Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/6f6743-0b22-4312-9c1a-b3663a345518/1/JWs5AN9vpdfDpfrS1V4nQ1IxQuI.roa
File: JWs5AN9vpdfDpfrS1V4nQ1IxQuI.roa (raw, json)
Hash identifier: dm56xpgNtyTcBPoKymvMNwnw4gZiRH3wtqVTtMypdOs=
Subject key identifier: 25:6B:39:00:DF:6F:A5:D7:C3:A5:FA:D2:D5:5E:27:43:52:31:42:E2
Certificate issuer: /CN=0b42fb4831c1daf2d963c47638d703086eeca8de
Certificate serial: 08F65BD5
Authority key identifier: 0B:42:FB:48:31:C1:DA:F2:D9:63:C4:76:38:D7:03:08:6E:EC:A8:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0L7SDHB2vLZY8R2ONcDCG7sqN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/6f6743-0b22-4312-9c1a-b3663a345518/1/JWs5AN9vpdfDpfrS1V4nQ1IxQuI.roa
Signing time: Sat 01 Jan 2022 07:59:33 +0000
ROA not before: Sat 01 Jan 2022 07:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206360
IP address blocks: 185.220.136.0/24 maxlen: 24
185.220.139.0/24 maxlen: 24
185.220.138.0/24 maxlen: 24
185.220.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150363093 (0x8f65bd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b42fb4831c1daf2d963c47638d703086eeca8de
Validity
Not Before: Jan 1 07:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=256b3900df6fa5d7c3a5fad2d55e2743523142e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:91:7d:cd:69:48:a3:ee:f8:1c:87:2e:bf:38:
e1:e7:9c:b6:82:62:97:19:cd:02:77:32:61:ac:42:
90:18:8e:93:e4:86:fb:67:73:98:3c:b2:e9:0a:c0:
b4:04:d7:6b:d0:7a:80:22:b0:95:f8:ef:df:f0:58:
66:86:b0:59:83:89:c5:dd:9e:aa:a4:01:2b:8e:7d:
6b:03:73:f1:42:fe:98:4a:1e:80:0b:21:71:e4:f4:
01:e5:b8:74:eb:94:15:ef:b3:bd:ff:f9:b1:ca:23:
f7:c0:7a:3b:b2:be:35:1c:d4:8b:d1:46:a5:0f:7f:
dd:88:cf:3d:a0:e0:d9:ad:56:81:48:3e:23:1f:b7:
42:18:d9:e2:e6:fd:88:0d:82:da:f7:d5:41:fb:52:
20:86:94:49:13:71:a7:4d:0d:35:4c:e9:fa:43:7d:
cf:56:b9:9f:75:2b:a4:ea:bf:c0:92:2f:90:c6:a2:
81:08:0a:ad:d7:85:77:99:20:53:4d:d3:14:26:a4:
a3:36:af:88:ae:e5:fd:f6:81:ea:a5:5f:d0:f8:7a:
5f:1f:0c:fd:4b:4f:88:20:00:33:da:ec:3b:78:49:
04:fa:99:4d:33:0c:42:6b:07:6d:ed:88:6f:eb:8c:
7c:54:53:d1:2f:c2:7c:66:b9:5b:51:08:f8:2a:cd:
75:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6B:39:00:DF:6F:A5:D7:C3:A5:FA:D2:D5:5E:27:43:52:31:42:E2
X509v3 Authority Key Identifier:
keyid:0B:42:FB:48:31:C1:DA:F2:D9:63:C4:76:38:D7:03:08:6E:EC:A8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0L7SDHB2vLZY8R2ONcDCG7sqN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6f6743-0b22-4312-9c1a-b3663a345518/1/JWs5AN9vpdfDpfrS1V4nQ1IxQuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6f6743-0b22-4312-9c1a-b3663a345518/1/C0L7SDHB2vLZY8R2ONcDCG7sqN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.136.0/22
Signature Algorithm: sha256WithRSAEncryption
45:10:94:f3:09:fd:f3:6d:e8:23:f6:87:d6:a9:a3:11:32:01:
29:fb:cb:51:7b:53:7e:35:6e:b6:6d:05:8a:42:d5:8e:00:7a:
8b:ba:a1:d1:67:ec:80:8b:29:3c:64:6b:a4:18:d1:d8:c5:75:
70:c8:81:9d:43:fc:0c:84:58:1c:7d:52:01:61:f9:58:bc:84:
3d:94:38:37:fd:88:da:58:e8:38:60:81:9d:d4:fa:e2:c9:ae:
03:13:39:6c:73:81:9f:28:0e:aa:38:35:1e:b8:90:6d:65:65:
6b:4e:f5:c0:95:0f:b3:f1:81:d4:68:50:9a:33:11:98:49:b9:
22:c3:06:a2:60:02:d8:52:a0:4d:70:e1:bd:d2:e4:9d:f1:06:
7e:45:4e:92:53:10:c8:29:bf:99:84:d9:a1:5b:54:c6:3b:5b:
7c:7e:f5:b5:ab:c7:67:47:c6:64:f6:3b:7d:09:18:3a:d5:22:
3c:d0:11:5f:92:61:a9:4c:85:97:d5:a5:85:f6:56:ae:89:12:
4d:9e:67:ea:0f:52:ce:d2:56:6b:d8:4b:f8:3c:5d:6a:a3:44:
8a:60:6b:9e:24:42:de:c1:56:54:81:ed:98:64:7b:4e:b0:d2:
6f:80:ae:8c:e6:4f:6b:d1:a0:c6:9a:5e:82:c1:6b:a2:55:3f:
07:7a:70:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:29 2023 by rpki-client on console-fra.rpki-client.org