Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/465c40-6718-4ea9-91e5-912047153e01/1/z_yBdSBMjV2WOFw4Om3UDIgKxiU.roa
File: z_yBdSBMjV2WOFw4Om3UDIgKxiU.roa (raw, json)
Hash identifier: p+DTHlwRssbnEVVNVPTxTs/38cdEZZReta8VW2Q+rrE=
Subject key identifier: CF:FC:81:75:20:4C:8D:5D:96:38:5C:38:3A:6D:D4:0C:88:0A:C6:25
Certificate issuer: /CN=b135377901a7871d3bff7a70277a2f4e2fc0e277
Certificate serial: 0C33C26E
Authority key identifier: B1:35:37:79:01:A7:87:1D:3B:FF:7A:70:27:7A:2F:4E:2F:C0:E2:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTU3eQGnhx07_3pwJ3ovTi_A4nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/465c40-6718-4ea9-91e5-912047153e01/1/z_yBdSBMjV2WOFw4Om3UDIgKxiU.roa
Signing time: Sat 01 Jan 2022 06:52:18 +0000
ROA not before: Sat 01 Jan 2022 06:52:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28715
IP address blocks: 185.104.122.0/24 maxlen: 24
185.104.123.0/24 maxlen: 24
185.104.120.0/22 maxlen: 22
185.104.120.0/24 maxlen: 24
185.104.121.0/24 maxlen: 24
2a06:3000:1::/48 maxlen: 48
2a06:3000::/29 maxlen: 29
2a06:3000:2::/48 maxlen: 48
2a06:3000:1000::/36 maxlen: 36
2a06:3000::/36 maxlen: 36
2a06:3000::/48 maxlen: 48
2a06:3000:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204718702 (0xc33c26e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b135377901a7871d3bff7a70277a2f4e2fc0e277
Validity
Not Before: Jan 1 06:52:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cffc8175204c8d5d96385c383a6dd40c880ac625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:b9:02:30:7d:18:ea:85:43:49:d0:46:ea:
e1:be:8a:d7:e8:04:bf:2d:6d:22:63:31:30:62:4f:
50:19:86:10:4e:e1:eb:79:c5:ca:9b:45:9a:32:27:
9c:6a:76:ca:ad:fb:c3:80:92:4d:19:36:28:42:78:
39:9e:66:e8:b7:8a:67:5c:4a:22:cb:c7:fe:39:da:
fa:a9:38:69:69:a0:12:3e:92:d8:2b:3c:4b:00:46:
0d:2f:50:ad:62:08:6c:7c:63:a4:75:61:99:94:a6:
40:d2:a8:7c:6a:c2:e8:93:9d:ba:02:0e:ff:c5:54:
16:18:71:9a:be:56:55:cd:cc:31:b7:33:97:27:ce:
cb:a3:49:07:44:3e:f6:0e:88:e5:e6:e5:53:07:27:
aa:bd:f6:fc:8a:81:cd:42:48:4a:fa:f9:83:51:41:
5f:e2:e5:18:23:86:93:16:f8:ba:df:81:92:ca:a5:
4c:33:05:41:f4:6b:50:6e:9c:3e:e7:78:b4:ed:0c:
7f:c1:6e:13:e5:84:a9:c0:3c:92:65:fb:42:af:04:
b4:9d:7c:54:0c:3a:94:74:65:59:ae:d6:ad:97:ee:
65:9c:bf:13:47:03:6f:6a:82:6c:2c:10:47:c5:41:
f7:f7:6d:39:ed:ad:c1:1c:39:79:62:88:a5:c6:e2:
13:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FC:81:75:20:4C:8D:5D:96:38:5C:38:3A:6D:D4:0C:88:0A:C6:25
X509v3 Authority Key Identifier:
keyid:B1:35:37:79:01:A7:87:1D:3B:FF:7A:70:27:7A:2F:4E:2F:C0:E2:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTU3eQGnhx07_3pwJ3ovTi_A4nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/465c40-6718-4ea9-91e5-912047153e01/1/z_yBdSBMjV2WOFw4Om3UDIgKxiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/465c40-6718-4ea9-91e5-912047153e01/1/sTU3eQGnhx07_3pwJ3ovTi_A4nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.120.0/22
IPv6:
2a06:3000::/29
Signature Algorithm: sha256WithRSAEncryption
05:a0:cc:7c:e5:91:6f:53:85:01:64:ad:f3:66:53:3b:bd:2c:
8c:38:a9:4c:a8:52:8f:63:a1:75:0e:b0:77:ee:cc:e0:76:14:
00:8e:ef:05:21:f4:51:16:77:01:b8:87:e4:2c:7e:7e:2f:32:
e6:90:77:d2:b0:44:53:6e:b4:20:4a:e3:79:0b:e4:19:b0:ca:
8d:6f:02:28:60:e7:01:31:3a:56:c0:0d:bc:2f:40:b1:89:95:
f3:05:5e:ab:9b:85:3a:89:bb:26:45:3a:a1:f2:c2:fc:62:c8:
37:63:85:bd:99:44:82:5a:8d:32:f7:21:16:de:6c:7c:85:95:
14:9b:f6:87:76:60:09:91:f4:ba:6d:b7:40:37:e6:39:e6:19:
6c:4f:ae:b3:1f:a4:13:d1:c8:b2:8e:d0:e4:e0:ab:89:be:84:
1d:4f:ea:4a:ac:e5:77:65:5b:f4:6b:f8:c2:36:34:78:f6:83:
2a:40:d3:4c:0a:ac:f5:93:eb:c2:84:d2:af:a1:1d:df:82:cd:
b2:6e:a7:58:d2:40:27:bd:37:08:d8:61:3b:5d:f5:30:50:62:
00:ce:f3:67:15:b7:00:0b:59:d3:95:61:40:2c:80:ef:01:d4:
8f:d3:ed:9c:ce:15:11:ee:2e:2c:11:33:7e:6b:60:74:72:8d:
cd:2d:de:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:57 2024 by rpki-client on console-ams.rpki-client.org