Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/1oo17dL8N2xe2wX2LvNjVB4Jqjs.roa
File: 1oo17dL8N2xe2wX2LvNjVB4Jqjs.roa (raw, json)
Hash identifier: qxzWo6IfM1V/Q5GsyCXoiin/P2EGkBJYq5uzZcx2lWQ=
Subject key identifier: D6:8A:35:ED:D2:FC:37:6C:5E:DB:05:F6:2E:F3:63:54:1E:09:AA:3B
Certificate issuer: /CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522
Certificate serial: 030B85BF
Authority key identifier: 09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/1oo17dL8N2xe2wX2LvNjVB4Jqjs.roa
Signing time: Fri 20 May 2022 11:51:18 +0000
ROA not before: Fri 20 May 2022 11:51:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203443
IP address blocks: 185.132.12.0/23 maxlen: 23
185.132.14.0/23 maxlen: 23
185.126.164.0/23 maxlen: 23
185.126.166.0/23 maxlen: 23
185.127.68.0/23 maxlen: 23
185.127.70.0/23 maxlen: 23
185.127.76.0/23 maxlen: 23
185.127.78.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51086783 (0x30b85bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522
Validity
Not Before: May 20 11:51:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d68a35edd2fc376c5edb05f62ef363541e09aa3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:71:cb:9c:8a:6a:89:ec:85:d3:a0:07:db:09:
b2:35:b7:f5:23:94:63:29:56:a6:41:2c:5c:ca:d7:
f8:79:2d:7d:b8:f8:a2:99:b0:64:55:32:ac:bd:41:
48:7c:dc:97:be:70:1c:42:65:76:06:dd:89:a0:11:
06:a9:e9:3f:28:67:00:4b:26:82:ca:35:7d:04:dd:
53:66:cc:e5:ab:70:82:50:b0:80:61:00:72:6f:a4:
34:2f:0e:cc:60:c1:d2:23:88:4c:16:f8:f3:e7:a4:
b1:82:b2:3d:9d:a9:a4:01:38:9b:8b:37:60:16:2b:
b4:32:f7:a0:44:00:05:71:c5:d7:1b:ac:6c:12:da:
6f:fb:a6:99:fd:31:c2:60:94:9a:95:4c:b9:61:f0:
1c:11:ad:11:ce:5c:48:55:f2:d6:9e:39:4c:45:c0:
e8:d4:09:03:f2:0c:d5:46:6d:ae:16:38:39:69:5f:
08:af:19:3f:f2:0b:7a:fc:0f:f3:d0:ff:b0:75:5f:
7d:39:93:2d:f6:2d:fa:cd:a3:3a:bc:33:7e:d0:68:
85:e2:37:f2:bf:e0:56:95:1c:23:b0:b9:c4:75:a7:
81:91:3d:13:4a:80:f3:d1:db:56:2f:76:60:98:42:
b4:4b:a9:47:77:e6:1b:e7:08:ba:ae:c0:be:5b:68:
81:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8A:35:ED:D2:FC:37:6C:5E:DB:05:F6:2E:F3:63:54:1E:09:AA:3B
X509v3 Authority Key Identifier:
keyid:09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/1oo17dL8N2xe2wX2LvNjVB4Jqjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.164.0/22
185.127.68.0/22
185.127.76.0/22
185.132.12.0/22
Signature Algorithm: sha256WithRSAEncryption
74:36:04:e0:55:aa:4a:39:6e:02:a7:c1:34:d6:0a:0e:74:48:
3e:c6:c1:ae:f0:52:2f:f4:58:80:c7:b9:c7:49:a3:46:a9:f6:
c3:5b:41:a3:01:ba:00:cd:db:3c:2e:44:60:42:9d:ec:77:09:
f6:14:2f:9c:a4:43:13:be:9f:87:4e:dc:72:34:6b:b6:d7:68:
eb:5c:0c:62:e0:c4:f4:b1:9c:8b:ca:69:59:81:2f:a5:7e:5e:
29:cd:9c:56:7d:52:40:5f:d8:1f:7a:4c:b5:5a:5c:c4:8c:5d:
93:8e:5f:52:af:bb:42:ac:73:f6:68:15:79:c7:2b:07:33:1f:
80:69:f5:eb:76:1f:82:6c:8b:0a:71:67:43:0e:27:85:a9:0d:
5b:5f:21:81:c2:ad:1f:6c:ff:4e:4f:33:11:51:27:ab:e4:93:
8f:13:aa:51:b2:fa:5e:b5:63:30:d9:c3:93:79:28:88:d5:fa:
8a:13:d9:15:61:53:64:03:b6:fc:bb:5f:e7:d7:ed:26:37:d1:
48:87:f8:27:42:65:40:9c:b8:2e:41:16:97:90:44:13:db:d0:
ca:8b:62:cd:e8:73:18:98:0c:c4:3a:55:0e:cc:35:19:f0:0e:
5d:8e:27:13:9b:57:21:21:30:6a:02:46:17:72:0b:57:fb:d6:
e2:d0:79:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:50 2023 by rpki-client on console-fra.rpki-client.org