Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/aflH49_oCSrflnpiyZXeZq1MH6s.roa
File: aflH49_oCSrflnpiyZXeZq1MH6s.roa (raw, json)
Hash identifier: xFGKsiKA74YsdfJeRsSVmvdBXo7o4qs9aZdPhZTIBSc=
Subject key identifier: 69:F9:47:E3:DF:E8:09:2A:DF:96:7A:62:C9:95:DE:66:AD:4C:1F:AB
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 03B9DDDF
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/aflH49_oCSrflnpiyZXeZq1MH6s.roa
Signing time: Wed 30 Mar 2022 08:56:07 +0000
ROA not before: Wed 30 Mar 2022 08:56:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 185.239.140.0/22 maxlen: 22
185.239.142.0/24 maxlen: 24
185.239.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62512607 (0x3b9dddf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: Mar 30 08:56:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69f947e3dfe8092adf967a62c995de66ad4c1fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:63:33:53:b5:a0:ff:b7:a1:2a:f9:c8:5d:6b:
69:b6:80:49:0f:b2:b5:c0:f9:be:96:cd:99:30:77:
4c:95:a2:7a:c2:6b:13:50:1a:d6:75:f2:28:c0:62:
9c:c3:e7:03:d5:4f:86:a7:f8:c9:7c:11:c7:c6:22:
86:7b:b8:a8:f6:8f:70:c6:15:7d:95:2e:bb:37:ee:
d2:af:cd:9f:69:be:cc:5e:49:df:b9:a8:20:5c:65:
fa:12:7b:ed:47:59:ba:90:d8:24:4f:5d:47:cc:13:
30:6f:08:dc:16:fa:f9:61:2e:42:0f:58:a0:7c:20:
04:3d:20:7e:92:9f:09:6b:44:ee:9b:24:cf:a2:ec:
47:46:fa:d8:9b:18:b9:e1:b8:0a:c2:85:d8:97:6e:
1a:82:84:91:46:6a:3c:50:63:c1:2f:b8:02:d0:b0:
2c:b5:67:77:b6:49:62:29:08:8f:90:73:7c:61:d9:
81:91:50:63:7d:6c:1f:74:56:1b:6f:70:8f:48:c7:
49:8a:1c:50:06:25:cb:28:a8:7a:5d:c4:f9:33:fc:
c3:1b:35:bf:43:f9:e9:ac:7b:44:2c:45:4f:bd:e1:
a9:09:d1:7c:6c:6f:4f:5a:ed:5a:66:29:3f:10:4c:
d3:d0:5a:4a:bc:0a:37:7c:b0:78:35:b9:83:e9:a5:
a1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F9:47:E3:DF:E8:09:2A:DF:96:7A:62:C9:95:DE:66:AD:4C:1F:AB
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/aflH49_oCSrflnpiyZXeZq1MH6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.140.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:93:12:3b:d3:e6:e9:cd:d2:82:5d:35:0e:d6:e4:f4:f3:a8:
a4:36:7b:95:cd:f2:ea:b8:23:66:5e:56:ed:27:12:f7:d9:56:
b0:a0:25:02:e7:3e:d7:98:57:54:2e:4f:84:ce:2c:07:81:cd:
af:a7:d6:b8:94:34:5a:4e:17:80:04:70:05:c9:33:6b:a7:5c:
5e:97:aa:99:84:e4:0d:3f:99:25:c4:2a:e5:3f:6b:6b:f3:68:
b7:4f:f6:c1:47:63:36:8e:df:29:d3:8e:da:be:38:f2:a8:b0:
63:be:43:97:71:f0:27:db:1f:ab:4a:16:d1:36:74:ee:8f:b5:
6a:4e:76:75:ab:e4:42:dc:44:22:40:01:cf:25:b8:21:7a:3b:
ff:9b:88:30:29:8e:27:cd:75:4b:db:40:f4:31:2f:f6:93:ec:
26:f1:a9:b6:ba:12:95:8d:59:c0:48:b2:c2:99:52:f9:1c:ef:
20:7c:c8:8c:12:69:d5:31:27:20:72:15:9e:a7:0e:43:0b:7d:
94:36:45:ba:56:f6:73:c3:d1:0f:e3:d3:8d:08:7c:39:45:ef:
c4:ec:65:d9:a0:79:2b:dd:5a:f1:91:b6:1d:8f:12:e7:ad:27:
7c:dc:46:83:ea:5b:4e:60:8c:0e:6b:2a:09:8f:43:29:d8:c3:
1e:48:cc:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:54 2024 by rpki-client on console-fra.rpki-client.org