Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LtkxqdN9J_V8r6ovHih54z1jBZU.roa
File: LtkxqdN9J_V8r6ovHih54z1jBZU.roa (raw, json)
Hash identifier: +Xu+VJSnA1+u+qntjvyE0PNjXpV6WCDc1JknXPwiRV8=
Subject key identifier: 2E:D9:31:A9:D3:7D:27:F5:7C:AF:AA:2F:1E:28:79:E3:3D:63:05:95
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 08655068
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LtkxqdN9J_V8r6ovHih54z1jBZU.roa
Signing time: Fri 24 Jun 2022 17:59:15 +0000
ROA not before: Fri 24 Jun 2022 17:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 185.246.112.0/24 maxlen: 24
185.246.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140857448 (0x8655068)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 24 17:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ed931a9d37d27f57cafaa2f1e2879e33d630595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9d:05:41:96:fe:85:6a:4a:b3:b0:14:9e:3f:
87:8e:7a:1b:05:91:11:83:78:01:36:46:d4:71:59:
87:9d:e3:e8:f5:6c:9b:dc:4a:f4:2b:6d:19:db:6e:
1a:e2:15:74:ac:aa:51:36:e3:2d:31:50:33:4f:20:
0e:a6:01:91:06:ed:83:e0:48:c0:49:03:9d:c7:f7:
08:a2:32:4a:9d:a4:b5:1e:9a:55:f5:c5:27:13:d1:
e6:a7:a4:5f:16:58:c4:0c:15:35:d6:88:fe:81:3e:
40:0d:a0:89:2d:69:a3:4b:53:17:fe:37:ff:1c:8f:
38:dd:b0:e9:2b:1b:71:70:53:42:08:1b:93:a1:62:
4f:dc:20:55:5a:b7:6b:f5:c4:ee:b6:a1:23:73:97:
9d:80:20:9c:28:ff:50:8b:78:c8:ba:15:e7:c1:ab:
ec:78:ce:ec:d0:1d:04:af:05:33:71:f4:0e:05:f9:
25:a4:67:4b:a9:ac:bb:45:bd:01:ab:21:8d:61:71:
73:59:d1:2d:06:2e:d8:ae:f6:a4:fa:58:6e:cc:30:
b0:46:d8:62:95:d4:fb:85:1b:ac:1d:f7:d2:9b:8b:
50:21:cc:4c:d3:c0:76:1b:66:1a:64:7f:3d:ed:e8:
83:a4:ba:4a:00:1d:1b:94:2c:d5:a9:3f:9f:2e:47:
45:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:D9:31:A9:D3:7D:27:F5:7C:AF:AA:2F:1E:28:79:E3:3D:63:05:95
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/LtkxqdN9J_V8r6ovHih54z1jBZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.112.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:39:8f:e8:2c:6c:bc:f5:e3:ee:19:d7:c8:93:d6:90:30:8a:
88:48:f3:99:74:28:9b:bd:53:28:cf:52:c4:f3:93:90:82:30:
0b:d7:53:c7:35:2c:61:03:27:4d:a4:d4:f7:20:ef:e3:04:7f:
b9:88:cb:93:03:9d:1f:37:dd:10:7f:a8:a8:78:eb:f2:03:b9:
ee:65:f4:f6:bc:49:f6:2c:83:e2:d5:aa:3e:81:97:20:80:d3:
cb:7e:86:c2:f7:6f:0a:8a:ab:34:59:46:93:a8:50:cc:b1:49:
20:fe:04:76:5e:a5:dc:7d:55:6b:03:2a:99:57:64:4e:d6:22:
b6:b7:ca:81:e5:67:54:96:99:97:ea:e7:df:41:9f:e3:ce:0a:
8f:31:1a:e9:4f:79:f8:42:44:3c:7d:f0:b5:6f:8a:40:c9:a1:
5f:46:26:ef:b1:76:80:f2:91:99:e9:8d:e9:0a:20:e6:7e:c3:
fe:7b:17:b8:fa:f4:53:62:a6:e1:18:f4:be:a8:8c:c5:95:f5:
b7:f6:18:43:84:d1:fa:f8:1a:b8:38:6d:e1:ed:c9:fe:df:89:
d4:fa:c5:b1:03:a1:08:54:29:5e:c2:ea:f9:f8:ba:98:78:ae:
15:fd:ad:3b:f7:2d:17:d4:cc:e9:48:96:46:00:bf:a7:a9:77:
4d:a3:e2:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org