Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/4M_kt9-FFBwxt5PxpUtjz7J5w9k.roa
File: 4M_kt9-FFBwxt5PxpUtjz7J5w9k.roa (raw, json)
Hash identifier: dpzlPBJ8E372E5mjzHsay5YpoI7ynoXPjXh4A3L9XF8=
Subject key identifier: E0:CF:E4:B7:DF:85:14:1C:31:B7:93:F1:A5:4B:63:CF:B2:79:C3:D9
Certificate issuer: /CN=7d014c9a158218eed684ae2fc06d58e5cf671478
Certificate serial: 4326CC
Authority key identifier: 7D:01:4C:9A:15:82:18:EE:D6:84:AE:2F:C0:6D:58:E5:CF:67:14:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/4M_kt9-FFBwxt5PxpUtjz7J5w9k.roa
Signing time: Sat 01 Jan 2022 00:53:57 +0000
ROA not before: Sat 01 Jan 2022 00:53:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205424
IP address blocks: 185.218.246.0/24 maxlen: 24
185.218.245.0/24 maxlen: 24
185.218.244.0/24 maxlen: 24
185.218.247.0/24 maxlen: 24
185.80.23.0/24 maxlen: 24
185.80.22.0/24 maxlen: 24
185.80.21.0/24 maxlen: 24
185.80.20.0/24 maxlen: 24
185.51.39.0/24 maxlen: 24
185.82.253.0/24 maxlen: 24
185.82.252.0/24 maxlen: 24
185.82.255.0/24 maxlen: 24
185.82.254.0/24 maxlen: 24
185.51.38.0/24 maxlen: 24
185.51.37.0/24 maxlen: 24
185.51.36.0/24 maxlen: 24
2a0b:dac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4400844 (0x4326cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d014c9a158218eed684ae2fc06d58e5cf671478
Validity
Not Before: Jan 1 00:53:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0cfe4b7df85141c31b793f1a54b63cfb279c3d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d6:7a:db:13:27:45:4c:12:98:14:1b:61:11:
a2:7e:c8:b8:80:24:da:c6:96:06:e0:7f:fe:2e:94:
80:1c:fd:40:3a:1e:8a:89:0c:c9:72:08:90:69:a4:
55:40:de:6c:46:bd:c4:fd:d6:9d:fb:41:cb:26:cd:
97:0c:70:89:6f:d1:57:f7:51:9c:83:ef:ba:76:65:
e2:ca:e3:e1:0c:51:61:0d:f1:7e:4b:c0:e9:75:94:
10:5f:18:fe:23:f9:fb:c8:e9:b6:20:8c:fc:44:32:
0e:a5:f5:ea:b8:c6:2f:70:f0:b0:4b:a0:ed:8c:3f:
d4:b1:3f:33:44:5b:a5:29:3d:a9:f8:96:99:16:8a:
49:e7:de:0a:46:50:e4:02:2a:a7:5e:2f:1b:06:92:
de:bf:80:42:b7:57:c4:f9:12:07:06:20:da:da:86:
98:20:03:bd:40:df:f6:3b:3f:24:b9:fd:44:eb:36:
4c:ee:59:0e:60:57:e0:c2:c5:6f:a4:3e:45:1a:45:
ba:e4:20:3f:8f:01:93:b9:45:9a:e6:52:bf:f6:17:
ee:24:a6:8b:8f:07:03:a3:48:86:f3:6f:28:f5:cb:
90:48:48:c7:79:c7:bd:8d:d2:91:4d:8a:f0:91:b2:
d5:f3:e8:e0:2a:0a:85:20:b4:c5:85:b7:36:5c:e3:
e8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:CF:E4:B7:DF:85:14:1C:31:B7:93:F1:A5:4B:63:CF:B2:79:C3:D9
X509v3 Authority Key Identifier:
keyid:7D:01:4C:9A:15:82:18:EE:D6:84:AE:2F:C0:6D:58:E5:CF:67:14:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/4M_kt9-FFBwxt5PxpUtjz7J5w9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/787386-b33f-46db-9c3e-90eb2b8867b8/1/fQFMmhWCGO7WhK4vwG1Y5c9nFHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.36.0/22
185.80.20.0/22
185.82.252.0/22
185.218.244.0/22
IPv6:
2a0b:dac0::/29
Signature Algorithm: sha256WithRSAEncryption
76:7e:42:4e:0e:65:9f:67:f5:7c:bc:15:cd:13:76:d3:91:ef:
47:84:36:cc:30:67:e8:6e:7f:92:29:f5:ff:d9:d6:13:d7:91:
9c:c7:69:91:07:ed:04:05:0c:61:1f:37:41:a7:45:54:c6:46:
99:89:b2:20:a1:45:a2:d2:3f:df:44:b7:fd:ae:f0:44:e4:d3:
7d:b2:52:82:2a:88:ae:80:71:09:8c:ab:4f:d3:57:80:6f:30:
ce:e8:d1:4a:52:d1:ba:b6:d5:1f:88:0f:7f:38:0d:92:3a:21:
14:a1:e1:48:ff:bc:ef:88:ee:96:d9:ee:a4:57:57:33:c2:b1:
7e:f5:39:cd:f9:06:7e:5d:75:f4:77:eb:06:be:01:f1:75:c1:
ba:1c:32:a4:c0:e6:17:14:7e:fa:86:e0:2e:4f:7c:d7:a9:28:
c4:27:05:01:58:bf:fd:74:9e:d9:d4:0a:ae:3e:08:77:4f:17:
f8:a1:85:e3:d0:b1:36:ee:2f:92:fe:eb:34:8c:e9:ea:c4:bd:
86:72:79:72:58:40:ae:80:b4:9d:ce:b2:38:83:8e:7f:13:ed:
0c:a5:28:b4:01:35:6e:c1:25:67:80:61:e7:30:5a:a2:e6:2d:
fb:25:c5:b7:29:c5:98:c0:20:51:7c:22:4b:41:24:32:32:6b:
5e:7d:14:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:13 2024 by rpki-client on console-ams.rpki-client.org