Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_HftpafwCkiv6tKroTzMQrxEU00.roa
File: _HftpafwCkiv6tKroTzMQrxEU00.roa (raw, json)
Hash identifier: t3F8ocs1KgAUsaMooNJfaKU+6dfELzpbWmrhXqRb+w0=
Subject key identifier: FC:77:ED:A5:A7:F0:0A:48:AF:EA:D2:AB:A1:3C:CC:42:BC:44:53:4D
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03A21CD6
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_HftpafwCkiv6tKroTzMQrxEU00.roa
Signing time: Thu 27 Jan 2022 11:11:37 +0000
ROA not before: Thu 27 Jan 2022 11:11:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210644
IP address blocks: 185.174.136.0/24 maxlen: 24
185.229.66.0/24 maxlen: 24
45.142.122.0/24 maxlen: 24
185.17.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60955862 (0x3a21cd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 27 11:11:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc77eda5a7f00a48afead2aba13ccc42bc44534d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:32:a4:2b:42:16:e3:0c:1a:57:2c:77:77:4e:
14:2c:75:ee:80:63:85:0a:7b:72:85:30:0f:76:4c:
21:41:d0:4e:d3:08:7f:f5:5a:a5:28:b2:62:77:01:
ff:7d:fe:c7:10:f1:9a:3a:b5:e5:8d:dd:0c:4e:b2:
c3:1f:44:e6:3c:62:45:b9:dc:36:d8:c8:35:12:a7:
54:6f:dd:0b:c4:e7:9d:e6:33:28:54:e2:c4:7d:3a:
6c:7f:f7:be:ea:b0:f9:68:06:7c:f3:e4:7c:da:ce:
9d:89:68:27:57:75:b9:e1:f8:d9:18:42:99:d4:ca:
69:f3:d1:0b:90:bc:f7:10:3b:c4:49:51:52:24:0a:
10:40:e8:9b:ff:fa:c5:cc:96:ee:00:e2:ae:bd:aa:
83:55:d8:e6:bc:e1:2f:74:d4:c8:34:88:86:21:97:
0b:59:fa:0c:7f:9c:dd:ef:68:2c:b2:bf:0d:0a:db:
7b:8b:a8:a9:6a:02:c6:6a:d9:da:c6:1b:9a:48:a4:
bf:40:d7:68:90:cc:7a:f8:5e:62:62:c0:31:c0:7d:
17:d9:46:73:f5:ee:56:3c:e7:b9:d6:e1:e4:e6:74:
f3:6e:22:80:fd:85:ed:d0:b6:94:2b:a7:bb:81:e7:
c4:5a:fc:7a:d1:e7:f1:23:96:9b:4b:ef:f0:50:44:
e0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:77:ED:A5:A7:F0:0A:48:AF:EA:D2:AB:A1:3C:CC:42:BC:44:53:4D
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_HftpafwCkiv6tKroTzMQrxEU00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.122.0/24
185.17.0.0/24
185.174.136.0/24
185.229.66.0/24
Signature Algorithm: sha256WithRSAEncryption
21:1e:50:1e:c6:a4:95:23:17:7f:f1:4d:57:db:c6:25:c2:fb:
6c:52:f2:5d:1f:b8:68:3f:ff:71:c7:60:db:38:d6:dd:d2:24:
11:24:7f:f7:67:4b:ca:59:d8:7a:47:7f:95:33:a4:ad:21:d4:
c1:a7:e7:6d:3e:69:60:ee:f5:08:46:ac:18:3c:8d:c6:b6:f6:
f8:32:37:ed:40:a8:10:4b:04:23:33:68:c1:86:db:18:1c:05:
83:b2:49:6d:62:4e:87:79:37:d3:27:a2:2b:2a:d5:30:26:56:
f8:ca:aa:71:1e:23:5f:e3:d6:25:f2:ce:bd:9f:3c:f9:56:2d:
eb:a8:a2:09:ce:91:f1:de:09:01:22:1f:4c:8f:10:4d:c8:1d:
91:7c:76:8c:d0:32:03:70:90:d7:79:6d:52:62:6a:df:59:b7:
2e:54:7a:01:cd:ff:0b:43:8d:11:8e:06:4e:a0:01:cd:73:37:
6b:7f:05:6b:07:3d:c6:52:fb:d9:77:63:92:5d:85:d5:d2:59:
c1:1e:c2:f0:19:43:a6:f1:09:01:28:d8:50:37:36:a3:1c:e6:
0f:3d:a7:a4:38:f9:e0:fc:bb:f6:3c:fb:9c:f0:1f:9f:a0:cb:
e3:cc:7c:41:ff:f3:79:7f:c5:10:47:39:dc:b8:7a:18:ae:42:
e6:83:0b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org