Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/ryhtXR1RssVcycSkvuwPp2QZ81k.roa
File: ryhtXR1RssVcycSkvuwPp2QZ81k.roa (raw, json)
Hash identifier: 0qK04mRr+YRl/PwJCoO5R8sOmnLp8nHi7PBYBtsdocs=
Subject key identifier: AF:28:6D:5D:1D:51:B2:C5:5C:C9:C4:A4:BE:EC:0F:A7:64:19:F3:59
Certificate issuer: /CN=b244d27188fe526bd72636738195d1eb7f606335
Certificate serial: 065F9449
Authority key identifier: B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/ryhtXR1RssVcycSkvuwPp2QZ81k.roa
Signing time: Sat 01 Jan 2022 16:01:34 +0000
ROA not before: Sat 01 Jan 2022 16:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25522
IP address blocks: 194.153.124.0/22 maxlen: 22
194.153.120.0/22 maxlen: 22
2001:67c:704::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106927177 (0x65f9449)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b244d27188fe526bd72636738195d1eb7f606335
Validity
Not Before: Jan 1 16:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af286d5d1d51b2c55cc9c4a4beec0fa76419f359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:15:27:76:81:e6:5f:1b:31:4b:11:e8:e3:
26:b8:33:fd:74:b2:e1:95:2f:eb:6a:e8:a8:4f:62:
3c:74:f1:51:2d:8b:a0:e0:c4:5a:71:9f:62:60:1d:
0f:9d:94:49:12:02:7e:ba:8a:45:54:93:b5:9e:ba:
4a:43:1f:ea:3d:a2:ea:47:9b:09:da:db:80:9d:3e:
30:f1:5d:4f:3e:0c:b8:ce:7a:65:77:05:8d:73:3d:
7f:af:f0:a8:c5:3a:af:cd:50:7b:f3:af:7d:30:f4:
bb:0c:f0:2b:75:94:84:72:9c:da:6a:d4:03:ee:2f:
2d:a4:d3:db:a5:26:8d:2b:ba:06:99:cf:f3:ab:b1:
77:ee:2d:be:9b:50:80:58:16:b5:a7:a5:e5:aa:bb:
6e:06:fa:ef:97:5d:30:fa:d0:18:ca:b7:ef:d4:5a:
71:a2:37:d7:5e:94:71:49:9d:fd:40:0d:56:2a:0e:
e7:73:08:e5:75:31:3e:6e:69:7f:05:eb:e8:47:7f:
ab:71:ce:95:45:ff:92:4d:20:92:0b:26:17:cb:d1:
ed:b9:d4:64:ca:e7:75:62:18:8e:5b:46:55:15:9f:
56:24:ae:15:3c:60:72:cd:5e:30:7e:cf:b3:e7:f7:
66:63:aa:6d:5c:28:06:1a:d2:e6:c3:9c:92:f5:53:
6a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:28:6D:5D:1D:51:B2:C5:5C:C9:C4:A4:BE:EC:0F:A7:64:19:F3:59
X509v3 Authority Key Identifier:
keyid:B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/ryhtXR1RssVcycSkvuwPp2QZ81k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.120.0/21
IPv6:
2001:67c:704::/48
Signature Algorithm: sha256WithRSAEncryption
a1:29:94:71:7e:57:ca:9b:81:31:09:e0:76:2f:19:ba:47:2a:
53:49:e4:a2:f1:71:b3:34:40:a2:4d:de:62:5c:43:a6:4b:4e:
11:47:7c:25:c3:7a:db:01:ae:9a:d9:03:bd:a2:2b:43:36:86:
90:0d:9f:53:3f:21:10:25:e5:4c:95:02:1b:6e:b0:b6:ec:0e:
dd:d2:94:2c:2e:d6:0d:0b:36:b6:45:dd:54:25:40:85:ef:be:
e3:42:bb:2b:9f:22:33:75:bd:9f:24:60:26:f0:83:33:12:ac:
42:5f:63:0d:89:37:1f:a3:f2:a8:68:e9:f2:00:3a:9e:64:51:
ad:c2:5a:55:00:f1:33:ae:0f:fc:09:74:f2:d4:bf:1c:7e:14:
85:ce:8b:30:12:aa:d5:37:d1:f2:99:89:32:83:76:be:f3:7f:
60:c7:9d:04:3a:e8:8c:bb:82:e3:cf:3d:40:2a:ad:4b:b7:48:
d1:14:f6:24:f3:44:07:da:2a:3a:c4:a2:d9:1b:be:63:f4:b3:
ed:f9:70:8f:07:27:49:89:65:0e:5d:88:57:c6:19:03:bf:ca:
59:34:2d:61:5f:20:f6:8f:dc:3b:dc:cc:d6:d7:42:37:a0:d9:
07:30:09:ec:60:81:19:3a:5f:27:08:22:37:91:d7:26:b1:4d:
e6:11:4d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:23 2024 by rpki-client on console-fra.rpki-client.org