Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/jfMNH_jUiKxSQe9Vt_IHxOlGols.roa
File: jfMNH_jUiKxSQe9Vt_IHxOlGols.roa (raw, json)
Hash identifier: F6VSPbbrLryFyQgqOrbtakMtzr0Peyiffyaurm4dJIA=
Subject key identifier: 8D:F3:0D:1F:F8:D4:88:AC:52:41:EF:55:B7:F2:07:C4:E9:46:A2:5B
Certificate issuer: /CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Certificate serial: 01846156F33FAF383AC94927D52A121AB598
Authority key identifier: 4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/jfMNH_jUiKxSQe9Vt_IHxOlGols.roa
Signing time: Thu 10 Nov 2022 11:39:59 +0000
ROA not before: Thu 10 Nov 2022 11:39:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206873
IP address blocks: 185.173.178.0/24 maxlen: 24
185.173.179.0/24 maxlen: 24
185.173.176.0/24 maxlen: 24
185.173.177.0/24 maxlen: 24
194.150.214.0/24 maxlen: 24
194.150.215.0/24 maxlen: 24
194.150.214.0/23 maxlen: 23
194.150.235.0/24 maxlen: 24
194.150.234.0/24 maxlen: 24
2a0b:6900:7::/48 maxlen: 48
2a0b:6903:fdb::/48 maxlen: 48
2a0b:6900:2::/48 maxlen: 48
2a0b:6903::/48 maxlen: 48
2a0b:6900:185d::/48 maxlen: 48
2a0b:6900::/48 maxlen: 48
2a0b:6900:1::/48 maxlen: 48
2a0b:6900:4::/48 maxlen: 48
2a0b:6900:daf::/48 maxlen: 48
2a0b:6900:5::/48 maxlen: 48
2a0b:6900:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:56:f3:3f:af:38:3a:c9:49:27:d5:2a:12:1a:b5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eef6aae6fba5c61a61739afcab55a62266e89ee
Validity
Not Before: Nov 10 11:39:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8df30d1ff8d488ac5241ef55b7f207c4e946a25b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c4:a9:17:4f:d2:e7:e7:84:ec:d4:dc:66:aa:
17:85:5f:b7:83:97:6b:b2:82:3a:a6:68:c4:10:d0:
c9:0e:e9:67:81:d0:d5:a1:5e:38:5d:46:d3:71:fa:
92:e9:5f:2e:74:76:78:74:12:ac:39:dd:da:84:a0:
5e:cd:29:b3:c2:6e:b1:79:62:4d:73:54:12:97:c3:
5c:3b:95:29:29:98:c3:32:e8:93:1d:b1:a3:e5:7f:
e2:9d:10:86:e4:12:22:10:42:f2:af:f7:f0:4e:21:
57:c4:85:1a:ef:73:cd:45:d2:c8:25:47:37:f2:b7:
81:29:26:c4:6a:24:64:f6:b2:96:e8:a9:2f:7b:e0:
06:14:5b:ed:04:d5:b8:02:6c:57:8d:77:b1:80:9e:
3c:9b:53:da:38:d9:d8:b7:dc:04:22:af:79:1e:1a:
ff:d7:a6:af:c9:49:3f:1a:47:be:5f:2d:44:73:2b:
a8:96:af:9c:4a:80:6b:41:a7:59:bb:ec:e8:9a:32:
8f:5e:89:32:f1:a7:63:69:b6:b1:91:2b:1d:58:af:
28:6e:0e:6f:b5:d0:67:ae:55:ea:23:fc:8a:7e:65:
30:0e:ee:df:90:cc:56:b1:de:c1:84:1d:a3:3d:33:
ac:df:e5:a9:ad:f9:08:37:6e:c6:8a:44:4f:59:28:
3c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F3:0D:1F:F8:D4:88:AC:52:41:EF:55:B7:F2:07:C4:E9:46:A2:5B
X509v3 Authority Key Identifier:
keyid:4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/jfMNH_jUiKxSQe9Vt_IHxOlGols.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.176.0/22
194.150.214.0/23
194.150.234.0/23
IPv6:
2a0b:6900::-2a0b:6900:5:ffff:ffff:ffff:ffff:ffff
2a0b:6900:7::/48
2a0b:6900:daf::/48
2a0b:6900:185d::/48
2a0b:6903::/48
2a0b:6903:fdb::/48
Signature Algorithm: sha256WithRSAEncryption
2c:0f:6c:2e:3f:e0:79:96:78:33:2c:b0:87:d4:46:f5:51:27:
59:d7:7f:aa:15:4a:d8:2c:13:ce:1e:9d:e6:54:2d:05:78:ab:
5d:cd:2d:61:19:a7:42:21:a8:21:92:28:4d:1a:f2:37:1d:3d:
d8:dd:a5:2f:3d:58:83:f1:56:97:ff:ba:8e:ff:54:0c:ce:60:
49:cc:f0:f1:31:28:4a:bf:35:89:1b:63:d1:f9:9c:d5:da:0a:
11:ac:83:b8:1e:96:7c:a9:42:73:e5:f6:d3:df:40:79:40:fd:
92:8b:5a:bd:80:8c:35:72:aa:d0:4e:17:14:d8:4e:6c:e8:77:
57:8b:4f:9b:1e:f4:aa:7d:24:35:e2:dd:02:2c:16:e1:f7:ef:
2b:ad:75:c5:35:e3:bb:cc:b6:a0:f6:d6:63:eb:be:f6:64:99:
44:5d:cb:bb:90:f8:75:d0:cf:7b:3d:08:6a:38:f2:5c:96:6b:
17:d6:e4:dc:77:df:99:c6:25:6e:fd:56:82:36:e8:58:e5:ea:
86:96:62:79:fd:4c:57:80:da:b0:1d:81:00:20:a7:91:57:79:
d8:a1:fe:4e:50:38:f1:be:11:ee:6b:99:b5:af:56:f9:ae:ea:
28:7d:8f:92:97:2c:35:07:6a:5f:cf:d1:84:29:5e:33:54:92:
a8:6c:0b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:51 2024 by rpki-client on console-fra.rpki-client.org