Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/SCkGYrWD11VA7eu-bvb0kpXCDZs.roa
File: SCkGYrWD11VA7eu-bvb0kpXCDZs.roa (raw, json)
Hash identifier: 0oTE/Sp6kFgHJUn12kLVCuceNPXBAETSH7nveWymCWA=
Subject key identifier: 48:29:06:62:B5:83:D7:55:40:ED:EB:BE:6E:F6:F4:92:95:C2:0D:9B
Certificate issuer: /CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Certificate serial: 081CD60F
Authority key identifier: 69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/SCkGYrWD11VA7eu-bvb0kpXCDZs.roa
Signing time: Sat 01 Jan 2022 07:54:38 +0000
ROA not before: Sat 01 Jan 2022 07:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.143.239.0/24 maxlen: 24
185.143.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136107535 (0x81cd60f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Validity
Not Before: Jan 1 07:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48290662b583d75540edebbe6ef6f49295c20d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b5:21:db:b5:2b:1e:f9:b2:36:0b:2b:e0:ba:
e6:29:a7:f6:07:92:7a:38:68:8b:b6:ca:4d:85:8f:
cc:7a:7c:10:69:fa:73:ce:1b:ba:1d:c8:18:a4:6b:
e3:e9:b3:c6:62:a3:86:fa:3c:6a:43:81:42:2b:94:
c2:5c:35:5f:01:86:e5:5e:54:ed:b5:0a:48:1a:ba:
bc:f5:77:43:91:95:4a:dc:43:c3:71:cc:79:ce:40:
09:40:22:94:bc:09:43:92:9e:54:65:6a:62:82:65:
ed:59:0e:75:72:a1:89:58:8d:c9:e9:ab:fd:ed:f1:
1b:e2:82:a6:25:01:d4:c6:f4:6c:bc:5a:3f:5c:2c:
e8:28:2e:ee:51:79:71:fb:0c:c6:15:c5:8d:b9:25:
fc:b1:f3:7c:7b:29:6a:79:b3:c3:46:65:ff:73:f8:
83:7f:85:5e:a1:ab:9e:2f:f4:c0:8f:3e:a4:4a:13:
9c:d1:4b:41:89:0c:1f:64:6f:43:2e:12:61:c2:9a:
06:55:3a:12:79:af:d0:aa:41:da:c2:fb:a8:be:a0:
e2:1a:92:64:8d:12:ea:e5:48:2b:6a:45:c5:a4:ef:
26:82:e4:d5:d6:a8:21:ae:82:4e:b7:f1:31:c2:f0:
d7:b4:27:8f:64:57:22:ce:ef:3c:88:bf:40:f1:6f:
9c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:29:06:62:B5:83:D7:55:40:ED:EB:BE:6E:F6:F4:92:95:C2:0D:9B
X509v3 Authority Key Identifier:
keyid:69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/SCkGYrWD11VA7eu-bvb0kpXCDZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/aXSAi64n2jxp7tr0QPw-2f2JOYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.236.0/24
185.143.239.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ff:e0:ae:78:60:00:45:77:d1:5b:ab:65:c5:69:71:b1:eb:
05:48:bf:99:07:e3:6c:72:d7:66:d9:fc:c3:0d:9d:25:e9:67:
de:9f:a2:87:89:29:78:47:4f:cf:7c:3f:79:ee:b7:35:e2:58:
3f:a6:dd:c6:64:eb:01:b3:ff:5e:a4:88:9c:d6:66:d3:49:78:
91:3c:b9:df:95:0f:87:a3:87:16:46:d8:ae:e1:9a:d5:da:a6:
c2:0c:8e:a8:da:41:e2:ce:40:04:2f:69:c8:19:55:73:fd:95:
aa:bb:fe:8d:9b:8e:42:f6:62:41:66:1f:36:59:b2:a4:cd:9b:
9d:da:1b:c2:fb:e3:ea:49:b4:bf:9f:64:8b:96:39:4a:cf:e0:
62:3e:60:e7:9e:be:1b:e4:da:e8:21:d1:91:0b:b4:0c:b5:79:
75:82:03:d0:d3:e6:da:08:c0:cb:a4:71:21:d8:dd:b0:68:69:
99:b4:10:e1:34:8c:ad:b3:77:d0:08:88:80:4c:98:57:db:6a:
b3:b9:7c:70:50:e1:e7:b7:29:76:c5:d4:29:25:8c:f3:9f:5e:
f2:32:1e:9a:bd:cb:4b:fa:01:b4:6e:5b:a1:51:04:c5:cc:cf:
1a:35:e7:ca:6e:89:d0:c1:04:6d:12:69:4d:53:a8:11:a1:f5:
fe:2e:84:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org