Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/cKN2SwXNny-S7k1JjCSyEY8Jokk.roa
File: cKN2SwXNny-S7k1JjCSyEY8Jokk.roa (raw, json)
Hash identifier: aXeca6o5O3eHSebCF4VOVmMeeqKuR0wQUY9iu+vtbGA=
Subject key identifier: 70:A3:76:4B:05:CD:9F:2F:92:EE:4D:49:8C:24:B2:11:8F:09:A2:49
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 038A596C
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/cKN2SwXNny-S7k1JjCSyEY8Jokk.roa
Signing time: Thu 10 Mar 2022 17:05:02 +0000
ROA not before: Thu 10 Mar 2022 17:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.236.24.0/22 maxlen: 24
185.232.204.0/22 maxlen: 24
185.239.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59398508 (0x38a596c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: Mar 10 17:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70a3764b05cd9f2f92ee4d498c24b2118f09a249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a5:69:7c:00:9f:82:22:65:44:6f:29:fe:42:
52:ba:78:b2:1e:e5:5d:44:5e:85:04:9b:6b:51:f9:
02:00:ed:a0:80:0d:6e:38:e0:fd:ac:ce:a4:d9:81:
6c:f7:83:b8:7b:11:c3:b7:94:19:bc:86:9c:41:c2:
c3:43:9c:b5:f1:e4:3c:2e:97:ca:b3:73:2e:5e:b3:
94:2c:63:e1:bf:f8:76:6b:9b:bb:a0:8d:b6:30:fd:
36:2e:ba:49:f9:f7:d3:51:f9:07:8b:32:a4:d5:22:
92:cf:85:94:ce:38:2d:df:3c:1e:a2:ec:3d:d2:e0:
16:7a:9d:7b:89:9e:80:19:11:08:d4:42:0e:33:63:
c7:8d:23:bf:67:b7:63:67:a7:af:cd:24:00:20:b2:
48:f1:03:01:17:c7:4b:5a:7c:e0:31:74:39:6a:5a:
a9:e0:ff:34:7d:fe:ab:05:b3:87:e8:58:3a:57:7f:
0e:c6:a3:95:11:7c:24:1f:af:80:29:4b:9a:b4:af:
bb:31:1b:f6:57:43:f5:0c:53:30:bd:9a:a5:7b:58:
04:40:ae:37:67:7d:41:56:49:04:79:b0:9a:b4:2f:
a9:7d:30:ac:3d:bc:92:8a:0c:69:e0:90:de:07:76:
f9:1a:d8:8f:82:31:84:00:27:eb:35:eb:47:ce:b7:
64:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A3:76:4B:05:CD:9F:2F:92:EE:4D:49:8C:24:B2:11:8F:09:A2:49
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/cKN2SwXNny-S7k1JjCSyEY8Jokk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.204.0/22
185.236.24.0/22
185.239.140.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:c7:4c:a3:be:18:08:e5:dc:f2:8e:ff:b9:c8:9e:0d:b7:ec:
38:dc:3f:e6:d7:2d:66:0d:6b:cf:90:64:45:76:7e:04:04:be:
84:d6:c0:84:de:ad:0d:c3:cf:cb:00:39:94:ec:08:f1:6d:2e:
f1:ce:97:a6:5c:72:4b:25:69:0c:57:67:41:3b:c8:c4:8d:ce:
93:72:da:7c:89:24:9f:a2:47:b2:3f:41:15:bb:68:2b:d8:6d:
de:34:eb:e6:2e:4a:e0:4b:f4:e7:16:df:6c:a2:1d:58:d9:65:
0f:5e:b4:5b:09:2f:6d:7a:ef:97:9a:19:a1:06:2e:33:87:84:
ba:c5:e2:4f:75:55:b9:4c:16:34:61:e7:4a:3c:2f:44:04:17:
c3:b2:3f:46:62:28:f8:28:98:22:78:97:4d:dc:1e:0a:82:84:
b1:6f:b3:04:3a:0a:3f:01:55:88:97:26:0d:03:ff:a4:ad:84:
89:f2:fc:e6:65:5e:3b:dc:46:8c:c1:b7:f1:ec:c6:be:41:9c:
3b:1a:4b:bf:3b:89:11:77:b0:08:7b:e4:48:18:b0:5e:f5:3f:
06:6e:82:df:e7:c7:ab:15:6a:73:24:55:e4:12:cd:84:d0:ee:
1b:cd:06:d3:b9:c9:3a:65:ca:e6:05:1f:7d:de:7f:e4:50:2a:
bc:3d:65:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:34 2023 by rpki-client on console-fra.rpki-client.org