Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/AxtycFR-81dxSuNmtZu7co0PRz4.roa
File: AxtycFR-81dxSuNmtZu7co0PRz4.roa (raw, json)
Hash identifier: S2e43A7Ud1xrOcY2B/trsmWUycCctGrUGdn5kfAkfw8=
Subject key identifier: 03:1B:72:70:54:7E:F3:57:71:4A:E3:66:B5:9B:BB:72:8D:0F:47:3E
Certificate issuer: /CN=07acd9a69e1b8498708458ac52207cfac1f2c3cb
Certificate serial: 056E6B
Authority key identifier: 07:AC:D9:A6:9E:1B:84:98:70:84:58:AC:52:20:7C:FA:C1:F2:C3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6zZpp4bhJhwhFisUiB8-sHyw8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/AxtycFR-81dxSuNmtZu7co0PRz4.roa
Signing time: Wed 01 Jun 2022 12:28:22 +0000
ROA not before: Wed 01 Jun 2022 12:28:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50698
IP address blocks: 159.253.232.0/21 maxlen: 22
185.116.76.0/22 maxlen: 23
109.202.64.0/19 maxlen: 20
2a06:4400::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355947 (0x56e6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07acd9a69e1b8498708458ac52207cfac1f2c3cb
Validity
Not Before: Jun 1 12:28:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=031b7270547ef357714ae366b59bbb728d0f473e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e1:93:61:9c:52:34:69:64:f1:e1:e0:f4:b5:
f1:d6:60:46:93:73:1f:23:8d:af:2c:ee:53:4f:c2:
be:92:ba:a1:2c:a1:4f:7a:ad:fe:68:de:b0:e3:59:
cb:98:36:a0:9f:d1:fe:65:72:f4:40:39:89:7f:96:
d8:6c:f6:8c:51:34:73:08:f2:b2:2c:e8:90:9c:a7:
79:27:89:b9:70:83:b8:09:ed:0e:ae:fe:db:44:bb:
99:c2:d9:2b:80:dd:32:9c:36:4b:b6:61:69:d3:b0:
55:34:05:ca:42:b6:b3:f6:a6:58:e5:47:54:76:a6:
37:23:6c:93:a0:ba:75:de:a6:8c:2a:26:67:6c:ed:
da:d5:45:2d:a1:f7:75:2f:94:00:41:55:89:98:4a:
48:62:86:77:b4:cb:28:41:56:45:9e:4c:e4:47:f3:
b6:3d:1c:2b:eb:d3:06:4b:7f:96:36:92:6e:9a:8d:
1e:03:66:e3:b8:a4:28:1e:4d:ae:5c:94:a9:5c:08:
ac:11:f7:28:8a:53:ed:78:3f:12:01:62:26:ad:11:
2e:78:ad:85:a1:de:15:10:12:64:9b:50:0f:c0:a2:
56:4d:45:97:31:f2:53:9a:bd:a3:02:04:ee:60:97:
56:75:7e:9a:c7:33:67:55:1b:d2:fa:1a:c5:54:3a:
ca:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1B:72:70:54:7E:F3:57:71:4A:E3:66:B5:9B:BB:72:8D:0F:47:3E
X509v3 Authority Key Identifier:
keyid:07:AC:D9:A6:9E:1B:84:98:70:84:58:AC:52:20:7C:FA:C1:F2:C3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6zZpp4bhJhwhFisUiB8-sHyw8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/AxtycFR-81dxSuNmtZu7co0PRz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/cc8bc8-2440-499d-9d97-ba849778ff58/1/B6zZpp4bhJhwhFisUiB8-sHyw8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.202.64.0/19
159.253.232.0/21
185.116.76.0/22
IPv6:
2a06:4400::/29
Signature Algorithm: sha256WithRSAEncryption
12:dc:91:9c:b7:7c:1f:ec:be:5a:8a:64:a0:93:5a:ea:7e:8c:
12:86:32:25:cf:e9:de:cb:30:54:09:af:53:72:e5:5a:3a:75:
e1:4b:81:79:b2:0b:cb:f8:96:a7:4f:ec:a2:04:a9:e2:28:e0:
a3:3b:82:94:97:ce:98:28:9b:84:2a:5d:79:88:10:fd:d3:f3:
53:45:6d:91:90:fd:8e:ed:cc:be:22:c7:ca:30:6d:b0:db:84:
84:b2:cc:94:ed:fc:94:82:b1:e9:3b:8d:27:80:cd:3b:96:89:
b9:4e:65:cf:de:a3:99:75:d9:87:df:60:7b:49:ff:85:51:02:
d3:6b:d6:aa:69:36:46:64:45:ab:9f:c8:f3:3d:04:22:1b:78:
33:4c:a1:11:31:30:57:06:31:77:b4:82:4b:35:5b:4f:d6:95:
51:e6:fa:42:ce:4a:8a:cf:49:3e:89:c5:da:6f:4c:a2:45:4d:
91:6c:72:e7:7b:ae:96:39:3f:a6:56:17:29:b0:19:5f:6e:3a:
25:b6:70:a8:f9:1f:1f:56:44:42:23:b9:e2:e1:db:88:5c:5d:
7d:56:46:6d:b1:e1:0f:b6:a8:8f:c4:65:aa:3d:a9:cd:fa:27:
a9:7d:51:fc:b7:63:b1:cd:00:3f:ee:74:89:19:66:79:a3:ee:
6a:37:59:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:40 2024 by rpki-client on console-fra.rpki-client.org