Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/wMbxn47M7OnDT92SIt863GRwYPQ.roa
File: wMbxn47M7OnDT92SIt863GRwYPQ.roa (raw, json)
Hash identifier: CGEb7wgNZr1KS6b8H3pVwvTUZch10nO0e5EgtVyuE+A=
Subject key identifier: C0:C6:F1:9F:8E:CC:EC:E9:C3:4F:DD:92:22:DF:3A:DC:64:70:60:F4
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A770661
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/wMbxn47M7OnDT92SIt863GRwYPQ.roa
Signing time: Sat 01 Jan 2022 16:07:06 +0000
ROA not before: Sat 01 Jan 2022 16:07:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42351
IP address blocks: 185.240.189.0/24 maxlen: 24
185.240.188.0/24 maxlen: 24
185.240.191.0/24 maxlen: 24
185.240.190.0/24 maxlen: 24
185.255.58.0/24 maxlen: 24
185.242.169.0/24 maxlen: 24
185.242.168.0/24 maxlen: 24
185.243.239.0/24 maxlen: 24
185.243.238.0/24 maxlen: 24
185.243.237.0/24 maxlen: 24
185.243.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175572577 (0xa770661)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0c6f19f8eccece9c34fdd9222df3adc647060f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bd:11:18:89:f4:f4:f8:55:c0:f9:74:e4:57:
8b:52:43:4c:27:7e:e8:57:78:4b:f5:1f:d9:7d:5e:
8f:e8:c7:bf:cf:d5:89:8e:14:eb:2c:3b:ee:bb:3b:
9c:a5:26:48:6d:51:1f:40:27:b4:b8:3d:95:e7:95:
62:c0:ed:a1:be:55:d4:3e:ab:99:55:fe:f5:09:7a:
5e:ff:a0:2b:3f:f3:0f:aa:9a:81:6d:53:1a:5d:fd:
9c:2c:5c:03:eb:73:d7:6c:06:d3:ab:6c:96:01:b4:
47:61:76:a8:99:ca:7a:58:ff:e0:61:3c:75:49:bc:
10:22:bd:3e:ef:7f:28:ef:02:0f:cf:11:c9:26:ae:
f0:b7:74:2a:eb:68:08:49:df:70:9d:00:b9:d5:e6:
6d:d3:fd:de:43:ea:03:a7:68:93:10:0c:c7:bf:53:
eb:42:5e:fe:e1:93:a9:e2:0a:55:9e:da:9c:57:a0:
8b:5f:30:24:fe:b2:b0:ee:4e:fe:85:7d:28:b4:42:
9e:83:4c:d2:ee:9b:97:f2:b3:f9:12:fb:e6:54:d6:
e5:98:34:fc:55:8c:a5:0e:b1:cd:8b:c6:67:79:4b:
73:1f:1e:3e:ea:0c:8d:6c:81:3c:73:1d:4e:c8:5d:
5e:ff:ba:f8:c3:cf:ad:55:5a:88:c4:3a:23:5d:5e:
d2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:C6:F1:9F:8E:CC:EC:E9:C3:4F:DD:92:22:DF:3A:DC:64:70:60:F4
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/wMbxn47M7OnDT92SIt863GRwYPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.188.0/22
185.242.168.0/23
185.243.236.0/22
185.255.58.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f7:89:22:4b:53:16:03:d7:7e:8e:a4:58:7a:b4:33:56:6b:
76:5b:2e:d6:03:e7:fb:10:c8:b1:7d:ea:0b:60:34:f6:6b:cc:
0e:54:3c:e8:9f:46:07:21:cc:4a:ea:e3:83:26:83:ea:3c:e3:
b4:f4:b5:c7:a7:be:a8:a2:f2:4b:d1:3b:7c:3c:3a:72:b9:d1:
29:63:2f:3e:52:4b:c5:60:8e:1b:56:17:a3:14:60:4e:4f:05:
e4:6a:95:86:b9:ab:7b:01:25:df:c3:37:d5:1f:ae:0a:cd:8d:
84:06:1a:3c:cc:33:c4:04:ae:0d:e7:56:9d:0e:fa:8b:ea:e8:
3c:36:2d:ce:42:15:7c:02:13:3f:f0:50:18:7d:da:c4:08:1b:
22:e8:2e:c3:61:16:91:8f:02:89:fb:8c:bb:39:e8:1e:db:50:
b7:16:c4:3c:10:e5:0f:06:25:2d:98:be:a0:6c:c9:3c:dc:43:
79:2a:d6:58:b2:1c:7a:88:79:a4:3d:39:9c:53:83:8b:4a:df:
36:a9:62:a0:c1:13:b1:a3:47:93:22:16:64:02:1e:38:09:99:
e6:0f:31:f6:64:33:8d:06:28:02:b4:c5:10:e9:73:a3:54:fe:
cc:8b:45:90:db:d9:d4:d6:c9:c6:59:71:44:a2:66:d2:37:be:
05:61:31:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org