Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/m70rfYs-KKtwVaXIpqorQMpTYl0.roa
File: m70rfYs-KKtwVaXIpqorQMpTYl0.roa (raw, json)
Hash identifier: CExN5C2bGuALV5+euemQWh8iagbw2t5hScTcI6ED91g=
Subject key identifier: 9B:BD:2B:7D:8B:3E:28:AB:70:55:A5:C8:A6:AA:2B:40:CA:53:62:5D
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 033574FD
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/m70rfYs-KKtwVaXIpqorQMpTYl0.roa
Signing time: Sat 01 Jan 2022 16:04:30 +0000
ROA not before: Sat 01 Jan 2022 16:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203549
IP address blocks: 185.103.111.0/24 maxlen: 24
185.109.22.0/24 maxlen: 24
185.109.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53835005 (0x33574fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bbd2b7d8b3e28ab7055a5c8a6aa2b40ca53625d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:77:82:42:38:29:bc:80:95:e7:38:b2:8c:7a:
27:a7:e1:63:cf:3f:31:1c:8e:ff:3b:86:fc:d3:5d:
97:9f:9b:70:31:41:7f:31:29:b2:74:6e:14:47:70:
8d:29:2a:cb:4d:77:bb:0d:24:6f:6a:c6:4c:aa:3f:
e4:f0:e0:8e:61:6b:3e:f4:e1:6a:45:d7:2c:46:41:
10:a8:29:cc:cd:06:9d:68:51:1b:07:d8:2e:4a:cc:
2b:74:0e:b0:9b:b1:82:89:0a:d5:a4:c9:6a:c8:2b:
47:cd:7b:c9:eb:be:7a:09:aa:7e:e7:7b:6f:26:65:
32:fd:d4:69:53:aa:16:72:25:f3:2d:3b:da:ae:b2:
af:8f:70:8b:c7:55:52:f7:ec:02:8d:fa:7e:25:a2:
5e:ce:3c:4b:a1:88:ce:ec:de:03:b5:80:10:c0:c1:
42:10:9e:e2:b4:63:c1:75:0c:b4:17:64:d7:24:ea:
4f:ca:7e:7e:50:f7:7f:e9:42:47:6b:29:3f:15:df:
99:92:00:1e:c4:ad:f6:28:1c:a2:22:7f:e4:47:36:
6a:a4:5e:3d:81:0d:56:fe:0d:1c:cd:bb:fc:6e:02:
60:9e:c1:21:a9:e0:a2:9f:36:06:50:4c:9e:7d:7f:
0f:48:50:29:5f:f2:85:ad:87:ba:05:ea:99:ff:65:
be:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:BD:2B:7D:8B:3E:28:AB:70:55:A5:C8:A6:AA:2B:40:CA:53:62:5D
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/m70rfYs-KKtwVaXIpqorQMpTYl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.111.0/24
185.109.22.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:12:f2:31:8a:d5:6f:8b:a1:7f:26:5b:6f:ec:f9:dd:08:aa:
c3:a4:9a:ce:a0:a7:b6:46:8f:ad:6c:03:88:29:f4:30:15:26:
1f:a3:07:31:da:97:b8:64:97:10:21:04:fe:aa:a9:38:36:4c:
ab:c4:dd:56:0d:df:d1:47:5f:42:4b:12:bd:c8:19:e0:20:fd:
f0:7a:5a:f0:6c:b8:6e:f2:3f:fc:54:6f:fa:f1:ca:c6:6b:d1:
e2:80:27:80:6f:81:77:66:87:ae:73:8c:f2:1b:49:5c:d5:d8:
d1:a6:c0:35:7b:9a:bd:e5:55:09:4a:f9:f5:e2:bc:9b:ba:cc:
02:b6:bb:92:d4:f1:f2:f3:45:b7:f9:dd:b4:92:54:31:e0:cc:
58:ad:94:61:58:34:34:43:99:e4:1c:af:6f:5d:b7:09:be:33:
9d:e4:56:3a:bd:9d:3e:77:15:b6:28:aa:ec:ad:99:4d:a2:e6:
6d:82:fc:6c:49:f2:b2:73:c1:57:86:71:24:2e:0a:81:02:97:
cd:32:46:f2:0b:c0:62:ee:59:fb:8c:43:1e:c3:fa:4a:ad:f6:
d4:db:d4:12:77:c4:49:ff:fe:e1:d3:0e:52:54:0d:46:6e:b1:
31:27:39:b6:e9:3a:4d:1f:ef:e3:2c:39:66:1c:49:1f:3b:f7:
a1:60:f0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org