Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/v_JEEHHKWlc_DkD9R6mOWAEjfFQ.roa
File: v_JEEHHKWlc_DkD9R6mOWAEjfFQ.roa (raw, json)
Hash identifier: MI+nBqs0m98bceC1aZaU+E1rZ7tl7gK+e5UP7s4anvs=
Subject key identifier: BF:F2:44:10:71:CA:5A:57:3F:0E:40:FD:47:A9:8E:58:01:23:7C:54
Certificate issuer: /CN=2c96946c501ddf48696da2cf110fdceb286fac98
Certificate serial: 38EC2C18
Authority key identifier: 2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/v_JEEHHKWlc_DkD9R6mOWAEjfFQ.roa
Signing time: Fri 29 Apr 2022 06:53:46 +0000
ROA not before: Fri 29 Apr 2022 06:53:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210776
IP address blocks: 185.242.220.0/24 maxlen: 24
185.242.222.0/24 maxlen: 24
185.242.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 955001880 (0x38ec2c18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c96946c501ddf48696da2cf110fdceb286fac98
Validity
Not Before: Apr 29 06:53:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bff2441071ca5a573f0e40fd47a98e5801237c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7f:4f:fc:4b:8b:4e:db:99:44:9c:f9:ae:e7:
e3:23:23:6e:7f:da:3e:f2:b9:97:58:5d:eb:90:47:
2d:4e:03:96:61:bd:33:42:4e:39:42:11:82:0b:4a:
70:84:15:0a:cf:67:c6:e7:30:79:87:fa:ad:12:3a:
8b:77:66:14:10:79:96:3b:0f:e8:41:3f:ff:f0:4b:
1c:d9:8a:51:c3:c0:65:f4:fd:d8:7c:71:90:00:f6:
23:f3:43:be:5d:b6:7c:e5:18:ce:18:0d:e8:47:3b:
4b:b6:a3:a6:09:f1:55:bc:3b:c5:80:ad:5d:16:8f:
dd:07:e4:99:db:1f:5e:80:ae:c6:d6:2e:89:bd:fc:
54:06:1e:08:00:37:d8:db:2f:95:bb:9a:36:8a:0d:
57:c9:b7:55:21:14:ba:17:6d:6a:70:69:e1:6b:cf:
fd:8a:51:f7:07:57:1f:2f:f6:18:26:e2:e9:30:52:
2f:5c:f3:2e:12:56:7c:7e:18:95:6c:33:ae:30:39:
1b:5b:94:f1:48:80:fc:56:b8:29:48:7e:00:ec:44:
e7:24:91:40:e6:d4:30:ef:e1:9e:19:3a:01:99:3a:
49:20:ba:40:1c:14:0b:b6:fb:3c:d9:46:cb:b2:34:
fe:6a:5c:67:dd:0e:81:2b:65:c5:e2:91:fa:5f:de:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F2:44:10:71:CA:5A:57:3F:0E:40:FD:47:A9:8E:58:01:23:7C:54
X509v3 Authority Key Identifier:
keyid:2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/v_JEEHHKWlc_DkD9R6mOWAEjfFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/LJaUbFAd30hpbaLPEQ_c6yhvrJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.220.0-185.242.222.255
Signature Algorithm: sha256WithRSAEncryption
4a:52:bd:33:d7:0a:98:3d:12:a9:25:4c:0f:11:62:16:2e:1a:
d1:75:91:75:99:a7:89:36:21:65:b7:54:96:69:c3:33:fb:ae:
5c:9b:09:0d:b0:d7:0a:b8:4f:72:59:4d:b4:ef:29:ac:e6:d0:
ef:a8:3d:68:fa:83:71:b2:31:b3:e6:cf:8c:48:6c:58:b1:39:
4a:04:c3:05:dd:1d:3f:e6:02:d1:4d:e7:e1:fd:12:dd:cd:a2:
3b:02:0c:28:56:bd:e6:6e:78:5d:b1:3c:e6:2e:0d:96:04:58:
c5:2e:5d:4d:e6:e8:2e:27:92:c2:dd:be:8a:57:75:0d:6d:11:
04:89:5c:3d:70:a8:a5:4e:8d:d6:9c:89:83:1f:f3:10:65:7f:
cf:7f:2d:85:e0:d0:bf:8d:3d:c3:00:2f:ea:23:ae:82:e3:a4:
20:b9:fa:b6:ee:60:9d:1b:cf:4a:f0:31:4a:72:c1:2e:fe:bd:
c4:ec:82:59:3c:77:ed:fe:4b:0c:1d:19:c3:b1:51:b8:e6:86:
22:e5:92:d2:4f:67:d7:90:95:37:57:fd:e4:5f:ad:81:24:06:
75:1a:9f:3e:59:00:d2:45:8b:e6:00:49:a3:27:de:5e:0a:ce:
5b:f5:22:35:fb:f7:81:c5:da:7a:f3:39:d1:da:f1:a3:c0:5e:
30:86:61:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:00 2024 by rpki-client on console-fra.rpki-client.org