Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/_PYsTrY95tw3-PyxaE45YUMbKa4.roa
File: _PYsTrY95tw3-PyxaE45YUMbKa4.roa (raw, json)
Hash identifier: gsRTEUs6i+Ral39PPWujpUNV9XAak6gHJzBN6NvcFIw=
Subject key identifier: FC:F6:2C:4E:B6:3D:E6:DC:37:F8:FC:B1:68:4E:39:61:43:1B:29:AE
Certificate issuer: /CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Certificate serial: 35B6FFAD
Authority key identifier: E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/_PYsTrY95tw3-PyxaE45YUMbKa4.roa
Signing time: Sat 01 Jan 2022 16:06:29 +0000
ROA not before: Sat 01 Jan 2022 16:06:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201396
IP address blocks: 185.75.148.0/24 maxlen: 24
188.74.44.0/22 maxlen: 22
2a03:4b21::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901185453 (0x35b6ffad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e39f1a6e84c0277efcb56d942b0eb5e456471129
Validity
Not Before: Jan 1 16:06:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcf62c4eb63de6dc37f8fcb1684e3961431b29ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9c:62:fd:38:5e:00:ee:62:0e:9b:54:14:67:
b1:55:4b:c3:3d:ee:30:d1:fd:07:66:de:b2:c0:05:
e8:2c:75:b4:72:69:87:b7:5f:73:ce:74:92:68:7c:
dd:71:30:a5:7b:85:d2:dd:0e:4c:a9:57:a6:9e:f1:
cf:bd:62:48:15:8f:46:d6:6d:ee:c9:d4:e0:49:54:
bc:ff:ac:96:75:b4:3c:43:ef:3a:c0:02:94:b3:bb:
a2:b4:c7:b0:5d:86:91:61:a9:9b:eb:04:c2:90:c2:
3f:61:eb:f5:44:f6:42:70:74:e0:da:63:fa:9c:a0:
fb:f7:6a:2a:5c:16:d5:f1:4a:b2:d3:69:4a:e7:9d:
bf:29:40:ac:2c:9b:89:2e:50:ae:93:b6:38:29:92:
97:1a:bf:14:39:e1:52:ec:e3:23:75:09:5c:16:1d:
1e:e2:03:10:23:38:73:c8:52:fa:48:93:3d:53:d4:
36:56:94:8d:14:17:bd:5e:81:c3:08:25:80:35:91:
82:7a:80:ca:a0:18:fe:8a:c0:71:b5:eb:c8:b3:86:
4a:96:e2:d2:f5:b7:b8:cc:6c:0a:ed:68:d2:5c:92:
e3:96:fc:51:93:0b:d3:20:2d:ff:0d:84:c9:23:d3:
1f:13:e5:2e:05:dd:ed:5a:6e:fa:b9:cb:df:05:a5:
e8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F6:2C:4E:B6:3D:E6:DC:37:F8:FC:B1:68:4E:39:61:43:1B:29:AE
X509v3 Authority Key Identifier:
keyid:E3:9F:1A:6E:84:C0:27:7E:FC:B5:6D:94:2B:0E:B5:E4:56:47:11:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/458aboTAJ378tW2UKw615FZHESk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/_PYsTrY95tw3-PyxaE45YUMbKa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/160a77-756d-441a-86c3-0e5392757f82/1/458aboTAJ378tW2UKw615FZHESk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.148.0/24
188.74.44.0/22
IPv6:
2a03:4b21::/32
Signature Algorithm: sha256WithRSAEncryption
97:cf:b4:b1:80:4b:fb:de:6e:0f:26:59:ef:3e:a6:55:51:43:
