Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/kf6Dp6f0N0M0VdDhdqUAivX5ihk.roa
File: kf6Dp6f0N0M0VdDhdqUAivX5ihk.roa (raw, json)
Hash identifier: xx1yndFZ5So4eWGCVMzEvstyUta2x/xn2Wzh4wBmhiI=
Subject key identifier: 91:FE:83:A7:A7:F4:37:43:34:55:D0:E1:76:A5:00:8A:F5:F9:8A:19
Certificate issuer: /CN=4776afb74fad5baf0a6180b49510d8b8497df8d3
Certificate serial: 1B5AC8BA
Authority key identifier: 47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/kf6Dp6f0N0M0VdDhdqUAivX5ihk.roa
Signing time: Sat 01 Jan 2022 08:54:19 +0000
ROA not before: Sat 01 Jan 2022 08:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42044
IP address blocks: 185.24.65.0/24 maxlen: 24
185.24.66.0/24 maxlen: 24
193.105.170.0/24 maxlen: 24
212.18.250.0/24 maxlen: 24
2a04:2b00:212::/48 maxlen: 48
2a04:2b00:100::/48 maxlen: 48
2a04:2b00:200::/48 maxlen: 48
2a04:2b02::/32 maxlen: 32
2001:67c:2630::/48 maxlen: 48
2a04:2b01::/32 maxlen: 32
2a04:2b00:6374::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458934458 (0x1b5ac8ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4776afb74fad5baf0a6180b49510d8b8497df8d3
Validity
Not Before: Jan 1 08:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91fe83a7a7f437433455d0e176a5008af5f98a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8f:49:f3:f8:f8:3f:29:2f:3f:c1:4a:0d:2c:
0f:6e:40:61:41:fd:ac:68:0a:14:71:9e:97:97:49:
ea:9f:a4:28:90:a5:cf:4f:d1:54:6a:c0:63:a0:fd:
c1:b7:40:2c:c1:37:33:14:0b:83:0e:3a:4d:a2:4f:
0b:b1:e8:87:43:2b:0c:fa:ca:1c:8f:a4:1f:03:0c:
1f:56:4a:11:34:d6:ed:8c:a9:9f:8d:48:66:85:4b:
e8:7c:fa:75:04:86:6f:52:8d:cb:59:34:c7:6f:13:
bf:c8:1b:2f:54:fb:92:12:15:6c:f5:b3:08:1d:cc:
d1:8b:89:ed:44:e1:e1:c5:4a:f5:52:74:02:66:42:
c7:15:5b:d1:9a:e3:eb:ce:f1:02:89:cb:22:ec:82:
44:f5:a2:b6:34:ca:e9:79:61:3a:c9:52:76:e0:09:
05:0f:a1:86:bb:a0:ed:4c:66:8e:d2:1c:5e:af:32:
68:ac:ae:0f:cc:28:fc:37:3b:b0:70:17:04:54:6b:
6b:44:75:fc:14:5d:f5:38:b2:fc:0b:10:40:70:1a:
07:1b:d9:ed:45:01:88:b3:a3:c4:11:0d:b9:ec:fd:
d6:3a:e7:00:62:f2:6d:6d:19:b1:33:f5:26:73:fc:
6b:74:b1:28:fc:33:80:11:7a:a5:cd:7d:38:96:d5:
9d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:FE:83:A7:A7:F4:37:43:34:55:D0:E1:76:A5:00:8A:F5:F9:8A:19
X509v3 Authority Key Identifier:
keyid:47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/kf6Dp6f0N0M0VdDhdqUAivX5ihk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.65.0-185.24.66.255
193.105.170.0/24
212.18.250.0/24
IPv6:
2001:67c:2630::/48
2a04:2b00:100::/48
2a04:2b00:200::/48
2a04:2b00:212::/48
2a04:2b00:6374::/48
2a04:2b01::-2a04:2b02:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5a:e5:1e:d5:72:53:50:ec:bb:ce:43:ab:6b:05:99:8e:c0:76:
39:ff:e9:9a:0f:f1:5a:56:92:85:e1:d5:09:52:4b:d1:17:48:
e0:e8:a3:79:a9:f6:bd:bc:0c:95:b2:b2:05:e2:b8:3a:79:1d:
56:a8:c4:ff:99:f0:47:7d:46:09:1d:92:aa:c2:ba:a4:e5:fe:
24:c3:14:53:39:e6:4d:e6:e8:d5:39:2c:4c:ff:c7:4f:ba:c0:
69:45:03:b9:ad:20:10:6b:be:f1:5c:ee:b8:25:b4:bf:f6:58:
f8:be:a8:26:81:ef:33:ff:fd:f7:7b:fb:bd:a4:37:83:00:66:
d2:f9:67:da:d2:95:bc:fe:59:3e:d8:78:a5:38:26:f5:26:6d:
62:9e:52:ab:11:65:17:cd:4a:e7:0d:a1:09:bf:92:b6:53:ba:
c8:64:f7:a6:75:6e:ad:3c:3f:93:4b:2b:ae:70:0b:de:7a:12:
b6:4c:35:c8:05:df:63:94:47:fa:57:21:3c:ee:00:d8:f0:88:
75:ac:b8:b0:90:7c:08:90:3d:18:5d:f3:c6:8c:5e:29:c1:2c:
d9:f1:7a:60:d9:fc:f0:12:90:11:7f:ed:34:2f:49:92:61:c4:
de:8c:3d:0b:7e:90:3f:60:2c:4a:ec:2b:16:e4:10:af:2b:d1:
d7:9a:29:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:32 2024 by rpki-client on console-ams.rpki-client.org