Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/0g5L-nJ9D1eqklE2Nzn42ja-4HA.roa
File: 0g5L-nJ9D1eqklE2Nzn42ja-4HA.roa (raw, json)
Hash identifier: m4I4Pfnl1VhYvsUks95HWm/BD6gbCb3EEOYPNN/76Do=
Subject key identifier: D2:0E:4B:FA:72:7D:0F:57:AA:92:51:36:37:39:F8:DA:36:BE:E0:70
Certificate issuer: /CN=f3e23abae3cf0b351260d66f32339928fddf2ebb
Certificate serial: 05EDB90B
Authority key identifier: F3:E2:3A:BA:E3:CF:0B:35:12:60:D6:6F:32:33:99:28:FD:DF:2E:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8-I6uuPPCzUSYNZvMjOZKP3fLrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/0g5L-nJ9D1eqklE2Nzn42ja-4HA.roa
Signing time: Wed 11 May 2022 08:11:34 +0000
ROA not before: Wed 11 May 2022 08:11:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49584
IP address blocks: 185.179.112.0/24 maxlen: 24
185.179.114.0/24 maxlen: 24
185.179.113.0/24 maxlen: 24
185.179.115.0/24 maxlen: 24
2a0e:1c40:4000::/48 maxlen: 48
2a0e:1c40:2000::/48 maxlen: 48
2a0e:1c40:1::/48 maxlen: 48
2a0e:1c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99465483 (0x5edb90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3e23abae3cf0b351260d66f32339928fddf2ebb
Validity
Not Before: May 11 08:11:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d20e4bfa727d0f57aa9251363739f8da36bee070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:24:da:67:28:21:4e:93:6d:26:ed:9a:e3:10:
fe:da:69:89:c8:fc:82:09:1d:89:6a:cb:46:5b:36:
bb:86:2f:6e:68:3d:af:28:cd:a3:8d:06:a4:92:1a:
7f:61:a8:92:1f:c4:5c:2a:4a:a7:60:6a:19:38:fa:
3b:24:94:b5:41:3e:78:9c:c3:55:65:40:a0:98:bb:
a3:c4:2a:d0:60:c9:42:3e:35:06:19:db:80:6b:eb:
87:27:21:1b:66:f4:f9:97:31:f6:da:a5:bb:d5:b9:
4d:21:28:6b:9e:15:11:a7:dd:fb:7d:65:4c:43:5c:
78:96:83:97:ab:a0:34:3c:0b:90:67:c3:28:68:2b:
0b:5f:8e:38:79:fc:94:56:84:84:a5:a7:07:ef:b0:
54:77:d9:cf:73:66:4f:9b:e2:67:79:c6:29:41:db:
fa:19:11:9f:3c:c7:d2:ac:6b:38:73:2d:41:2c:33:
74:c4:44:8f:a5:ad:27:4d:cb:9d:09:6d:fc:06:ac:
1d:b2:72:35:78:7a:8b:71:ef:53:3e:91:58:5f:60:
a0:b9:8d:a5:ba:84:5c:5f:67:bf:d6:86:4b:f0:43:
dd:8d:db:f4:7e:99:37:9a:35:13:4a:eb:b7:fe:d8:
1c:14:23:c3:46:4e:5b:67:8d:7b:1e:01:3d:10:ae:
ca:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0E:4B:FA:72:7D:0F:57:AA:92:51:36:37:39:F8:DA:36:BE:E0:70
X509v3 Authority Key Identifier:
keyid:F3:E2:3A:BA:E3:CF:0B:35:12:60:D6:6F:32:33:99:28:FD:DF:2E:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8-I6uuPPCzUSYNZvMjOZKP3fLrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/0g5L-nJ9D1eqklE2Nzn42ja-4HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/0868af-f2d7-4905-88d2-9db6665449cb/1/8-I6uuPPCzUSYNZvMjOZKP3fLrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.112.0/22
IPv6:
2a0e:1c40::/29
Signature Algorithm: sha256WithRSAEncryption
2d:c9:72:94:3e:81:fe:e4:35:45:2a:09:d4:aa:05:32:c8:52:
c4:a5:e5:fe:cc:02:d2:d7:f4:0a:d3:e1:b1:af:8b:c7:8c:49:
6a:9e:0d:26:c4:13:48:d1:65:0e:17:c3:96:0f:18:56:98:b3:
f1:1d:ae:b1:cd:92:7f:db:37:6d:41:67:fc:c1:1a:1c:54:8c:
c3:bd:36:fc:55:fc:ef:45:78:a6:91:32:56:8b:56:7a:f0:ba:
38:56:99:2f:fe:54:24:e4:2e:eb:7b:87:b9:e7:0f:42:83:9e:
6c:b5:e0:fa:2b:5f:fe:5a:36:61:c5:af:1d:aa:bd:de:f5:b3:
44:b5:be:e7:0b:ad:73:b6:cd:76:0c:c1:60:ae:f2:68:96:74:
c0:e7:c5:3d:33:7c:7c:fb:74:d0:78:cd:e1:d9:21:29:cd:84:
88:63:32:1c:fb:1a:0a:a6:7f:36:72:f9:1e:75:74:20:61:90:
26:8c:8f:61:ed:ab:21:50:04:a4:9a:b4:5a:41:a4:71:d7:4f:
c6:27:50:43:73:e4:0e:4b:da:9b:91:3a:d5:b6:50:89:c6:cf:
47:c0:e1:9a:e0:e9:90:53:55:71:5f:3e:5e:42:b9:46:30:09:
37:c5:8e:17:6e:63:dc:10:0a:53:31:c2:0f:87:58:f0:22:d0:
2e:07:39:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:44:32 2023 by rpki-client on console.sobornost.net