Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/L0xe99tUNm-6oVM2iBZkB5Zxnq8.roa
File: L0xe99tUNm-6oVM2iBZkB5Zxnq8.roa (raw, json)
Hash identifier: f6CoN9om2bg8uN5k/YhnelauutmVK5VqQA441bJUiCA=
Subject key identifier: 2F:4C:5E:F7:DB:54:36:6F:BA:A1:53:36:88:16:64:07:96:71:9E:AF
Certificate issuer: /CN=6dc0d05f8ee9e958fc95de65dc59a2141c5f1efd
Certificate serial: 12461314
Authority key identifier: 6D:C0:D0:5F:8E:E9:E9:58:FC:95:DE:65:DC:59:A2:14:1C:5F:1E:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcDQX47p6Vj8ld5l3FmiFBxfHv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/L0xe99tUNm-6oVM2iBZkB5Zxnq8.roa
Signing time: Sat 01 Jan 2022 07:01:07 +0000
ROA not before: Sat 01 Jan 2022 07:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59796
IP address blocks: 185.121.240.0/24 maxlen: 24
185.121.240.0/22 maxlen: 22
185.121.243.0/24 maxlen: 24
185.121.241.0/24 maxlen: 24
185.121.242.0/24 maxlen: 24
185.71.64.0/22 maxlen: 22
185.71.64.0/24 maxlen: 24
185.71.67.0/24 maxlen: 24
185.71.65.0/24 maxlen: 24
185.71.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306582292 (0x12461314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc0d05f8ee9e958fc95de65dc59a2141c5f1efd
Validity
Not Before: Jan 1 07:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f4c5ef7db54366fbaa153368816640796719eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:eb:21:00:d2:46:8b:3e:fe:28:1f:c7:7d:d9:
19:0a:35:b6:6d:fe:d2:61:e9:68:ce:fd:36:1d:04:
e5:87:76:84:6b:c1:bd:a5:00:7f:af:84:38:c7:86:
7b:de:79:d5:20:2f:78:07:26:9a:e2:52:69:af:ad:
b9:d3:d9:1f:54:e6:98:bc:15:b8:e9:1a:ac:8e:ea:
05:55:0b:56:80:b5:bb:f4:d5:39:b3:8e:aa:9b:5a:
0b:3c:2f:a7:15:a1:6b:d5:58:0f:d1:53:1d:4c:96:
6e:d8:6f:88:9f:8b:ef:ca:6c:b3:86:f2:74:c2:ee:
b7:f9:1f:1d:b4:60:dc:14:7a:c1:67:36:62:ae:7a:
09:32:10:f5:42:45:17:63:89:9f:13:84:18:ad:32:
c4:e7:2b:ba:9d:18:46:65:48:eb:81:01:1b:4a:92:
a8:88:7d:df:4c:43:84:a5:f2:07:df:86:de:d5:3b:
39:99:7a:83:20:a2:95:bd:68:48:0a:2a:bb:7a:d1:
7e:02:09:bf:31:c8:dc:86:ac:7b:8d:ce:3a:10:b0:
7d:07:7e:f1:58:37:4f:24:f6:f0:e5:84:14:3b:2a:
61:72:78:74:b9:24:d2:81:a5:c7:84:e6:38:43:a9:
53:40:ae:c9:5f:07:0d:c6:2a:8a:bf:72:92:5c:84:
85:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4C:5E:F7:DB:54:36:6F:BA:A1:53:36:88:16:64:07:96:71:9E:AF
X509v3 Authority Key Identifier:
keyid:6D:C0:D0:5F:8E:E9:E9:58:FC:95:DE:65:DC:59:A2:14:1C:5F:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcDQX47p6Vj8ld5l3FmiFBxfHv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/L0xe99tUNm-6oVM2iBZkB5Zxnq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/bcDQX47p6Vj8ld5l3FmiFBxfHv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.64.0/22
185.121.240.0/22
Signature Algorithm: sha256WithRSAEncryption
06:5d:63:52:b2:01:e8:d4:72:65:dd:03:ba:74:4a:d7:e7:51:
c0:51:c3:67:77:b9:01:c9:f9:36:87:ba:b2:af:2b:c5:b4:de:
31:6c:ea:96:01:8e:76:87:49:5c:97:57:88:e5:8e:c7:3e:3e:
d6:49:db:10:cf:c5:60:84:63:3a:bf:ca:d1:b4:d5:f6:69:b9:
d3:b9:c7:af:95:40:90:16:3d:2f:78:59:ff:4b:f1:68:df:0a:
31:11:9b:4b:84:25:6e:3f:19:10:8a:ea:5d:59:92:8d:82:b1:
6d:db:0f:92:da:b1:5c:d7:f7:b1:a5:0c:0d:76:43:61:7d:bb:
9e:c4:3b:c3:76:33:3d:1a:53:a7:d6:6b:0f:a9:78:3f:59:80:
dc:c3:24:52:88:26:22:a8:3f:f5:40:d8:86:06:d7:a9:0d:90:
02:f5:3f:97:20:b2:49:fe:06:84:00:6d:aa:a4:d4:b7:da:a4:
4f:07:71:6f:6f:3a:53:7a:a5:24:33:62:a3:cf:be:03:a3:53:
ad:09:d8:fd:5c:80:31:68:52:84:20:e5:3c:4d:d4:f2:97:cf:
d5:22:6c:6f:b6:eb:88:5e:c4:22:0d:4e:3b:8a:35:4f:ed:0c:
54:f1:9a:5b:81:21:52:83:17:e7:5c:5b:3e:dd:2d:8c:dd:74:
3a:ef:e6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:55 2024 by rpki-client on console-ams.rpki-client.org