Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/c0qEkR1h_HStyY1jJjIAPMPqS94.roa
File: c0qEkR1h_HStyY1jJjIAPMPqS94.roa (raw, json)
Hash identifier: rnUbkf3UXYU2XZMqqAaM9IttFwjISkykGlAG5JefNsY=
Subject key identifier: 73:4A:84:91:1D:61:FC:74:AD:C9:8D:63:26:32:00:3C:C3:EA:4B:DE
Certificate issuer: /CN=996a5f948435acb112a66e2563792263ec8b657e
Certificate serial: 10132578
Authority key identifier: 99:6A:5F:94:84:35:AC:B1:12:A6:6E:25:63:79:22:63:EC:8B:65:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWpflIQ1rLESpm4lY3kiY-yLZX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/c0qEkR1h_HStyY1jJjIAPMPqS94.roa
Signing time: Sat 01 Jan 2022 10:58:11 +0000
ROA not before: Sat 01 Jan 2022 10:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203616
IP address blocks: 185.129.80.0/24 maxlen: 24
185.129.80.0/23 maxlen: 23
185.129.83.0/24 maxlen: 24
185.129.82.0/23 maxlen: 23
185.129.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 269690232 (0x10132578)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996a5f948435acb112a66e2563792263ec8b657e
Validity
Not Before: Jan 1 10:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=734a84911d61fc74adc98d632632003cc3ea4bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7c:e7:ca:41:8f:13:59:1c:ad:2a:05:d7:d7:
e4:40:ff:76:c9:fb:22:d0:82:9b:98:1f:d8:bc:28:
88:13:a0:d5:f3:75:f8:98:45:78:b7:5b:6b:39:86:
75:d2:05:2c:05:b2:d7:11:62:48:47:6b:8a:e8:0c:
2c:de:4d:9b:7d:e6:79:1a:1d:43:ed:94:c9:51:de:
8f:2b:24:83:ee:63:d6:64:42:9a:f7:64:6f:50:9f:
79:b0:f2:f7:9e:04:21:66:55:05:f8:ad:d3:61:df:
b3:12:d0:71:f9:ce:10:7a:8f:8b:fc:2c:46:55:01:
a0:c1:3c:7a:e6:6b:22:b9:dc:b8:0b:3e:a3:11:5f:
ec:d7:99:f3:34:fe:6f:02:29:ba:23:c2:76:57:c1:
fc:7a:98:49:ac:fe:2a:66:11:c5:96:f2:22:54:ad:
fb:95:10:87:bb:87:3f:6f:bb:d3:b5:c9:be:25:1d:
b0:5b:d5:45:77:9d:06:f6:e5:93:97:2d:3d:33:43:
1a:ee:5b:a0:9d:e9:37:fe:9c:52:ec:c8:81:0a:65:
37:04:6b:68:a5:d9:04:7e:f5:dd:ee:83:d7:66:5e:
98:06:9b:c9:44:9f:83:f3:27:21:f5:31:82:89:20:
ee:3e:97:89:26:6a:17:7a:b9:72:54:95:a3:6c:35:
b4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4A:84:91:1D:61:FC:74:AD:C9:8D:63:26:32:00:3C:C3:EA:4B:DE
X509v3 Authority Key Identifier:
keyid:99:6A:5F:94:84:35:AC:B1:12:A6:6E:25:63:79:22:63:EC:8B:65:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWpflIQ1rLESpm4lY3kiY-yLZX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/c0qEkR1h_HStyY1jJjIAPMPqS94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/eb0fea-b0db-4886-ba0d-67c796aa97e9/1/mWpflIQ1rLESpm4lY3kiY-yLZX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.80.0/22
Signature Algorithm: sha256WithRSAEncryption
98:ee:ea:cd:50:60:b6:7b:8d:f6:5e:9c:dd:96:89:1d:19:0c:
97:d1:0d:3b:16:6f:c9:9a:76:b3:99:87:cb:ec:3f:cc:d0:1f:
68:e2:24:2c:18:cc:f7:db:a9:99:6d:57:ab:02:44:36:5c:88:
c4:f5:9e:e5:17:f9:56:9c:a6:2e:06:8b:50:f0:2b:bc:f2:5d:
f5:eb:c0:3d:8f:02:63:16:81:7e:bb:0d:de:51:bc:54:24:90:
b3:39:fe:d8:5d:b3:8b:f9:e8:15:65:39:32:12:c0:fc:12:5d:
58:1a:c9:ce:69:1a:1c:7e:2f:5f:49:44:a8:d8:1c:7a:5e:d1:
28:95:f1:df:f1:58:f9:76:42:42:a4:4b:f9:57:3f:ca:1b:fa:
8e:4e:bf:ba:ad:b8:aa:f5:2f:6c:09:82:0f:d1:7d:a2:96:29:
98:3f:ed:7b:af:ad:cb:09:ec:c5:4a:38:d5:fb:45:4e:63:7a:
78:42:da:39:8a:e6:58:9f:4d:db:e2:53:ca:84:2f:ea:3f:2c:
66:2d:00:38:8c:94:81:7d:dc:d4:59:f6:b0:eb:2b:ea:ca:4a:
01:67:8b:58:14:0a:76:e1:8f:b5:55:a5:db:27:1a:b8:9a:6f:
11:3c:40:4f:03:f7:5b:6f:ad:19:43:71:69:84:f6:b6:ae:48:
0e:00:ce:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:59 2024 by rpki-client on console-fra.rpki-client.org