Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/AyJvqGPJViPKgFSQRJUwQ4lhxZA.roa
File: AyJvqGPJViPKgFSQRJUwQ4lhxZA.roa (raw, json)
Hash identifier: hwB522iGsw7+BGbvYE0e+oH7g2Qmdco/jbtGLxie41Q=
Subject key identifier: 03:22:6F:A8:63:C9:56:23:CA:80:54:90:44:95:30:43:89:61:C5:90
Certificate issuer: /CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Certificate serial: 35B90F25
Authority key identifier: E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/AyJvqGPJViPKgFSQRJUwQ4lhxZA.roa
Signing time: Sat 01 Jan 2022 16:06:30 +0000
ROA not before: Sat 01 Jan 2022 16:06:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206452
IP address blocks: 188.74.40.0/22 maxlen: 22
2a03:4b27:d000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901320485 (0x35b90f25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Validity
Not Before: Jan 1 16:06:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03226fa863c95623ca805490449530438961c590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:96:d3:8b:ac:f9:c0:42:d4:70:ea:f2:f9:
2b:db:98:96:c3:dd:99:e6:74:ea:b9:21:4d:09:2f:
1b:8c:f1:55:a0:1c:74:66:d2:80:87:b6:70:c4:50:
4e:e7:5e:b8:a7:5b:f6:55:47:4a:db:ce:82:cc:c9:
0a:ee:ee:b0:ef:c3:1b:d5:d4:14:78:8b:00:e8:ae:
b1:42:80:58:0d:c3:fe:91:4b:5f:d7:f2:c1:e7:d3:
f4:57:a5:3e:f7:fd:78:35:5d:d5:20:de:bf:be:2b:
43:7f:50:1b:3e:d4:d6:24:d4:7a:b5:1e:82:03:16:
bd:88:e7:7c:d3:9c:a6:32:74:d2:a1:da:b7:32:cb:
f8:69:c1:e6:73:39:f1:2f:4e:13:f6:c5:a9:c0:f9:
81:ac:28:12:65:be:b4:41:32:01:70:4b:89:da:73:
fd:f2:cb:fd:ee:8d:3d:37:58:a2:28:c0:8f:a8:2f:
96:ca:2c:07:57:dc:0d:57:85:7a:36:7f:6b:46:4a:
32:96:5c:88:6d:41:0b:7c:09:32:0b:dd:dd:79:1b:
6c:1f:b4:5d:87:84:b6:5c:a3:15:c9:7e:a9:98:01:
b6:d1:ca:df:41:30:1f:14:d1:59:42:2c:57:30:9b:
6e:97:14:6c:32:52:f4:bf:c2:23:a8:d6:2e:15:1d:
5d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:22:6F:A8:63:C9:56:23:CA:80:54:90:44:95:30:43:89:61:C5:90
X509v3 Authority Key Identifier:
keyid:E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/AyJvqGPJViPKgFSQRJUwQ4lhxZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/458aboTAJ378tW2UKw615FZHESk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.74.40.0/22
IPv6:
2a03:4b27:d000::/36
Signature Algorithm: sha256WithRSAEncryption
34:00:e4:20:f8:8f:9f:7d:1f:26:d2:bd:cf:2b:80:db:52:23:
f1:36:71:5b:06:9e:e1:6d:91:56:8e:ca:45:58:cd:8a:70:d8:
66:e7:4d:5f:b7:91:b9:a2:c1:c1:d7:2b:27:38:1b:13:e6:fe:
6d:46:fc:15:64:95:b6:c0:8c:a6:a1:75:f2:db:9e:0b:68:e8:
83:af:66:48:1b:81:90:bd:cf:6d:14:27:9d:0a:47:60:85:79:
b3:ce:5f:37:80:67:ed:1c:f8:14:19:75:34:ea:b3:c8:e8:d9:
7b:97:ed:da:35:22:10:1d:f0:5e:e3:bb:64:57:b3:3d:7b:35:
dd:56:17:0e:95:8e:5c:72:08:d8:c1:c9:54:8e:83:40:85:94:
5c:bc:a4:dc:da:f6:34:01:64:7b:b5:2d:c6:6a:77:97:d3:d6:
43:ae:36:f0:26:40:2e:f5:15:b3:3f:4e:3c:0a:69:80:94:9d:
9b:37:20:20:56:c3:ee:36:7c:be:20:03:e6:9e:bd:da:50:38:
ea:8d:d1:49:96:c1:03:de:c5:ed:45:54:04:f9:c1:9e:91:57:
28:8e:07:e2:50:e2:00:88:5d:6e:d7:eb:45:95:47:c6:88:fc:
fa:f6:2c:ea:4f:93:4f:bd:c5:35:21:d6:a4:83:de:70:9a:28:
95:4b:bc:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:27 2024 by rpki-client on console-ams.rpki-client.org