Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/786b51-e2df-4fd6-9c9b-f567c3e9f5ff/1/ry_YOy0zDq999mJxQbmXPF9vVUs.roa
File: ry_YOy0zDq999mJxQbmXPF9vVUs.roa (raw, json)
Hash identifier: UwwZdqmZYcxoUT6IJ4190eI10vdYk7/E9E10bGBdjNU=
Subject key identifier: AF:2F:D8:3B:2D:33:0E:AF:7D:F6:62:71:41:B9:97:3C:5F:6F:55:4B
Certificate issuer: /CN=4ec3a062cb96d9a3f21a8b2da848f81c6f73bf95
Certificate serial: 06BF9AD2
Authority key identifier: 4E:C3:A0:62:CB:96:D9:A3:F2:1A:8B:2D:A8:48:F8:1C:6F:73:BF:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TsOgYsuW2aPyGostqEj4HG9zv5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/786b51-e2df-4fd6-9c9b-f567c3e9f5ff/1/ry_YOy0zDq999mJxQbmXPF9vVUs.roa
Signing time: Tue 03 May 2022 10:42:12 +0000
ROA not before: Tue 03 May 2022 10:42:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44932
IP address blocks: 188.209.119.0/24 maxlen: 24
185.147.176.0/24 maxlen: 24
185.147.179.0/24 maxlen: 24
185.147.177.0/24 maxlen: 24
185.147.178.0/24 maxlen: 24
188.209.117.0/24 maxlen: 24
188.209.118.0/24 maxlen: 24
188.209.116.0/24 maxlen: 24
2a0b:1fc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113220306 (0x6bf9ad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ec3a062cb96d9a3f21a8b2da848f81c6f73bf95
Validity
Not Before: May 3 10:42:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af2fd83b2d330eaf7df6627141b9973c5f6f554b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9f:34:e0:79:23:95:3d:c4:e7:d1:8d:f4:86:
1d:f5:3c:b6:fa:98:ef:e3:44:a1:76:d9:f6:1d:8e:
88:b4:1f:c7:32:f0:11:de:25:a8:20:45:20:0a:bb:
d7:f9:56:34:61:f4:6e:46:4e:84:9d:40:a5:97:bb:
06:c6:ef:c3:fb:ce:a6:0b:c0:2a:c8:52:cf:a0:14:
f4:87:24:f5:88:87:8f:d1:7f:e4:10:bc:c5:a8:17:
f7:51:2b:2e:7f:b1:2f:d6:8a:5c:1c:99:7f:51:7b:
89:f1:79:ee:dc:53:75:da:27:74:0b:dd:ad:d4:25:
ca:78:eb:a1:c7:00:1b:5c:03:e4:63:80:ba:1e:15:
a2:7a:29:4e:0c:f1:5d:ed:fb:7a:1f:4f:b0:c2:ba:
f5:b4:d9:a5:57:3f:1c:68:2d:6d:18:7f:2d:ae:da:
89:63:e0:9e:10:2f:61:df:7b:d2:44:f8:b2:ee:b6:
01:59:23:69:5a:1b:17:c1:a6:d7:9c:74:93:fe:ad:
f0:e3:3c:4f:64:8e:25:73:8f:f9:76:76:5c:6d:69:
a1:01:b9:e6:41:8d:e7:9b:f2:3a:3a:d0:2d:6f:ec:
47:c1:95:c8:dd:a4:e7:02:ec:d6:16:90:83:bd:0c:
bd:8e:45:87:5a:0d:9c:42:31:e2:86:af:84:95:7b:
09:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2F:D8:3B:2D:33:0E:AF:7D:F6:62:71:41:B9:97:3C:5F:6F:55:4B
X509v3 Authority Key Identifier:
keyid:4E:C3:A0:62:CB:96:D9:A3:F2:1A:8B:2D:A8:48:F8:1C:6F:73:BF:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TsOgYsuW2aPyGostqEj4HG9zv5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/786b51-e2df-4fd6-9c9b-f567c3e9f5ff/1/ry_YOy0zDq999mJxQbmXPF9vVUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/786b51-e2df-4fd6-9c9b-f567c3e9f5ff/1/TsOgYsuW2aPyGostqEj4HG9zv5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.176.0/22
188.209.116.0/22
IPv6:
2a0b:1fc0::/29
Signature Algorithm: sha256WithRSAEncryption
95:06:a0:35:ec:22:09:e4:79:95:30:e2:77:97:b4:19:94:09:
83:38:76:29:89:bb:b6:c0:f5:8a:c3:66:32:22:ae:51:6d:e7:
7e:2d:d8:d2:03:3c:92:bc:22:65:ba:ff:d8:bb:e1:14:2e:de:
6b:03:d1:29:f3:9d:61:f7:51:bf:c3:28:8e:9d:49:fc:7f:88:
42:03:d5:26:06:cf:66:5c:d0:61:21:ae:ba:ed:33:f2:f0:2d:
e8:c3:e5:ab:4a:1c:51:e4:73:cb:04:7e:84:6b:89:90:6a:c3:
3a:32:17:7a:a8:7b:2b:ce:7f:a9:15:55:e9:31:6b:c9:b0:21:
8a:21:3f:d1:82:d0:aa:23:ee:a2:c9:3f:3b:f8:3f:c1:a8:74:
e6:b9:08:49:25:c6:8d:23:64:d7:63:13:1a:25:ca:89:ce:ee:
24:a4:03:ac:51:c9:65:77:30:c3:5a:51:e7:e1:86:01:e2:f4:
ab:fd:5c:7b:bb:37:30:f7:16:66:33:cb:67:83:09:2b:a5:a5:
af:e7:73:68:16:9e:2f:d1:17:4b:69:d0:86:1b:b6:e7:95:02:
5c:07:a6:a6:1c:15:3a:06:13:0b:5b:c2:d7:1a:c6:12:9c:38:
76:63:a3:9e:d7:80:bc:56:20:84:fb:76:62:a8:2f:6f:72:b1:
64:9d:8f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:07 2024 by rpki-client on console-ams.rpki-client.org