Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/aufFtTbTxZLcfAJ5j5_wE6hQtVI.roa
File: aufFtTbTxZLcfAJ5j5_wE6hQtVI.roa (raw, json)
Hash identifier: djieHSCY/+YVrLnR2ZjCNgy2U1xqZ4hFOV5NiTApv+A=
Subject key identifier: 6A:E7:C5:B5:36:D3:C5:92:DC:7C:02:79:8F:9F:F0:13:A8:50:B5:52
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 0ABFB0AA
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/aufFtTbTxZLcfAJ5j5_wE6hQtVI.roa
Signing time: Wed 23 Mar 2022 11:45:40 +0000
ROA not before: Wed 23 Mar 2022 11:45:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201453
IP address blocks: 185.160.231.0/24 maxlen: 24
185.160.230.0/24 maxlen: 24
185.160.229.0/24 maxlen: 24
185.160.228.0/24 maxlen: 24
185.160.228.0/22 maxlen: 22
185.232.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180334762 (0xabfb0aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: Mar 23 11:45:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ae7c5b536d3c592dc7c02798f9ff013a850b552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a8:b8:9c:84:63:4f:f8:59:1c:cd:bf:78:d2:
52:30:23:b5:04:6a:21:a0:c3:8c:d3:99:25:44:c4:
c1:02:3e:ee:13:da:37:91:fc:d3:fb:8c:e9:ca:b5:
6c:4d:05:dc:1c:b7:8f:c4:e0:42:d9:29:cf:eb:12:
41:99:3c:b3:69:21:ca:3f:a5:6f:72:4a:b5:3a:07:
a8:25:d8:34:ea:0a:40:45:e3:f5:5b:ca:38:c4:d6:
76:51:07:ec:c1:78:de:ce:f4:98:3b:3d:4e:e8:93:
99:34:97:65:96:0f:45:f8:fe:39:ea:0b:f1:e6:06:
c2:c2:67:87:40:08:43:00:3f:b2:8c:df:d6:cc:3d:
45:50:b3:0c:f8:5e:59:2d:88:26:8e:ae:00:3b:86:
f3:a9:cf:35:20:1d:da:e3:e1:ff:08:ce:70:cd:e2:
83:1b:11:bd:2c:db:40:cc:2a:14:53:f7:5c:a9:bb:
bf:71:83:2e:8d:cb:ac:19:8d:d9:91:94:9b:86:6a:
e9:5b:d7:48:bd:63:35:fd:44:c6:68:65:1c:f5:f3:
ee:18:87:fd:24:27:39:af:69:8b:73:55:98:bc:04:
46:4a:dc:8a:70:2f:4d:6f:b5:7e:7e:56:f6:a0:fc:
b7:39:e7:2f:df:d4:ac:b2:d3:47:bc:ba:ab:15:30:
bc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E7:C5:B5:36:D3:C5:92:DC:7C:02:79:8F:9F:F0:13:A8:50:B5:52
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/aufFtTbTxZLcfAJ5j5_wE6hQtVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.228.0/22
185.232.132.0/22
Signature Algorithm: sha256WithRSAEncryption
38:34:aa:d9:83:ba:91:49:ff:2c:7e:2f:93:cf:ba:4f:5e:15:
20:ec:52:74:84:43:e0:2c:1e:89:11:3d:2e:5b:41:a0:2c:bd:
9d:09:73:57:39:04:6d:d4:66:55:a9:53:b5:a5:00:46:ae:b0:
84:42:50:93:d1:4f:ef:f0:52:e2:b5:2a:51:8f:a7:c6:3f:19:
81:da:78:21:0b:e8:60:da:e3:fa:f4:9e:b6:d7:c9:80:17:c7:
9d:a6:66:6f:8d:a1:62:c3:ed:15:cc:f7:1f:83:06:2c:08:68:
d1:20:e6:e5:c3:e1:67:ae:2d:05:8d:dd:3f:4c:a3:b6:80:3c:
dc:7a:3c:bb:ef:b9:48:11:ff:c7:f7:18:db:38:d9:62:42:57:
4a:f9:c4:f0:af:44:0d:20:c5:c3:1a:5c:0c:d3:8e:5e:d2:e6:
83:cb:53:46:69:ba:b7:bd:53:4f:6c:f7:db:e1:4f:e5:31:87:
4d:e9:92:e0:9a:0c:7a:a3:75:56:99:f3:83:ee:8c:35:81:62:
7c:33:7e:39:f8:0c:1a:47:d5:64:37:96:bb:c1:62:f4:bb:a5:
23:5b:b5:5c:ad:88:20:b2:b0:96:e5:09:37:1d:01:06:82:ec:
c3:39:d0:c7:8f:d6:c8:6c:f3:08:02:db:fe:08:d2:4a:1c:6e:
ec:55:4b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:06 2024 by rpki-client on console-ams.rpki-client.org