Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/b34uz3xqiVZ2BYrLmtfMdhHKRXc.roa
File: b34uz3xqiVZ2BYrLmtfMdhHKRXc.roa (raw, json)
Hash identifier: 0fHNwdbVz5Sr1/XzJ+pt9wRqMAhGvs6OYAEnHhSfzF0=
Subject key identifier: 6F:7E:2E:CF:7C:6A:89:56:76:05:8A:CB:9A:D7:CC:76:11:CA:45:77
Certificate issuer: /CN=126c660b30f5692b2b16e289b24901c518fda520
Certificate serial: 085CDB72
Authority key identifier: 12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/b34uz3xqiVZ2BYrLmtfMdhHKRXc.roa
Signing time: Wed 29 Jun 2022 08:34:02 +0000
ROA not before: Wed 29 Jun 2022 08:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 192.144.52.0/22 maxlen: 24
193.187.168.0/22 maxlen: 24
193.9.36.0/22 maxlen: 24
185.161.252.0/22 maxlen: 24
193.9.40.0/22 maxlen: 24
185.220.28.0/22 maxlen: 24
45.83.112.0/22 maxlen: 24
185.181.56.0/22 maxlen: 24
80.254.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140303218 (0x85cdb72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126c660b30f5692b2b16e289b24901c518fda520
Validity
Not Before: Jun 29 08:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f7e2ecf7c6a895676058acb9ad7cc7611ca4577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:38:29:25:fa:9e:3e:55:27:69:fc:b4:7b:f4:
9f:76:aa:88:8d:0c:c9:4a:a9:d6:cd:fb:d3:f5:aa:
97:96:3e:12:de:03:c1:31:4d:32:60:ad:62:b6:6a:
08:39:35:6c:58:8b:0a:cc:6e:e2:4d:d0:96:de:54:
5b:ba:aa:3f:47:bc:26:bd:d8:19:cd:6d:f8:fa:bb:
0b:ed:5b:b9:a6:40:1c:2e:03:fa:4b:da:57:14:1f:
d3:8e:56:1e:73:7b:d8:9f:f9:07:66:9e:5e:09:a7:
04:27:44:9a:06:13:2f:aa:88:51:4f:38:bb:2c:89:
a2:a0:87:0f:83:65:d9:90:68:ae:59:24:89:2f:bc:
4d:d7:47:cc:de:48:76:a2:7d:d0:f2:73:1a:0b:a4:
1d:74:2b:98:88:cd:c0:a5:a5:36:e7:80:4b:4e:00:
44:f8:4d:6c:41:80:4d:47:64:97:5d:4b:93:da:32:
01:ab:d3:68:3d:1f:7c:e9:bc:74:31:2c:0a:46:9b:
38:12:09:cc:0d:27:cf:57:29:a8:9a:12:2b:11:81:
6d:ba:ab:a8:7b:e4:ee:03:1b:5e:dc:59:76:3d:7f:
71:9c:88:90:0a:06:82:67:33:d2:00:85:e6:36:5a:
ea:05:1e:84:92:8f:eb:e4:58:c4:14:08:65:f1:5b:
1d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7E:2E:CF:7C:6A:89:56:76:05:8A:CB:9A:D7:CC:76:11:CA:45:77
X509v3 Authority Key Identifier:
keyid:12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/b34uz3xqiVZ2BYrLmtfMdhHKRXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.112.0/22
80.254.236.0/22
185.161.252.0/22
185.181.56.0/22
185.220.28.0/22
192.144.52.0/22
193.9.36.0-193.9.43.255
193.187.168.0/22
Signature Algorithm: sha256WithRSAEncryption
11:96:a6:76:1e:3e:8b:34:72:e6:00:b5:41:4b:a3:98:ec:04:
4f:6f:cc:51:b4:cc:ba:32:6a:dd:a6:66:c2:f2:f5:50:f8:ba:
a7:35:6f:8c:e9:ea:69:ec:a6:a4:1d:fc:92:dd:0e:c7:7a:48:
2e:25:98:4a:e4:fa:54:a3:36:ad:8b:75:61:99:f1:a7:86:f2:
31:7c:6f:9b:ca:55:23:5b:9b:ff:99:92:e5:b9:b7:be:f4:15:
27:f7:77:b3:4a:c2:91:1b:7a:a9:35:48:7d:63:96:9d:69:f2:
7d:61:ee:15:0c:d2:b8:54:d9:dd:1d:2a:6e:c0:9a:96:2b:dc:
6e:f6:98:17:4f:76:47:2a:ed:d8:d0:06:3f:69:52:68:be:c2:
b8:85:fc:b7:af:cb:64:7e:53:fa:b5:63:28:df:59:df:ed:d2:
3c:c9:10:33:b6:24:35:4f:15:87:9b:0d:07:8d:5e:26:a0:a8:
6d:c0:4e:14:06:35:51:61:45:ba:40:c8:ca:c8:0a:d5:77:d6:
69:de:27:8f:09:78:c0:b9:46:ef:c5:48:9e:5c:3a:02:09:9d:
83:46:be:f2:a6:3a:a0:16:6b:42:d3:34:75:48:05:cd:36:a6:
68:28:e9:86:bf:3b:2e:db:47:e6:04:53:e4:cb:37:12:d7:8f:
f1:ca:c7:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:34 2024 by rpki-client on console-ams.rpki-client.org