Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/729fda-d852-4aca-9aff-6d1fa42d0b80/1/Ae4HqmIrqBY7itX3aUZl4PKs9tM.roa
File: Ae4HqmIrqBY7itX3aUZl4PKs9tM.roa (raw, json)
Hash identifier: 5CkZy+wBM1CC5kVUFqgxVCg+uNk6DciNZVtYNoCIQKw=
Subject key identifier: 01:EE:07:AA:62:2B:A8:16:3B:8A:D5:F7:69:46:65:E0:F2:AC:F6:D3
Certificate issuer: /CN=5c29cba2dacf0ef9fa22090032bb159a109140f0
Certificate serial: 0EABABF7
Authority key identifier: 5C:29:CB:A2:DA:CF:0E:F9:FA:22:09:00:32:BB:15:9A:10:91:40:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XCnLotrPDvn6IgkAMrsVmhCRQPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/729fda-d852-4aca-9aff-6d1fa42d0b80/1/Ae4HqmIrqBY7itX3aUZl4PKs9tM.roa
Signing time: Sat 01 Jan 2022 13:03:54 +0000
ROA not before: Sat 01 Jan 2022 13:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57292
IP address blocks: 185.130.79.0/24 maxlen: 24
185.130.77.0/24 maxlen: 24
185.130.78.0/24 maxlen: 24
185.130.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246131703 (0xeababf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c29cba2dacf0ef9fa22090032bb159a109140f0
Validity
Not Before: Jan 1 13:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01ee07aa622ba8163b8ad5f7694665e0f2acf6d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:39:fc:bf:f0:db:c6:ea:8c:d6:8a:de:d8:4b:
c4:f8:6d:6a:d5:99:39:1a:b0:1f:ff:f3:a6:89:b5:
08:46:a9:1c:88:35:e2:f9:a8:19:b3:0c:06:b3:57:
3d:6b:bc:7d:be:19:8c:9b:63:17:db:80:fa:d0:74:
47:d0:e8:5a:82:4b:70:1e:69:04:1d:1c:49:22:49:
0d:9a:a2:ee:e2:e6:fc:a9:73:f6:04:39:d2:52:bf:
6d:46:bf:6c:7c:98:f4:9c:51:15:f6:0c:4e:73:b9:
a4:d2:90:8f:f3:48:70:b9:e4:e3:44:25:41:3d:0f:
2a:72:50:71:c2:9d:26:6e:6e:54:db:04:2c:3e:d9:
72:6c:37:cf:44:e9:70:ac:1e:20:af:48:69:98:3d:
26:f5:c9:dd:19:1c:d2:78:77:f9:eb:ac:eb:1a:af:
fb:cc:58:87:a7:c6:19:ea:87:75:5b:bd:f4:30:9e:
f3:9e:61:ca:37:d1:9d:35:51:7e:74:0a:45:43:02:
f6:ad:fb:70:ec:92:4c:df:b1:85:00:6a:f9:38:6c:
a7:87:c6:2c:71:ae:b5:fa:70:96:b6:a3:58:48:44:
aa:6a:67:c1:3b:58:e3:6b:b7:30:1d:60:8b:91:6a:
ac:c6:3c:86:ee:c8:3d:6a:d1:7e:a4:2b:c9:8f:50:
6c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:EE:07:AA:62:2B:A8:16:3B:8A:D5:F7:69:46:65:E0:F2:AC:F6:D3
X509v3 Authority Key Identifier:
keyid:5C:29:CB:A2:DA:CF:0E:F9:FA:22:09:00:32:BB:15:9A:10:91:40:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XCnLotrPDvn6IgkAMrsVmhCRQPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/729fda-d852-4aca-9aff-6d1fa42d0b80/1/Ae4HqmIrqBY7itX3aUZl4PKs9tM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/729fda-d852-4aca-9aff-6d1fa42d0b80/1/XCnLotrPDvn6IgkAMrsVmhCRQPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.76.0/22
Signature Algorithm: sha256WithRSAEncryption
ec:7c:46:23:4d:06:50:45:67:d1:02:81:e6:54:e0:53:ce:d8:
b3:a8:c6:16:16:3c:c5:fd:74:2f:d6:1d:b7:4c:fa:a6:f3:91:
4e:f4:31:af:39:a4:0f:f6:54:0d:f8:4b:5b:7a:d7:80:82:92:
88:90:86:5e:90:af:5f:e3:24:2a:a7:ef:fd:f9:a2:11:30:00:
6d:9c:db:c1:59:73:b8:9c:e6:45:bf:e4:d2:48:86:52:85:fc:
0e:1e:18:1b:ad:d7:90:29:5a:e2:99:76:4d:50:e8:f5:30:32:
30:60:af:a4:11:2a:0e:99:c7:6b:1f:6b:5e:e2:3c:8c:2f:82:
b9:99:84:44:b6:2d:f3:4e:02:c5:30:ec:71:49:68:85:06:73:
f0:6b:4b:43:fc:a1:db:d5:5a:d6:57:9d:8b:30:2a:38:3d:0a:
3e:bf:73:b6:f7:d3:8c:67:73:dd:a7:f3:99:f3:f1:7c:eb:1f:
a7:5a:b5:9e:5e:bd:59:5e:dd:27:f1:8e:36:92:e6:5d:a2:7b:
79:b5:09:cc:b4:fc:65:16:5d:dc:cf:06:18:5a:a0:1c:e1:02:
93:f9:0b:61:de:df:e5:af:a1:1c:10:8d:88:5d:40:dd:a3:3a:
88:69:58:62:a3:07:e2:28:ed:3d:00:93:03:01:a4:e5:7e:0b:
bb:33:97:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:28 2024 by rpki-client on console-ams.rpki-client.org