Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/0fc5c9-4ec6-4df6-82c4-d87e4047f853/1/40TBQn3dqT6pulSdbknWNfak6yU.roa
File: 40TBQn3dqT6pulSdbknWNfak6yU.roa (raw, json)
Hash identifier: W7dXAQ94oOgirLWAOj8gk4haOrUcbe8pFR44IAVFpFc=
Subject key identifier: E3:44:C1:42:7D:DD:A9:3E:A9:BA:54:9D:6E:49:D6:35:F6:A4:EB:25
Certificate issuer: /CN=34f47b73ee8fbedd25f41b3b17b2be08f5bf6563
Certificate serial: 34FC5024
Authority key identifier: 34:F4:7B:73:EE:8F:BE:DD:25:F4:1B:3B:17:B2:BE:08:F5:BF:65:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPR7c-6Pvt0l9Bs7F7K-CPW_ZWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/0fc5c9-4ec6-4df6-82c4-d87e4047f853/1/40TBQn3dqT6pulSdbknWNfak6yU.roa
Signing time: Sat 01 Jan 2022 10:03:37 +0000
ROA not before: Sat 01 Jan 2022 10:03:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.22.0/24 maxlen: 24
185.1.143.0/24 maxlen: 24
2001:7f8:c6::/48 maxlen: 48
2001:7f8:de::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 888950820 (0x34fc5024)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34f47b73ee8fbedd25f41b3b17b2be08f5bf6563
Validity
Not Before: Jan 1 10:03:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e344c1427ddda93ea9ba549d6e49d635f6a4eb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:b7:50:b9:23:ae:44:6c:c7:bd:4e:4a:dc:
3e:bf:9c:a0:08:78:01:ff:e7:b1:86:64:63:1a:b7:
28:89:89:b7:c2:38:9a:16:16:3d:60:60:a5:2c:14:
31:e3:41:f0:c0:fb:5f:f4:cb:af:7c:9f:82:e8:65:
7a:67:cb:f7:78:cd:1d:16:d0:05:98:d6:52:c8:68:
a1:65:86:74:89:c4:23:37:d7:0a:1c:66:fa:9b:86:
30:2d:58:ea:72:d0:ba:ad:33:20:c9:42:ee:8c:3b:
cf:93:d9:3d:a9:0c:a7:b7:78:ea:cd:62:2d:42:b4:
f8:4f:4a:20:d1:86:17:47:f5:63:5d:dc:ee:18:28:
07:bc:23:cf:1c:6c:44:58:ed:8e:e0:4f:e7:58:4b:
d0:27:f1:9a:ca:49:b9:21:f4:e0:3d:60:ea:19:9d:
69:33:15:46:6e:89:d9:29:f4:26:4d:48:65:84:9b:
fd:01:ab:72:0f:7f:4c:bf:ba:4b:c1:de:f4:47:ef:
13:bf:47:b3:7e:30:13:c8:f9:d9:2c:91:4d:13:11:
17:8a:c4:99:48:cf:24:d1:0d:99:d1:37:17:3c:21:
af:96:9d:62:31:1d:95:af:23:63:e0:57:93:33:c6:
09:13:e1:ff:84:2f:33:1f:cb:26:ec:96:1d:08:c3:
ed:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:44:C1:42:7D:DD:A9:3E:A9:BA:54:9D:6E:49:D6:35:F6:A4:EB:25
X509v3 Authority Key Identifier:
keyid:34:F4:7B:73:EE:8F:BE:DD:25:F4:1B:3B:17:B2:BE:08:F5:BF:65:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPR7c-6Pvt0l9Bs7F7K-CPW_ZWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/0fc5c9-4ec6-4df6-82c4-d87e4047f853/1/40TBQn3dqT6pulSdbknWNfak6yU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/0fc5c9-4ec6-4df6-82c4-d87e4047f853/1/NPR7c-6Pvt0l9Bs7F7K-CPW_ZWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.22.0/24
185.1.143.0/24
IPv6:
2001:7f8:c6::/48
2001:7f8:de::/48
Signature Algorithm: sha256WithRSAEncryption
02:b4:34:6a:49:31:9a:0c:d9:78:87:e8:00:8f:86:53:ec:47:
fb:93:03:72:c3:77:02:72:70:fa:d7:96:95:ff:f4:86:ea:fa:
67:ee:3a:1c:d4:db:85:61:5f:f5:91:64:bd:23:8c:03:b8:52:
02:cd:54:17:94:a3:30:20:d0:c8:c3:4f:1f:0f:c8:3a:29:81:
64:6a:bc:d9:f2:72:b3:a9:14:e5:c4:37:3c:19:ff:72:0a:1a:
7a:2f:cd:9d:c2:1c:4e:f8:39:a6:3e:eb:3b:e3:ce:76:6c:ad:
61:59:a0:0b:ea:f3:1e:54:9b:05:65:e4:e4:99:f6:b1:d8:ca:
97:ca:34:6c:1c:e1:94:9f:06:c3:5a:18:c0:e1:af:e9:88:33:
b8:ae:3b:2b:db:71:49:56:79:40:e2:f9:5a:13:23:4b:f2:49:
05:cd:6d:76:0f:e5:54:77:b6:bc:a1:8e:7a:61:23:36:bc:2e:
c3:d9:04:23:b8:6c:1b:d7:70:f8:b7:77:62:99:2a:bb:1a:06:
da:14:4a:59:ad:ca:64:d6:5c:c8:d6:3d:62:e4:05:75:02:d5:
e8:95:eb:ae:f3:d1:b6:89:08:fb:d0:ee:04:26:2d:bc:2b:a2:
8f:80:d8:21:9c:f7:c5:92:e4:d7:d2:97:50:45:b0:fe:83:65:
40:c9:e0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:34 2024 by rpki-client on console-ams.rpki-client.org