Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/054d47-a112-48c6-b4aa-fb1942b5aff4/1/Win-xL83GmDY_4BKJZkC_CnpDfc.roa
File: Win-xL83GmDY_4BKJZkC_CnpDfc.roa (raw, json)
Hash identifier: Fg9/N7gWTM04oIBwbJSAGyQ9y2ZiBsk65ldwFvMAptY=
Subject key identifier: 5A:29:FE:C4:BF:37:1A:60:D8:FF:80:4A:25:99:02:FC:29:E9:0D:F7
Certificate issuer: /CN=032b8c544e0debcfd6d7554d1595f044c2050783
Certificate serial: 10AE7623
Authority key identifier: 03:2B:8C:54:4E:0D:EB:CF:D6:D7:55:4D:15:95:F0:44:C2:05:07:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyuMVE4N68_W11VNFZXwRMIFB4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/054d47-a112-48c6-b4aa-fb1942b5aff4/1/Win-xL83GmDY_4BKJZkC_CnpDfc.roa
Signing time: Sat 01 Jan 2022 07:54:37 +0000
ROA not before: Sat 01 Jan 2022 07:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201629
IP address blocks: 185.68.13.0/24 maxlen: 24
185.68.15.0/24 maxlen: 24
185.68.12.0/24 maxlen: 24
185.68.14.0/24 maxlen: 24
185.68.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279868963 (0x10ae7623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032b8c544e0debcfd6d7554d1595f044c2050783
Validity
Not Before: Jan 1 07:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a29fec4bf371a60d8ff804a259902fc29e90df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:b2:b2:0a:cc:12:da:b2:be:d6:a5:40:f9:
97:c0:de:08:86:63:88:90:67:83:38:eb:0e:49:c5:
af:f3:f5:2a:8f:1f:89:28:e6:40:14:45:9d:4a:96:
d2:58:4d:b3:fd:df:e5:eb:03:92:b3:14:7e:79:50:
f3:ce:71:3a:92:5b:f7:cf:e9:bc:42:aa:e6:c3:30:
c1:f2:e4:d0:f4:b5:19:c5:77:b3:f8:c8:80:49:6e:
57:b1:94:a1:c2:1b:13:34:35:c3:12:aa:17:4c:ef:
d6:45:a2:d8:42:53:bf:4b:c8:05:4f:98:6c:ff:00:
0c:7e:bc:76:7a:e8:08:25:a6:73:fe:cd:21:99:01:
4f:c3:dc:17:93:03:a1:1c:ca:c2:f9:9b:f6:c9:23:
cd:66:1f:11:84:72:ca:95:76:b8:81:99:24:f0:1c:
82:66:46:23:8f:6d:12:a1:fa:30:aa:49:0b:64:50:
f3:4e:aa:58:23:a8:34:80:ef:18:45:0d:37:dc:fb:
28:03:f8:03:97:b3:46:a6:a6:48:5c:1f:8a:1d:d6:
3d:e7:1e:19:fe:36:79:a1:d9:20:d5:35:92:93:62:
c8:2a:6e:3f:3b:5f:14:da:e4:34:84:08:70:f5:45:
a2:1f:9f:66:18:62:cc:f4:78:72:aa:65:90:e4:3d:
51:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:29:FE:C4:BF:37:1A:60:D8:FF:80:4A:25:99:02:FC:29:E9:0D:F7
X509v3 Authority Key Identifier:
keyid:03:2B:8C:54:4E:0D:EB:CF:D6:D7:55:4D:15:95:F0:44:C2:05:07:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyuMVE4N68_W11VNFZXwRMIFB4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/054d47-a112-48c6-b4aa-fb1942b5aff4/1/Win-xL83GmDY_4BKJZkC_CnpDfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/054d47-a112-48c6-b4aa-fb1942b5aff4/1/AyuMVE4N68_W11VNFZXwRMIFB4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.12.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:8a:74:e0:76:94:5e:b5:26:a5:84:78:8d:02:23:17:5d:92:
54:d3:8c:ec:b5:1e:3f:c2:6a:28:56:79:05:2c:41:83:0c:d2:
e5:7d:bf:bc:44:dc:9f:13:2a:de:a4:de:63:92:5b:a5:a7:7c:
4f:42:6c:a4:70:de:ed:f0:48:66:da:2c:90:26:6e:6b:25:19:
45:60:55:4c:5b:94:4d:c7:16:ae:5a:d7:c8:53:85:a1:d3:4c:
32:ea:f4:ea:10:a1:03:33:34:b1:34:73:ff:cd:8d:87:48:5c:
65:e8:6e:97:03:a7:66:49:33:c7:31:87:54:1a:76:3e:b8:05:
52:dd:47:ed:15:34:3e:10:9e:95:09:8b:55:2e:64:f5:6b:ea:
fe:62:a2:ca:3a:62:f6:61:a0:3d:9c:a5:92:cf:71:ce:f1:63:
e3:1c:2a:a4:31:1d:42:74:7e:05:7c:f4:5d:d7:41:a4:b4:ed:
e1:d7:04:d9:59:8b:9e:16:df:09:33:51:6a:b1:f1:c3:ed:83:
9f:e1:67:6a:c2:1c:d1:bf:80:8b:66:9a:06:c1:bd:c4:2b:6f:
20:ba:87:ab:e3:36:78:b6:71:f4:d6:f7:c9:4d:d4:dd:e4:aa:
79:5f:57:40:21:5b:88:e4:08:40:f6:f8:4b:d9:1b:9d:1f:7b:
48:1b:d8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:53 2024 by rpki-client on console-fra.rpki-client.org