Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/AG6qion6WfYverSoJAJy_lJPo7M.roa
File: AG6qion6WfYverSoJAJy_lJPo7M.roa (raw, json)
Hash identifier: J8uYGRiEsalFdQkpid3WY0y2clFvl1Pdw3jm9/9gob0=
Subject key identifier: 00:6E:AA:8A:89:FA:59:F6:2F:7A:B4:A8:24:02:72:FE:52:4F:A3:B3
Certificate issuer: /CN=34ba9c223241eb80e2bc71853bb7d2e58286bdd3
Certificate serial: 0C245B11
Authority key identifier: 34:BA:9C:22:32:41:EB:80:E2:BC:71:85:3B:B7:D2:E5:82:86:BD:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLqcIjJB64DivHGFO7fS5YKGvdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/AG6qion6WfYverSoJAJy_lJPo7M.roa
Signing time: Sat 01 Jan 2022 14:57:05 +0000
ROA not before: Sat 01 Jan 2022 14:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204877
IP address blocks: 185.141.120.0/22 maxlen: 24
2a0d:ff00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203709201 (0xc245b11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34ba9c223241eb80e2bc71853bb7d2e58286bdd3
Validity
Not Before: Jan 1 14:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=006eaa8a89fa59f62f7ab4a8240272fe524fa3b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:16:20:91:d1:a9:05:2f:d5:32:a1:79:ae:2b:
d1:f6:84:98:1e:f5:00:f0:f8:4e:b1:29:bd:9f:7a:
ff:a8:89:95:a8:f3:a8:df:b9:1e:0f:83:86:af:c0:
3e:02:77:60:ae:c3:f9:0d:1e:a5:d6:f7:58:67:b4:
98:a2:0f:ea:bd:8a:aa:03:97:1b:e3:6d:27:41:f0:
56:97:4a:38:04:be:89:f8:4a:c2:cf:80:61:db:5e:
03:3d:71:7b:69:39:84:1d:0b:e1:bb:a9:f3:fa:ec:
0d:96:8e:9b:4a:5b:a0:68:36:04:cf:ad:bb:78:4c:
50:5f:8b:b1:b1:61:16:55:83:9d:ce:54:d7:8f:eb:
6c:5b:8c:f1:44:98:2d:21:d5:af:3d:6f:c2:39:a0:
30:ff:0f:c4:37:63:42:e6:8a:f3:4b:68:cf:26:e9:
af:6a:e5:6a:a3:41:86:50:99:c7:5e:ee:08:23:7d:
5e:ff:d9:8b:30:64:d5:a0:b1:81:e2:76:d9:4c:ba:
60:b7:0a:f2:9d:76:2f:bd:b9:2d:c2:1a:ef:c4:4d:
04:57:53:e5:44:cf:5b:30:b7:d1:cf:10:98:0d:49:
cc:b5:c4:0c:6f:04:fa:ff:6f:9b:bb:57:8e:19:a1:
a9:03:61:36:ba:28:4f:ae:27:a9:a8:1e:b1:e7:69:
52:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6E:AA:8A:89:FA:59:F6:2F:7A:B4:A8:24:02:72:FE:52:4F:A3:B3
X509v3 Authority Key Identifier:
keyid:34:BA:9C:22:32:41:EB:80:E2:BC:71:85:3B:B7:D2:E5:82:86:BD:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLqcIjJB64DivHGFO7fS5YKGvdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/AG6qion6WfYverSoJAJy_lJPo7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c2ec61-37ab-405b-a6c2-13ee4c8d3082/1/NLqcIjJB64DivHGFO7fS5YKGvdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.120.0/22
IPv6:
2a0d:ff00::/29
Signature Algorithm: sha256WithRSAEncryption
3c:8c:ba:12:9a:c5:ab:16:85:22:f2:d0:2a:b6:5e:34:9e:ee:
cc:81:b0:8e:14:30:50:4d:da:9b:d7:a7:72:9b:7e:14:b4:61:
4a:76:cb:d6:f7:fc:3c:18:82:78:dc:99:7b:b7:eb:a8:bc:79:
49:c8:05:1b:98:7a:92:eb:d7:97:b7:dc:7a:81:93:1a:4d:ed:
c1:42:81:b8:6c:62:bd:9b:4f:b2:74:20:4f:e9:3d:52:fe:40:
b4:13:6b:2c:69:eb:e8:f6:0e:43:31:e2:b2:1a:92:e1:92:43:
71:d5:66:2b:f7:9d:6d:b5:f6:db:1d:f4:de:db:60:da:c1:d7:
95:f9:db:55:24:9a:c0:f3:3b:d3:be:66:81:06:b5:92:f7:0b:
aa:42:31:2b:03:cd:3d:c8:f1:02:f1:bc:09:ec:e3:52:f9:27:
26:66:79:f8:d4:49:96:ee:fb:66:a3:23:4c:30:4c:bd:af:09:
05:e3:45:6d:7d:39:5b:3a:67:b4:d6:c4:45:27:db:f3:45:d5:
20:ee:02:0d:c3:d6:4e:5c:5a:81:13:1c:71:b0:56:2a:c7:26:
f5:61:56:d7:c3:30:f2:42:d5:e4:57:af:05:7d:4c:74:a4:92:
1f:c0:97:8f:6e:a8:c5:ff:9f:70:20:a2:8a:2f:d8:db:16:53:
4f:c9:fd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:09 2024 by rpki-client on console-ams.rpki-client.org