bc:82:15:5b:9b:0d:50:d9:94:0b:80:92:4c:c9:79:f3:8d:c1:
f6:cd:7d:6a:c3:ec:5a:09:77:57:05:e3:c2:62:3c:4c:0e:59:
cb:05:72:e3:9a:d2:2d:98:a6:79:d4:eb:82:06:78:d2:e7:1c:
ca:13:08:f1:0d:5b:cb:b8:c5:52:1b:8d:e9:5f:07:a0:dd:04:
7f:64:25:8a:4e:31:06:e1:f0:61:e3:22:21:ba:7b:ad:42:1b:
15:82:63:81:e9:cc:21:39:6f:82:bf:6c:51:0a:16:85:e1:be:
8b:6e:d2:23:46:44:f0:a6:49:e4:ec:80:0b:9e:a3:3a:dc:71:
7b:25:3e:e5:c8:f9:3f:44:32:7e:a9:39:0a:32:30:45:1c:de:
c8:41:83:48:49:1e:12:23:82:68:80:cf:cd:61:54:ae:45:4c:
f5:06:af:cf:75:ba:0f:19:b3:7a:49:03:48:15:36:79:88:6f:
27:9d:29:18:68:26:e8:9c:29:69:3c:99:c5:dc:ec:e8:e4:50:
ca:32:fe:eb:77:37:5e:0b:f8:eb:92:89:fc:8f:4a:05:ee:27:
83:ef:bb:cf:c9:2d:b8:a3:e2:a9:fd:71:69:19:9e:5a:c1:5d:
ed:b4:70:b9
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIENbb/rTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MzlmMWE2ZTg0YzAyNzdlZmNiNTZkOTQyYjBlYjVlNDU2NDcxMTI5MB4XDTIyMDEw
MTE2MDYyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmNmNjJjNGViNjNk
ZTZkYzM3ZjhmY2IxNjg0ZTM5NjE0MzFiMjlhZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMOcYv04XgDuYg6bVBRnsVVLwz3uMNH9B2bessAF6Cx1tHJp
h7dfc850kmh83XEwpXuF0t0OTKlXpp7xz71iSBWPRtZt7snU4ElUvP+slnW0PEPv
OsAClLO7orTHsF2GkWGpm+sEwpDCP2Hr9UT2QnB04Npj+pyg+/dqKlwW1fFKstNp
SuedvylArCybiS5QrpO2OCmSlxq/FDnhUuzjI3UJXBYdHuIDECM4c8hS+kiTPVPU
NlaUjRQXvV6BwwglgDWRgnqAyqAY/orAcbXryLOGSpbi0vW3uMxsCu1o0lyS45b8
UZML0yAt/w2EySPTHxPlLgXd7Vpu+rnL3wWl6PUCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBT89ixOtj3m3Df4/LFoTjlhQxsprjAfBgNVHSMEGDAWgBTjnxpuhMAnfvy1
bZQrDrXkVkcRKTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzQ1OGFib1RBSjM3OHRXMlVLdzYxNUZaSEVTay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2UvMTYwYTc3LTc1NmQtNDQxYS04NmMzLTBlNTM5Mjc1N2Y4Mi8x
L19QWXNUclk5NXR3My1QeXhhRTQ1WVVNYkthNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Uv
MTYwYTc3LTc1NmQtNDQxYS04NmMzLTBlNTM5Mjc1N2Y4Mi8xLzQ1OGFib1RBSjM3
OHRXMlVLdzYxNUZaSEVTay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEALlLlAMEArxKLDANBAIAAjAHAwUA
KgNLITANBgkqhkiG9w0BAQsFAAOCAQEAl8+0sYBL+95uDyZZ7z6mVVFDvIIVW5sN
UNmUC4CSTMl5843B9s19asPsWgl3VwXjwmI8TA5ZywVy45rSLZimedTrggZ40ucc
yhMI8Q1by7jFUhuN6V8HoN0Ef2Qlik4xBuHwYeMiIbp7rUIbFYJjgenMITlvgr9s
UQoWheG+i27SI0ZE8KZJ5OyAC56jOtxxeyU+5cj5P0Qyfqk5CjIwRRzeyEGDSEke
EiOCaIDPzWFUrkVM9Qavz3W6DxmzekkDSBU2eYhvJ50pGGgm6JwpaTyZxdzs6ORQ
yjL+63c3Xgv465KJ/I9KBe4ng++7z8ktuKPiqf1xaRmeWsFd7bRwuQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:28 2024 by rpki-client on console-fra.rpki-client.org