:B7:2C:15:F5:F9:56:7F:D3:42:67:B8:74:85:EF:36:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xalo7bcsFfX5Vn_TQme4dIXvNtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/0de683-7316-40c2-b89c-b2c0dfa8a0e1/1/bxhPj_wFBz_4ydzqBvVfNMADN6k.roa
Signing time: Wed 07 Dec 2022 22:12:00 +0000
ROA not before: Wed 07 Dec 2022 22:12:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12941
IP address blocks: 185.101.184.0/22 maxlen: 22
213.135.0.0/19 maxlen: 19
185.101.132.0/22 maxlen: 24
2a02:430::/32 maxlen: 32
2a06:1e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ee:a5:49:9a:98:c6:87:40:08:1c:9a:69:71:d5:8a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a968edb72c15f5f9567fd34267b87485ef36d1
Validity
Not Before: Dec 7 22:12:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f184f8ffc05073ff8c9dcea06f55f34c00337a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:34:61:02:c4:f9:1f:92:f9:e3:6a:e1:cc:55:
76:35:4e:94:8d:6a:1c:96:39:6a:0b:97:0c:e4:7f:
9a:d0:85:80:0d:de:4c:d3:05:ce:ba:ba:42:7a:21:
cb:cd:a8:77:b6:38:f9:40:de:8d:e2:2a:6d:4b:5c:
6f:f7:c4:41:d6:ab:18:b0:36:08:4b:36:65:d9:22:
2f:dc:4f:28:46:17:e3:83:39:65:bb:84:de:82:03:
28:0c:a7:8d:44:33:ad:0d:2d:17:ef:3b:3e:9b:58:
8e:6b:ce:22:6d:06:c6:67:72:cb:e6:dd:96:ab:7f:
50:e4:2d:4a:c4:d5:99:ea:4f:a1:31:fd:00:f3:95:
5a:25:2e:9a:3e:99:ac:b3:a8:49:8b:bc:61:e2:11:
7f:c2:a4:a5:d3:6f:0c:0e:a9:df:7a:f1:b3:3f:60:
eb:5a:bc:3e:d3:2b:29:d2:56:43:0f:70:8a:e0:0a:
c1:a7:2b:4e:58:76:f0:ff:28:9d:b2:f1:06:a0:0e:
5a:c3:cb:10:05:ac:53:9b:b9:39:be:7a:2b:7e:31:
d5:58:46:9e:5d:a9:af:54:73:0e:89:cb:0d:0d:c9:
10:fc:a5:00:53:f0:02:47:c1:ab:cb:6e:0f:5b:45:
37:49:56:1e:5f:a8:cb:ac:06:9e:c3:13:3d:b3:32:
1f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:18:4F:8F:FC:05:07:3F:F8:C9:DC:EA:06:F5:5F:34:C0:03:37:A9
X509v3 Authority Key Identifier:
keyid:C5:A9:68:ED:B7:2C:15:F5:F9:56:7F:D3:42:67:B8:74:85:EF:36:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xalo7bcsFfX5Vn_TQme4dIXvNtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/0de683-7316-40c2-b89c-b2c0dfa8a0e1/1/bxhPj_wFBz_4ydzqBvVfNMADN6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/0de683-7316-40c2-b89c-b2c0dfa8a0e1/1/xalo7bcsFfX5Vn_TQme4dIXvNtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.132.0/22
185.101.184.0/22
213.135.0.0/19
IPv6:
2a02:430::/32
2a06:1e40::/29
Signature Algorithm: sha256WithRSAEncryption
2e:4d:39:7b:fd:91:3c:55:07:b1:49:66:c0:69:f8:2f:c0:61:
fe:8e:28:a8:2f:d8:cc:e1:c5:b5:e6:a7:be:30:bd:83:3a:db:
78:69:c1:44:c5:ab:c3:e4:c9:d9:7a:da:60:bd:b0:51:1c:e0:
c1:9a:2d:19:f6:28:08:be:e3:ef:04:30:85:7b:18:f5:51:6e:
c3:4d:ab:2d:bf:e0:0a:9a:cf:67:0a:08:ee:52:bf:de:c6:69:
3f:25:2b:79:ca:c1:63:5b:78:88:16:b9:69:35:eb:ee:90:7f:
a5:49:db:64:a9:5b:ab:e2:e0:e0:f5:9e:65:11:79:54:6c:44:
1b:3f:d5:c8:4f:7f:01:54:01:53:c8:38:42:64:e3:74:ff:98:
fc:93:f6:00:de:7e:d6:48:d2:33:58:19:d6:5f:1f:dc:77:a8:
35:2b:39:14:d9:09:69:33:c4:8d:9a:00:76:3e:22:88:c7:04:
9a:d3:f7:dc:6c:01:45:01:dc:33:69:2c:ed:5f:94:35:a3:cb:
f9:eb:9f:a4:0f:09:c6:3e:ce:4b:6b:d9:ea:1f:42:5f:42:02:
4c:d0:d3:39:17:27:48:62:28:e7:83:dd:78:cb:c2:8d:5f:73:
2b:3d:bd:cf:c5:87:e7:77:5e:9d:0d:fb:40:71:96:01:af:37:
8a:6a:1f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:46 2024 by rpki-client on console-ams.rpki-client.org