Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b6c991-1fd4-487f-8778-d15e516dc45c/1/Plnzxih4lrl-gbtKQteJ0YlN_zA.roa
File: Plnzxih4lrl-gbtKQteJ0YlN_zA.roa (raw, json)
Hash identifier: hmooqXfB6cFaqwXoy1pntXaY/PrFu5fxW7EtrOUQ/pg=
Subject key identifier: 3E:59:F3:C6:28:78:96:B9:7E:81:BB:4A:42:D7:89:D1:89:4D:FF:30
Certificate issuer: /CN=111e0cbbe5d1c0a09465095e444fbc1c7932c683
Certificate serial: 104D28E0
Authority key identifier: 11:1E:0C:BB:E5:D1:C0:A0:94:65:09:5E:44:4F:BC:1C:79:32:C6:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER4Mu-XRwKCUZQleRE-8HHkyxoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b6c991-1fd4-487f-8778-d15e516dc45c/1/Plnzxih4lrl-gbtKQteJ0YlN_zA.roa
Signing time: Sat 01 Jan 2022 11:58:58 +0000
ROA not before: Sat 01 Jan 2022 11:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203740
IP address blocks: 185.125.40.0/22 maxlen: 24
2a06:b7c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273492192 (0x104d28e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111e0cbbe5d1c0a09465095e444fbc1c7932c683
Validity
Not Before: Jan 1 11:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e59f3c6287896b97e81bb4a42d789d1894dff30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:de:cc:75:43:c4:9d:b3:a2:77:5d:e3:f3:ea:
4d:43:63:5b:df:32:0b:28:36:56:7a:7d:7b:b2:98:
27:89:2e:15:9a:c3:2c:a5:bf:14:b1:7c:60:3c:3a:
e8:0c:6d:65:70:d3:0a:0f:d3:4e:d8:67:53:02:cd:
c3:89:17:13:70:fa:60:f9:e4:cc:13:e0:c6:44:30:
2b:e2:ee:17:95:b6:a0:43:d7:62:06:1a:09:07:15:
79:27:26:1f:ed:f5:39:24:4b:63:49:9b:2a:35:f5:
2e:d8:17:28:e5:24:64:d2:c3:44:aa:a9:d9:3d:64:
ef:fc:63:30:03:86:34:c6:29:9e:f6:a9:72:d0:9a:
0e:62:f4:78:ff:f5:05:a7:d0:2f:88:d1:40:cc:23:
16:56:39:f1:00:fc:73:52:3b:98:15:14:a5:3f:1a:
97:81:f8:63:2e:8d:ec:e4:16:98:9a:2b:d2:82:38:
7e:ee:25:96:86:b2:cd:b6:c9:2f:e8:f9:b9:42:40:
ce:20:b6:2b:c5:70:5f:ef:ac:35:3a:c6:bb:f5:40:
36:17:90:8b:12:0d:3a:df:11:bf:e2:a8:ad:3b:42:
2d:5a:16:2a:84:b5:db:72:ce:bf:29:3a:51:70:29:
7c:2c:e8:33:25:e9:97:d2:37:75:4e:24:78:bd:dc:
cd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:59:F3:C6:28:78:96:B9:7E:81:BB:4A:42:D7:89:D1:89:4D:FF:30
X509v3 Authority Key Identifier:
keyid:11:1E:0C:BB:E5:D1:C0:A0:94:65:09:5E:44:4F:BC:1C:79:32:C6:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER4Mu-XRwKCUZQleRE-8HHkyxoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b6c991-1fd4-487f-8778-d15e516dc45c/1/Plnzxih4lrl-gbtKQteJ0YlN_zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b6c991-1fd4-487f-8778-d15e516dc45c/1/ER4Mu-XRwKCUZQleRE-8HHkyxoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.40.0/22
IPv6:
2a06:b7c0::/29
Signature Algorithm: sha256WithRSAEncryption
04:2b:73:14:cb:d5:1e:d3:eb:4f:07:27:ab:b7:5d:66:6a:2c:
88:b8:1c:92:92:9c:17:aa:4d:f1:b4:3b:4b:45:c9:5c:2c:9a:
b5:83:07:c9:30:4e:93:52:8b:12:e5:6b:d7:33:d5:ed:0f:70:
6e:2f:6c:fd:d3:ab:03:48:64:83:9e:55:28:6d:f6:25:be:d2:
1b:ab:13:d1:bb:e9:76:04:9a:65:fc:32:a5:54:a6:af:e8:97:
f0:ee:c3:dc:d2:3b:f9:5d:bc:13:87:93:c6:21:2a:ac:3f:5e:
b6:d5:39:3b:44:f3:07:71:a7:7c:ea:04:e1:7a:5e:06:4a:6a:
76:46:c7:61:c9:e5:6a:c3:e2:4b:e8:af:2d:5b:3e:2b:3b:d2:
38:b2:c6:61:76:10:ce:6b:6e:47:99:a4:8e:f9:6a:19:bb:a6:
3a:44:92:24:c1:56:04:90:0e:43:e1:4c:cf:6b:f1:03:d5:37:
2b:7a:0c:f6:55:99:96:27:e6:b2:14:4a:f2:4c:06:d1:3f:44:
1f:5a:be:85:25:a6:b2:5e:a7:dd:fe:e3:90:be:b2:cb:96:7e:
f7:43:9e:71:4d:02:ea:2d:79:14:ab:ee:2b:80:1b:4e:67:c2:
6e:d6:46:f0:38:22:8c:75:56:24:03:ef:44:d3:7a:d8:5f:bd:
5c:82:15:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:11 2024 by rpki-client on console-ams.rpki-client.org