Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/P2KE38M9ja0FFr_PQDqn4By9F0k.roa
File: P2KE38M9ja0FFr_PQDqn4By9F0k.roa (raw, json)
Hash identifier: K2BQ1LxA8vREaBxLXh46rBCanUAIbfSOt+e3OfJBWJo=
Subject key identifier: 3F:62:84:DF:C3:3D:8D:AD:05:16:BF:CF:40:3A:A7:E0:1C:BD:17:49
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 062371B2
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/P2KE38M9ja0FFr_PQDqn4By9F0k.roa
Signing time: Sat 01 Jan 2022 05:04:46 +0000
ROA not before: Sat 01 Jan 2022 05:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62373
IP address blocks: 185.240.60.0/22 maxlen: 22
185.229.140.0/22 maxlen: 22
185.38.4.0/22 maxlen: 22
2a04:7501::/32 maxlen: 32
2a0c:7380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102986162 (0x62371b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: Jan 1 05:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f6284dfc33d8dad0516bfcf403aa7e01cbd1749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8d:c6:2e:2e:1b:1b:4f:25:af:f0:70:8b:53:
7d:d7:00:5e:be:e4:70:c6:c2:15:de:2a:35:ed:26:
1b:3f:21:92:85:90:86:0f:73:10:0b:d2:5e:6f:f6:
8b:a5:14:a1:f8:54:bb:6b:e7:73:56:52:5a:c5:1d:
07:2a:6f:ed:58:75:83:ed:d7:0f:96:98:06:32:cf:
57:d0:e8:e9:d1:35:a2:7d:d1:fc:e4:0f:53:66:b0:
9e:78:4d:f0:50:ed:19:3f:33:c9:eb:d2:1a:31:82:
da:3d:bb:3c:34:c8:69:32:95:0d:44:12:5a:39:07:
21:bb:2e:cf:dd:4e:71:c3:33:4e:d9:32:2c:26:37:
12:6f:79:c0:dc:92:2a:81:c1:0e:e6:35:ad:d9:98:
7f:20:bc:22:f3:f5:c6:b4:54:df:2c:28:c4:68:7d:
f3:6b:af:f6:60:74:72:ff:fe:f2:64:60:c6:16:15:
e7:ed:52:94:05:6f:d8:21:bf:8e:85:94:93:da:28:
87:71:6f:28:ab:c8:0d:fe:d7:45:46:27:28:da:72:
96:a0:40:ed:b6:24:07:52:5a:11:e5:e6:50:15:e6:
7b:cb:d1:80:f9:7d:1b:4e:49:84:49:0e:03:c4:33:
08:f3:71:08:f9:88:c9:f1:ca:10:33:60:9d:bc:23:
b9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:62:84:DF:C3:3D:8D:AD:05:16:BF:CF:40:3A:A7:E0:1C:BD:17:49
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/P2KE38M9ja0FFr_PQDqn4By9F0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.4.0/22
185.229.140.0/22
185.240.60.0/22
IPv6:
2a04:7501::/32
2a0c:7380::/29
Signature Algorithm: sha256WithRSAEncryption
9f:e0:31:f1:9f:4b:1c:a9:2b:a5:da:72:b1:d7:09:bf:e1:f3:
35:2d:6c:cf:71:28:80:89:1d:fd:af:61:52:5f:d4:d1:4b:af:
3a:5d:6b:a0:81:2b:6a:c7:5b:fe:e1:2c:b3:c1:cd:a3:9a:74:
77:e7:89:32:74:db:70:e5:6b:d0:91:87:c6:23:a3:71:96:f0:
b3:23:25:76:a9:0f:2e:55:89:67:c2:9a:25:c0:d5:75:cb:cf:
f1:84:db:9f:0b:7f:0b:bb:aa:58:a3:df:ea:14:0b:9a:23:06:
45:ef:2d:04:7e:76:fb:90:e6:6d:f8:52:ea:58:87:19:b5:e7:
72:01:d1:7e:18:99:d6:8a:a0:32:2c:d7:ba:dc:39:28:18:1f:
b5:80:31:41:b3:39:e4:1a:84:33:6e:3f:de:30:86:b6:f2:13:
a5:eb:00:f6:c3:9d:ab:64:22:38:ec:d1:86:7d:91:ac:15:d0:
03:2f:8e:84:21:c0:b6:b1:47:53:42:e4:68:8c:60:ce:87:e9:
43:ad:fc:40:54:d3:0b:df:40:f6:f4:74:d2:9e:d0:10:a0:06:
f6:74:06:68:34:9c:23:f4:46:1f:a8:70:12:b4:9a:88:38:fe:
db:49:21:29:fe:73:e4:e2:c8:f9:7d:cb:03:6c:6b:80:4d:77:
8a:4d:94:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:46 2024 by rpki-client on console-ams.rpki-client.org