Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/c6ri4AXL49q4KTvVppb-NI6NBJg.roa
File: c6ri4AXL49q4KTvVppb-NI6NBJg.roa (raw, json)
Hash identifier: d2RUMfpdgT7K9Ff+OLzKA3B9wdpeis7I7gBo7+TQI+A=
Subject key identifier: 73:AA:E2:E0:05:CB:E3:DA:B8:29:3B:D5:A6:96:FE:34:8E:8D:04:98
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0184C7B5A5617A4B54D1D7D1B8997728B568
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/c6ri4AXL49q4KTvVppb-NI6NBJg.roa
Signing time: Wed 30 Nov 2022 08:44:41 +0000
ROA not before: Wed 30 Nov 2022 08:44:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48940
IP address blocks: 185.229.65.0/24 maxlen: 24
185.128.106.0/23 maxlen: 23
185.229.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:b5:a5:61:7a:4b:54:d1:d7:d1:b8:99:77:28:b5:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Nov 30 08:44:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73aae2e005cbe3dab8293bd5a696fe348e8d0498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1b:85:cf:5b:b8:38:31:10:da:60:6e:72:bf:
7d:3f:38:b8:1b:a0:08:8d:e6:d3:da:12:81:23:ec:
10:ee:c7:7a:9d:81:c2:d7:b3:0f:11:89:b8:d7:d8:
8d:79:24:10:52:3c:71:0a:f8:96:19:96:93:3e:51:
69:c7:aa:81:d9:01:d4:de:c4:01:1e:8a:d7:46:d8:
35:da:b6:08:89:1e:f2:45:a8:8b:ea:c9:9e:76:08:
0e:52:0b:9e:47:1d:46:7d:67:3b:b8:26:9d:ec:3c:
1b:33:55:5d:77:00:32:13:0f:0a:a6:97:85:7a:68:
12:f4:10:cb:b2:a0:e7:19:8e:ca:24:7c:9f:95:a1:
94:ae:d1:a0:42:8b:79:78:2d:30:18:33:d9:15:c5:
30:57:d2:13:9c:84:5e:04:b2:0c:31:d1:37:3d:d4:
3a:92:5c:26:e0:fb:1f:0a:38:0e:b2:91:fd:8d:21:
25:26:ee:18:4b:49:57:09:eb:8a:61:48:1c:78:27:
90:fc:55:9c:44:64:27:f0:74:c5:02:6c:04:71:54:
0b:38:6a:85:d2:69:50:8a:1d:8b:ca:40:11:1c:e2:
92:e1:76:2a:53:08:3f:80:7d:ba:9b:8c:ef:cd:29:
21:c7:0b:3f:a8:ce:bb:d5:ee:1f:2a:66:5d:e3:9f:
c3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AA:E2:E0:05:CB:E3:DA:B8:29:3B:D5:A6:96:FE:34:8E:8D:04:98
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/c6ri4AXL49q4KTvVppb-NI6NBJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.106.0/23
185.229.64.0/23
Signature Algorithm: sha256WithRSAEncryption
85:83:60:65:87:db:f5:d9:80:cf:6e:9c:5e:74:99:15:92:5e:
e4:69:66:3a:18:0c:28:d3:78:76:c4:0c:17:4a:e6:93:0c:ba:
75:a8:9f:63:ed:0e:26:ee:7b:e8:46:50:80:18:d4:15:62:20:
6d:4a:c0:2b:03:b3:b8:28:ff:93:14:ce:17:98:d4:d7:50:56:
3c:e6:b6:cd:a2:7a:69:00:48:5d:c9:24:11:23:6a:14:2d:62:
bb:5a:87:cc:a3:4c:9e:2d:c5:54:7d:e0:48:05:5a:e9:e6:f8:
01:34:ec:af:7a:29:c9:9b:cd:f8:62:fc:00:6c:42:4b:58:57:
5d:38:e8:7b:62:69:85:87:68:7c:63:db:72:2e:02:6b:ea:61:
c6:77:b6:aa:87:63:2c:e7:7d:6c:3b:ef:f4:d9:91:bb:0d:0d:
7f:4c:0d:84:6c:10:81:6d:be:56:bd:fd:8e:4b:9c:14:ea:c4:
d2:67:36:4b:d1:40:fe:06:ac:d4:3b:4b:d1:56:43:35:61:f8:
da:3a:96:60:c0:e7:9e:61:d2:5c:49:de:ba:62:e0:67:49:21:
0b:cb:46:05:ef:24:c7:6a:a0:14:90:76:d2:b6:e7:e7:f9:6d:
af:5b:5f:f5:b6:a6:1f:a6:fa:0a:38:61:54:a2:c6:4f:53:9c:
0d:6d:76:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org