Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/6b1ea5-3f79-49ca-b985-57a5f3289992/1/X-4Icv7COZVK1jFHPv23kWdd5y8.roa
File: X-4Icv7COZVK1jFHPv23kWdd5y8.roa (raw, json)
Hash identifier: fJg7W+nPN9QWFzyejxd0rm7JDvYHHDFCKGD6axybUkU=
Subject key identifier: 5F:EE:08:72:FE:C2:39:95:4A:D6:31:47:3E:FD:B7:91:67:5D:E7:2F
Certificate issuer: /CN=cdee5d90061fa2a724c36742586c629d471e7a4d
Certificate serial: 0183D07118CCA2326DCC29828E835BEEA47F
Authority key identifier: CD:EE:5D:90:06:1F:A2:A7:24:C3:67:42:58:6C:62:9D:47:1E:7A:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ze5dkAYfoqckw2dCWGxinUceek0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/6b1ea5-3f79-49ca-b985-57a5f3289992/1/X-4Icv7COZVK1jFHPv23kWdd5y8.roa
Signing time: Thu 13 Oct 2022 08:23:36 +0000
ROA not before: Thu 13 Oct 2022 08:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205620
IP address blocks: 185.211.64.0/24 maxlen: 24
185.211.66.0/24 maxlen: 24
185.211.67.0/24 maxlen: 24
185.211.65.0/24 maxlen: 24
193.27.24.0/24 maxlen: 24
193.27.25.0/24 maxlen: 24
193.27.26.0/24 maxlen: 24
193.27.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:71:18:cc:a2:32:6d:cc:29:82:8e:83:5b:ee:a4:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdee5d90061fa2a724c36742586c629d471e7a4d
Validity
Not Before: Oct 13 08:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5fee0872fec239954ad631473efdb791675de72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cd:07:7f:5e:d4:63:9b:60:ff:b5:19:4a:3b:
08:b9:c2:80:98:2d:4e:6f:da:ae:4e:2e:7d:37:43:
ff:4b:4b:75:91:e7:82:1f:dd:78:d4:ca:1e:b9:ee:
00:ff:b0:cc:a4:c2:c5:9f:da:70:b9:63:20:df:81:
e5:bd:9f:0d:3a:f6:40:08:35:2b:19:3f:38:4a:9e:
cb:7c:d2:cf:84:51:c6:a6:a5:d7:16:8b:b3:ac:63:
46:e1:cf:ee:61:3e:8c:e8:42:30:8c:9e:77:7d:51:
d3:73:85:a5:53:40:c9:bc:7e:cb:d4:42:50:9e:1b:
20:29:51:6a:ce:d4:a7:fb:6c:b1:ed:1b:3f:07:22:
ef:9a:13:bc:1f:04:e1:fe:f2:ce:27:d7:70:e9:46:
e9:db:0e:81:2e:17:a5:25:4b:64:44:8c:0f:fd:0b:
1e:e2:d1:ac:8a:df:33:8a:9f:5b:d5:64:43:ef:4b:
ff:0b:c4:4f:74:68:85:df:62:94:f2:8a:9c:8e:69:
a3:d8:cd:f3:40:94:70:ec:ce:7b:94:f7:a5:50:cf:
d5:b4:90:a7:ac:f7:cb:47:85:02:6e:d9:31:7a:1b:
d5:a0:06:2f:a9:38:46:90:dd:96:fa:81:10:fd:0f:
1d:bd:b5:69:ff:05:8d:65:96:3f:04:6b:2d:86:bb:
04:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:EE:08:72:FE:C2:39:95:4A:D6:31:47:3E:FD:B7:91:67:5D:E7:2F
X509v3 Authority Key Identifier:
keyid:CD:EE:5D:90:06:1F:A2:A7:24:C3:67:42:58:6C:62:9D:47:1E:7A:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ze5dkAYfoqckw2dCWGxinUceek0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/6b1ea5-3f79-49ca-b985-57a5f3289992/1/X-4Icv7COZVK1jFHPv23kWdd5y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/6b1ea5-3f79-49ca-b985-57a5f3289992/1/ze5dkAYfoqckw2dCWGxinUceek0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.64.0/22
193.27.24.0/22
Signature Algorithm: sha256WithRSAEncryption
63:b3:17:59:90:d3:0c:b3:f8:ed:d9:59:bf:87:38:08:1c:74:
42:61:58:5e:10:2c:31:79:00:ca:bd:8d:d5:9c:9d:ad:5d:81:
4a:ea:0a:70:99:a9:28:43:08:8c:19:69:30:eb:a2:27:7d:2b:
88:d5:06:36:3a:e1:3f:29:05:50:72:08:34:df:e5:c9:1e:52:
7f:64:94:22:64:a2:64:2a:e9:64:4d:4d:11:39:25:f8:b6:da:
27:38:01:58:25:b8:3f:3a:04:c8:61:26:18:50:de:5c:1e:65:
78:98:93:62:c8:63:de:59:bf:d1:82:69:85:49:0f:2c:94:2a:
d0:25:63:a0:18:ee:2b:0d:ce:3c:70:5a:a3:60:92:a8:3a:88:
26:01:9d:25:7a:48:fb:0c:20:94:51:69:59:66:a5:d9:86:7a:
14:34:f6:4b:91:96:cb:d8:94:4c:89:2e:09:13:aa:9a:fd:a8:
13:db:36:ad:26:66:3c:0c:ca:c7:d6:2c:c3:5c:10:9c:41:87:
47:94:f8:48:29:bd:67:a6:76:1a:48:bd:23:fe:a0:cf:02:71:
c9:4d:d6:fc:79:92:1a:11:5c:46:bf:a0:c3:e9:79:07:dc:ab:
2d:f6:3b:0c:18:b9:16:d4:69:3c:6f:fa:11:d7:89:48:37:bb:
c7:9c:8f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:37 2024 by rpki-client on console-ams.rpki-client.org