Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/080361-1bbe-4763-800b-619c26194168/1/ERETmS3MK5SNeWfKpxiov0BUQIM.roa
File: ERETmS3MK5SNeWfKpxiov0BUQIM.roa (raw, json)
Hash identifier: BBQ6q9AvWGY050ScBnfCb5FlPzM+nvfYnPuJuMKNLMk=
Subject key identifier: 11:11:13:99:2D:CC:2B:94:8D:79:67:CA:A7:18:A8:BF:40:54:40:83
Certificate issuer: /CN=54a31ab033cfd2dee6852fa9d8bf5a4a0e352414
Certificate serial: 04EB763A
Authority key identifier: 54:A3:1A:B0:33:CF:D2:DE:E6:85:2F:A9:D8:BF:5A:4A:0E:35:24:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKMasDPP0t7mhS-p2L9aSg41JBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/080361-1bbe-4763-800b-619c26194168/1/ERETmS3MK5SNeWfKpxiov0BUQIM.roa
Signing time: Sat 01 Jan 2022 15:03:41 +0000
ROA not before: Sat 01 Jan 2022 15:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201684
IP address blocks: 185.64.24.0/24 maxlen: 24
185.64.26.0/24 maxlen: 24
185.64.27.0/24 maxlen: 24
185.64.25.0/24 maxlen: 24
2a03:11a0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82540090 (0x4eb763a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54a31ab033cfd2dee6852fa9d8bf5a4a0e352414
Validity
Not Before: Jan 1 15:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=111113992dcc2b948d7967caa718a8bf40544083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9f:27:73:2b:63:62:02:04:bc:2f:2e:c9:2a:
82:16:45:21:0a:c3:99:83:44:f0:67:81:a3:b2:c4:
28:89:59:62:cf:b7:7f:f5:86:4d:8f:ec:d9:2c:21:
32:08:26:8e:83:ca:f5:74:27:77:e6:74:7b:d5:be:
45:da:a3:24:81:c2:42:ac:b3:a3:c9:16:8a:62:c3:
b3:66:8e:40:e1:39:97:5f:6e:f8:79:c4:67:cc:97:
30:ad:09:65:a7:5f:94:18:ad:a2:b4:bd:75:96:e7:
71:93:43:ee:d7:5f:7d:94:93:be:3a:d9:a6:e2:cf:
a3:55:2d:8b:64:c1:e7:76:36:cb:71:44:d0:ca:b9:
2a:05:70:fa:03:5c:0e:b5:c9:04:11:06:23:12:10:
c0:2e:5a:0d:07:2e:9a:36:a7:ac:e2:35:15:fe:16:
ff:c9:90:c9:95:d9:ef:07:7b:3e:28:d9:19:ec:ee:
82:63:0a:ad:9b:c1:9f:ed:f1:d0:93:84:c9:94:99:
4b:86:14:f6:cb:01:29:44:8d:78:9d:c9:13:85:af:
5b:f3:9c:6a:c8:28:71:9e:3b:f8:bb:46:45:bd:a1:
59:48:a5:a5:8e:d6:17:17:54:28:39:fc:1e:41:24:
fe:c3:78:2a:f2:65:f7:ad:43:f7:3c:95:1a:8b:30:
ae:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:11:13:99:2D:CC:2B:94:8D:79:67:CA:A7:18:A8:BF:40:54:40:83
X509v3 Authority Key Identifier:
keyid:54:A3:1A:B0:33:CF:D2:DE:E6:85:2F:A9:D8:BF:5A:4A:0E:35:24:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKMasDPP0t7mhS-p2L9aSg41JBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/080361-1bbe-4763-800b-619c26194168/1/ERETmS3MK5SNeWfKpxiov0BUQIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/080361-1bbe-4763-800b-619c26194168/1/VKMasDPP0t7mhS-p2L9aSg41JBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.24.0/22
IPv6:
2a03:11a0:1::/48
Signature Algorithm: sha256WithRSAEncryption
29:f0:bd:e2:94:2b:31:86:57:2b:bf:24:34:e0:ab:b3:09:37:
8a:6b:24:a6:04:d9:a4:0e:8e:ff:8d:5b:6d:f3:ee:80:6a:d4:
87:cf:78:ab:dc:b6:48:a9:e1:c0:1c:dd:1d:9b:d3:f3:17:02:
b6:2c:46:78:70:90:83:c5:ea:96:5e:34:5e:98:17:8a:eb:75:
b4:ea:39:1b:5c:31:81:fe:ba:eb:dd:4a:78:4f:39:be:de:60:
58:62:00:50:14:cd:89:db:03:94:d2:7c:44:9a:83:90:5f:01:
b4:ce:fa:f9:5c:d9:ac:13:2a:32:ce:ae:a7:35:e2:b8:29:18:
eb:8d:05:cd:42:f9:9c:db:4c:5a:9c:75:0c:43:52:de:a4:14:
80:90:20:e4:48:37:1d:d1:82:16:e9:0c:8b:9d:42:cb:fd:25:
ff:73:be:36:b5:fc:1e:b6:23:9b:b3:b7:71:8d:8d:08:8b:7c:
fd:13:41:92:0a:33:04:a6:b1:6e:a7:e7:03:a7:d3:c7:a4:57:
8d:0a:4e:ed:e2:6f:2f:d6:9d:7e:a3:08:35:aa:e6:d1:ae:c8:
08:0e:bc:32:fc:58:13:9b:08:74:6a:cd:05:e7:e9:82:60:a3:
52:8f:9e:4c:4d:f0:cc:5c:0d:5c:f3:6d:e1:2c:ff:f1:17:ab:
97:bd:90:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:03 2024 by rpki-client on console-ams.rpki-client.org