Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/Iqe0Jl3jaLRSr-9EJzwCICh24jI.roa
File: Iqe0Jl3jaLRSr-9EJzwCICh24jI.roa (raw, json)
Hash identifier: +6NUxyhZXE4jvtxfyAe6o23YXqM8HgoXnv3J5TTi6rA=
Subject key identifier: 22:A7:B4:26:5D:E3:68:B4:52:AF:EF:44:27:3C:02:20:28:76:E2:32
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0439064D
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/Iqe0Jl3jaLRSr-9EJzwCICh24jI.roa
Signing time: Thu 12 May 2022 14:37:03 +0000
ROA not before: Thu 12 May 2022 14:37:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62005
IP address blocks: 185.123.53.0/24 maxlen: 24
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70846029 (0x439064d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: May 12 14:37:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22a7b4265de368b452afef44273c02202876e232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:ec:f0:af:41:26:65:c7:ee:22:da:bc:ab:11:
42:78:4a:7a:49:62:20:7b:a6:85:98:65:90:b2:45:
f1:66:b0:f3:59:ce:22:32:31:cb:46:46:4e:6e:9a:
92:83:cb:54:ae:4e:98:ac:82:4d:b1:a0:af:85:43:
89:33:e4:54:da:61:3e:70:4b:99:1d:13:63:89:7f:
46:52:bf:ab:d8:d4:c9:c5:ca:92:ee:b6:88:c2:c8:
b9:f8:cb:10:81:22:48:83:b9:5a:b1:17:48:22:63:
cd:6c:22:6e:e7:cf:0e:1c:80:78:6a:65:f9:95:2a:
31:ee:ab:c3:08:cb:ca:eb:14:37:07:70:00:00:12:
77:ae:db:25:3f:85:09:1d:e7:4b:87:81:42:60:e1:
73:97:b1:1f:f5:24:17:f5:09:00:10:71:2a:7c:90:
e7:a4:d6:5c:63:1d:b2:ad:cb:37:56:97:5f:f2:cd:
c4:28:33:b2:4e:b0:69:cb:82:af:b0:a5:98:f3:28:
25:a9:1c:75:ae:97:82:ef:54:47:47:97:41:31:08:
78:0e:3f:d0:f5:d8:40:80:f7:06:06:4b:ab:78:62:
4b:95:ee:14:e2:ee:26:04:1d:c1:b9:19:65:4f:91:
bf:33:0c:41:68:df:fb:9b:4a:ef:f1:48:d3:b9:05:
30:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A7:B4:26:5D:E3:68:B4:52:AF:EF:44:27:3C:02:20:28:76:E2:32
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/Iqe0Jl3jaLRSr-9EJzwCICh24jI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.53.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:3:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:5::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:10::/48
Signature Algorithm: sha256WithRSAEncryption
56:53:62:0a:f4:71:c4:e2:7b:2c:08:56:1d:52:a2:1b:29:53:
22:61:f2:bb:13:0c:9a:0d:59:78:66:51:62:30:94:1c:15:a2:
f9:ea:46:c5:b0:3f:49:85:18:ad:3d:33:8d:22:87:44:81:eb:
d4:59:4d:f9:72:33:56:06:5f:41:8a:dd:d0:72:48:1e:7c:64:
b5:b2:4d:d2:b8:32:71:c9:9a:fa:60:3e:b6:30:86:9b:b7:44:
76:e1:c5:55:91:c4:94:e5:b2:46:5f:b7:1d:fd:c1:5b:32:ca:
8f:31:f4:65:0f:5c:10:2a:65:ff:53:a7:18:be:44:0b:95:92:
5c:62:3f:7c:3e:68:bd:b0:61:ec:57:ae:76:22:2d:ec:95:f0:
93:f1:58:de:97:56:7a:6e:06:40:61:a2:0f:39:e4:81:33:4b:
c0:67:4e:95:c2:37:b5:4e:b1:46:b3:53:9b:cb:b4:ea:05:84:
2c:2a:20:64:b2:3c:2f:38:8a:51:e5:5c:2d:4e:9c:31:7c:a2:
d0:fd:e6:d5:33:f5:f7:8c:30:81:62:f6:fa:27:a9:40:29:c4:
e3:c3:66:b9:3f:01:60:aa:e9:b8:84:cc:d5:fd:08:cf:65:ba:
30:8a:40:01:76:20:98:be:02:a6:c6:41:21:05:2b:bd:6b:83:
bb:19:2a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:13 2024 by rpki-client on console-ams.rpki-client.org