Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/pPNsoLryFz0_i0yPbYuL3ivS_gY.roa
File: pPNsoLryFz0_i0yPbYuL3ivS_gY.roa (raw, json)
Hash identifier: SztWwDdmrqYnjesKL4cCUF38Grq5drbqrj16SkAb1iU=
Subject key identifier: A4:F3:6C:A0:BA:F2:17:3D:3F:8B:4C:8F:6D:8B:8B:DE:2B:D2:FE:06
Certificate issuer: /CN=68c6adf8eecabc1052e1f783d3bce4a1c5db5410
Certificate serial: 638681
Authority key identifier: 68:C6:AD:F8:EE:CA:BC:10:52:E1:F7:83:D3:BC:E4:A1:C5:DB:54:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMat-O7KvBBS4feD07zkocXbVBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/pPNsoLryFz0_i0yPbYuL3ivS_gY.roa
Signing time: Thu 31 Mar 2022 12:02:33 +0000
ROA not before: Thu 31 Mar 2022 12:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51795
IP address blocks: 185.25.36.0/24 maxlen: 24
185.25.37.0/24 maxlen: 24
185.25.38.0/24 maxlen: 24
185.25.39.0/24 maxlen: 24
46.18.246.0/24 maxlen: 24
46.18.243.0/24 maxlen: 24
46.18.244.0/24 maxlen: 24
46.18.245.0/24 maxlen: 24
46.18.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6522497 (0x638681)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c6adf8eecabc1052e1f783d3bce4a1c5db5410
Validity
Not Before: Mar 31 12:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4f36ca0baf2173d3f8b4c8f6d8b8bde2bd2fe06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ae:dd:d0:97:6e:53:3b:27:09:57:f7:3e:27:
68:26:7e:b7:64:9c:99:11:a5:b6:45:8e:ad:4a:35:
47:d1:b9:81:5d:c8:3b:a4:a3:c4:c8:93:f8:a0:32:
9e:12:f5:fb:38:ed:0c:93:5a:b1:c4:3e:bc:91:41:
8a:5d:40:47:07:0c:03:07:c2:2a:c2:38:8e:fc:22:
ef:bd:d6:00:ff:4a:d6:1a:92:5b:e5:82:b4:e8:a3:
f5:ef:4c:ff:46:d1:95:de:a7:56:25:be:11:3d:ea:
17:2e:ae:84:de:8b:f2:76:1d:f6:d9:ee:4e:1a:21:
77:b0:4a:a4:e8:54:53:90:19:79:bc:5a:e7:6f:cb:
6f:0e:33:f5:fb:d3:3b:f2:fd:48:12:34:b8:cc:96:
5a:2b:d4:b9:57:44:64:f0:e1:68:85:7b:d5:87:d9:
fb:55:06:39:31:72:49:db:86:bf:60:30:01:cb:00:
cd:43:7e:57:18:c9:79:96:00:57:4b:9a:44:71:18:
b5:3d:bf:ec:54:ca:c5:db:9c:d1:b6:75:f9:8d:2e:
25:a4:f5:04:31:0b:e0:83:fb:bd:65:f3:52:cd:24:
52:35:43:fa:07:f6:50:70:39:c6:c7:4d:7e:5d:78:
4d:ba:e9:b7:11:74:fa:eb:0c:91:c3:da:87:2f:1a:
5c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F3:6C:A0:BA:F2:17:3D:3F:8B:4C:8F:6D:8B:8B:DE:2B:D2:FE:06
X509v3 Authority Key Identifier:
keyid:68:C6:AD:F8:EE:CA:BC:10:52:E1:F7:83:D3:BC:E4:A1:C5:DB:54:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMat-O7KvBBS4feD07zkocXbVBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/pPNsoLryFz0_i0yPbYuL3ivS_gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/aMat-O7KvBBS4feD07zkocXbVBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.243.0-46.18.247.255
185.25.36.0/22
Signature Algorithm: sha256WithRSAEncryption
73:8e:f3:44:53:e0:ec:d8:94:c4:10:4f:47:d7:73:b4:9c:a5:
a1:49:d7:49:48:cd:02:3c:84:51:9d:f2:83:19:ef:8f:b5:1f:
be:79:2a:9a:6a:58:8e:db:72:33:53:48:cb:6d:a7:89:c5:89:
d5:90:a4:a1:1d:f1:05:ba:bf:03:25:56:79:83:70:7a:bc:29:
48:b1:54:e4:c4:e6:56:78:61:af:db:3f:d7:31:61:54:16:9a:
74:7c:44:5f:6e:e9:b0:59:38:b9:72:6a:28:e2:e1:1f:e3:aa:
4c:12:62:30:d8:ae:d1:95:bc:99:1e:65:49:a3:d2:9f:39:0e:
df:9b:5a:b1:98:1e:1d:98:77:9a:5b:cc:c6:92:74:e8:f0:e6:
53:32:88:0f:b8:0b:d0:95:bd:52:3f:19:ea:67:0b:ab:b0:26:
97:59:1b:e2:d2:99:bb:3e:cb:fc:d4:ce:d4:69:eb:c5:40:99:
39:d1:fd:0a:26:eb:1a:6e:dd:3b:89:af:da:a8:3a:6b:bd:81:
27:db:8d:37:41:dd:ce:83:06:f4:f3:c7:13:3f:ab:57:d2:c9:
27:07:2f:ba:00:f2:da:4c:7f:90:41:5b:cc:4d:ee:8b:b8:24:
e0:57:2d:95:8b:bf:b6:50:99:be:d5:ec:6d:82:85:37:8d:03:
98:78:ed:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:43 2024 by rpki-client on console-ams.rpki-client.org