Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/1A1kdPKC7bDrzTqDskMxHqStpL8.roa
File: 1A1kdPKC7bDrzTqDskMxHqStpL8.roa (raw, json)
Hash identifier: WB6aWBTq39nZXI57uZSv/TaATXojEOcw322aDH7a/eM=
Subject key identifier: D4:0D:64:74:F2:82:ED:B0:EB:CD:3A:83:B2:43:31:1E:A4:AD:A4:BF
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 03DCE09F
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/1A1kdPKC7bDrzTqDskMxHqStpL8.roa
Signing time: Wed 13 Apr 2022 10:13:45 +0000
ROA not before: Wed 13 Apr 2022 10:13:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207046
IP address blocks: 185.239.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64807071 (0x3dce09f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: Apr 13 10:13:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d40d6474f282edb0ebcd3a83b243311ea4ada4bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:cd:cb:32:e7:24:28:c3:3b:6b:8c:fe:75:
22:2e:3c:7e:be:6c:ff:c8:00:ea:10:6b:ce:99:28:
89:66:7e:67:74:fe:c3:e5:77:a9:60:c9:2a:cc:c0:
06:6b:78:a9:88:03:49:98:31:42:13:16:64:3c:20:
e1:a5:52:bd:15:81:2f:04:cd:70:65:5d:ae:29:bc:
02:fa:af:00:2d:0d:cc:9c:c7:86:07:d4:81:e2:ed:
2c:69:76:ec:57:57:0c:cf:e6:8f:79:b2:5e:8a:54:
19:d3:c2:03:e1:0d:24:e1:0a:b0:dd:70:e6:e4:16:
f0:b3:9a:29:9c:5b:a2:c4:65:d6:56:ae:76:2a:4c:
ef:fb:6f:b3:1a:30:3c:a2:fc:ea:5d:1a:c4:16:9a:
e9:41:2d:07:63:2e:74:d8:a4:b7:ec:fa:d0:3a:3b:
55:3e:4f:f1:d1:89:38:a5:ed:43:c2:62:32:ea:5c:
81:f3:3e:f5:0f:84:28:32:10:d2:d2:09:50:0a:f8:
80:f7:16:77:2f:55:82:7d:43:03:73:75:2a:27:00:
52:ea:d6:39:d6:7b:7c:ac:81:ff:47:b8:8d:cf:f7:
0a:21:63:20:9e:22:3e:b4:82:11:14:a9:ca:7e:4c:
e0:aa:f3:f3:a9:e0:11:9b:ab:f2:91:2d:46:28:37:
49:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:0D:64:74:F2:82:ED:B0:EB:CD:3A:83:B2:43:31:1E:A4:AD:A4:BF
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/1A1kdPKC7bDrzTqDskMxHqStpL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.141.0/24
Signature Algorithm: sha256WithRSAEncryption
26:15:f4:9a:0c:cd:b4:d0:dc:c1:0f:ad:04:3c:98:04:2a:87:
76:fc:8f:b6:fe:ba:9f:ef:cf:33:42:42:d1:9e:4e:0a:c0:56:
9e:62:1f:59:e0:db:c0:df:fa:4e:fa:77:4d:13:00:44:83:26:
cf:dc:4c:02:07:81:93:86:90:0d:10:0e:17:bc:2a:76:a2:47:
02:a4:e0:52:af:3e:96:ed:cd:a7:dd:70:f7:8e:68:8d:f3:51:
79:75:25:92:81:32:2d:e5:06:9a:27:81:35:6b:07:ac:29:ef:
a1:f2:2a:63:08:50:86:80:3e:2b:d0:1a:40:80:7b:73:ca:1a:
cd:2c:4a:4d:77:28:e6:c3:6f:cb:00:72:d2:de:93:a4:1e:fd:
d8:c8:fd:1d:34:6f:43:31:3e:56:76:34:3f:dd:53:62:8f:bc:
1d:75:62:8f:76:4a:60:20:9c:4e:e9:b3:b9:ff:d3:29:4a:1a:
ce:d7:93:09:00:44:72:f6:13:1d:b3:f8:5c:01:54:d3:3a:57:
53:e5:bf:ff:3e:dd:33:33:19:b7:d0:30:fd:63:0c:2b:a0:3d:
49:d8:6d:5a:41:a3:3a:99:f5:5d:55:08:22:61:fe:1c:59:10:
b4:69:77:57:27:8c:1e:1f:49:ad:53:88:dd:e2:10:41:9f:0b:
5c:d6:a5:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:57 2024 by rpki-client on console-ams.rpki-client.org