Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/LIwydnJfF6oE84klIZyb5ZAzB5Q.roa
File: LIwydnJfF6oE84klIZyb5ZAzB5Q.roa (raw, json)
Hash identifier: N7v5U7YGkNTPtwLeoM3LcHDI7MLGaztCw3r7hIdhtrI=
Subject key identifier: 2C:8C:32:76:72:5F:17:AA:04:F3:89:25:21:9C:9B:E5:90:33:07:94
Certificate issuer: /CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Certificate serial: 169F32D6
Authority key identifier: 72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/LIwydnJfF6oE84klIZyb5ZAzB5Q.roa
Signing time: Sat 01 Jan 2022 09:06:38 +0000
ROA not before: Sat 01 Jan 2022 09:06:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212726
IP address blocks: 185.242.12.0/24 maxlen: 24
185.242.14.0/24 maxlen: 24
185.242.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379531990 (0x169f32d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Validity
Not Before: Jan 1 09:06:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c8c3276725f17aa04f38925219c9be590330794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7b:88:ac:88:04:b0:ae:3d:4d:d6:fe:d8:af:
b1:b6:b1:f9:16:bd:eb:2b:df:60:d5:7f:3e:18:98:
8a:2c:c6:ae:90:8a:ff:51:af:bc:48:b8:6b:05:b4:
2e:7b:50:f3:9c:3a:f5:ce:7a:05:18:d1:71:1e:64:
4b:fd:06:f8:e7:f0:96:88:98:e7:82:05:20:22:8c:
46:30:b7:42:50:4b:e5:ac:20:3c:32:25:f6:31:4b:
8d:f5:3a:f2:d7:c0:f3:37:05:b3:a9:c0:1f:19:c1:
b5:f2:90:ff:64:bf:70:45:cf:dc:90:de:49:50:1d:
24:21:82:9e:6f:40:64:20:bf:c5:c4:b0:be:9b:40:
52:1a:f5:3b:32:c8:7b:00:f5:07:45:3f:f6:e7:84:
8a:92:03:af:cd:fb:83:fc:b7:67:c0:2c:d1:9c:17:
df:eb:81:c3:22:ae:66:6a:94:9c:c9:5a:50:10:2b:
de:88:fa:01:4f:fb:af:3a:f3:2d:72:17:f4:38:6b:
08:3f:6e:6d:10:4f:b9:68:f5:6e:0d:d4:4d:b0:ca:
d2:20:bc:f5:6b:f8:d9:77:7f:b9:00:e8:d2:9e:71:
a8:48:ea:6e:14:42:7c:32:5e:4e:62:4f:4b:3c:30:
f6:0f:fd:d0:3e:23:2f:00:31:e1:93:8a:67:f8:94:
98:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8C:32:76:72:5F:17:AA:04:F3:89:25:21:9C:9B:E5:90:33:07:94
X509v3 Authority Key Identifier:
keyid:72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/LIwydnJfF6oE84klIZyb5ZAzB5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.12.0-185.242.14.255
Signature Algorithm: sha256WithRSAEncryption
5f:7b:73:ea:53:ea:4c:ba:6d:5b:3c:41:dc:41:c9:37:07:ac:
36:38:3c:bd:d9:cd:35:1a:ef:3a:58:93:2b:12:6b:02:58:eb:
4c:42:28:ef:32:35:48:4a:84:9b:6a:03:2a:42:3f:16:63:9e:
cd:43:ce:f9:b7:4a:f9:64:cc:1e:33:22:48:f8:24:45:be:71:
1f:f0:28:4f:0a:65:00:04:88:4d:a0:ee:2f:6b:41:ab:05:ad:
c5:90:14:bf:ca:3a:30:03:f6:92:e1:58:20:80:bc:a2:ac:3d:
e3:7b:e4:86:ef:37:fa:2a:42:28:a2:01:96:f4:dc:14:95:68:
13:2c:a9:bb:4e:a6:d9:0c:af:24:60:cb:52:3a:cc:ee:1f:8d:
ea:89:da:51:93:84:15:9a:22:66:19:ff:d1:41:e9:40:db:48:
9e:49:11:ad:f1:79:4a:6b:ed:b0:71:9a:bb:17:cd:bc:d0:e0:
29:44:e9:27:78:b5:33:7a:6f:61:87:25:3a:4a:1b:71:a8:7a:
54:6f:88:29:10:32:a4:45:04:42:44:b4:64:93:1d:a7:00:71:
57:d8:46:06:db:ae:c7:21:cf:65:54:ff:4a:e3:1d:74:60:a1:
67:d0:c0:c6:3e:55:75:bb:5c:08:e9:65:05:52:ad:ec:a2:9e:
3b:40:9b:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:52 2024 by rpki-client on console-fra.rpki-client.org