Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/OtqYLYCiGEnsfNiMnjUUHT_yykY.roa
File: OtqYLYCiGEnsfNiMnjUUHT_yykY.roa (raw, json)
Hash identifier: UeiXmTICaWjFpC0dwpnRCzjT6C6v9rRzxtSmIabCr7A=
Subject key identifier: 3A:DA:98:2D:80:A2:18:49:EC:7C:D8:8C:9E:35:14:1D:3F:F2:CA:46
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33D97BD4
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/OtqYLYCiGEnsfNiMnjUUHT_yykY.roa
Signing time: Sat 01 Jan 2022 04:55:30 +0000
ROA not before: Sat 01 Jan 2022 04:55:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8517
IP address blocks: 193.140.244.0/22 maxlen: 22
193.140.248.0/22 maxlen: 22
193.140.252.0/23 maxlen: 23
193.255.58.0/24 maxlen: 24
193.140.183.0/24 maxlen: 24
194.27.232.0/22 maxlen: 22
194.27.236.0/23 maxlen: 23
95.183.128.0/17 maxlen: 24
194.27.43.0/24 maxlen: 24
193.140.4.0/22 maxlen: 22
193.140.1.0/24 maxlen: 24
193.140.2.0/23 maxlen: 23
193.140.0.0/16 maxlen: 24
185.7.0.0/22 maxlen: 22
193.140.24.0/22 maxlen: 22
193.140.35.0/24 maxlen: 24
194.27.0.0/16 maxlen: 24
193.255.0.0/16 maxlen: 24
193.140.134.0/24 maxlen: 24
193.140.152.0/22 maxlen: 22
193.140.159.0/24 maxlen: 24
193.140.68.0/23 maxlen: 23
193.140.83.0/24 maxlen: 24
79.123.128.0/17 maxlen: 24
193.140.88.0/24 maxlen: 24
193.140.98.0/23 maxlen: 23
2001:a98::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 869891028 (0x33d97bd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ada982d80a21849ec7cd88c9e35141d3ff2ca46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ad:99:0a:46:75:09:60:4c:43:5c:60:3f:d0:
64:20:67:70:2f:7e:76:3a:df:12:d4:65:e6:e7:52:
cf:0e:1b:69:94:6e:0e:9b:2b:d4:d0:7d:37:d0:20:
f8:b0:b2:9f:79:36:ed:b3:78:b1:f4:c5:1b:ec:0e:
c5:f9:da:29:f7:89:19:82:29:b6:6c:24:b3:0a:22:
fa:b9:09:76:fd:83:64:4b:38:8a:e1:10:fa:bd:42:
14:a5:80:da:ff:8a:a9:6f:15:a3:d3:bd:0b:69:a5:
d0:5c:ce:ff:14:db:c4:be:5d:c3:d9:a0:77:0e:28:
bb:76:55:17:fb:ca:08:5d:ae:58:0a:37:ba:f0:e6:
be:fa:d4:17:fa:ab:c1:aa:fa:9f:84:11:bf:61:6f:
69:4b:87:dd:aa:37:97:91:09:b5:40:92:9a:17:cf:
57:73:ca:dd:6e:7c:30:72:23:ad:e2:2d:f3:50:77:
88:c9:11:b9:51:a8:7a:a2:fd:83:79:ab:5c:b5:74:
d5:47:87:dc:0a:91:09:55:cc:e5:70:8d:ab:58:bd:
ea:fb:d9:11:2c:d1:ff:2f:e3:33:0a:29:c8:aa:bf:
66:de:c9:08:73:2c:85:02:f5:10:55:7e:bb:08:e0:
ca:a8:a6:d0:ff:8e:3d:df:db:15:ee:8b:74:22:b1:
27:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:DA:98:2D:80:A2:18:49:EC:7C:D8:8C:9E:35:14:1D:3F:F2:CA:46
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/OtqYLYCiGEnsfNiMnjUUHT_yykY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.128.0/17
95.183.128.0/17
185.7.0.0/22
193.140.0.0/16
193.255.0.0/16
194.27.0.0/16
IPv6:
2001:a98::/32
Signature Algorithm: sha256WithRSAEncryption
43:2b:56:62:94:dc:c5:70:2d:26:3c:cf:61:ae:8e:01:90:10:
57:5f:95:69:60:73:86:26:2a:fa:9c:6b:81:67:a7:1c:a1:b4:
9b:5c:02:c7:00:2e:a7:bd:3c:8a:8b:71:5f:44:b9:26:78:4d:
48:51:22:7e:be:a6:d8:7c:51:b6:68:ec:5d:a3:26:26:67:82:
5d:22:68:59:90:6f:c1:d4:75:30:0f:e2:87:5a:e4:87:27:04:
9c:f4:6e:b9:e0:36:3d:a9:e3:3e:be:6f:b5:44:fe:cf:39:4f:
59:fa:3f:c9:7c:d7:ec:0e:e0:a4:94:37:e1:fc:05:b8:69:f4:
f6:38:a0:ff:05:5d:eb:10:dc:35:e1:06:7f:2e:95:4e:f6:57:
07:ff:c2:ac:7d:67:d8:2b:c4:27:62:0f:6b:64:6a:a4:20:a9:
56:4e:65:e0:be:f9:cd:33:6d:cd:6e:62:df:de:4d:95:8e:ba:
15:a8:a3:3b:cb:f1:c1:6c:8d:62:22:f8:11:94:d5:53:25:11:
51:9f:84:8c:05:e4:8d:33:3c:72:d0:28:df:5f:ec:18:03:2a:
eb:8f:5e:28:d7:57:b3:9c:f7:9c:bf:5f:c7:d4:5e:ef:a9:05:
95:27:90:4c:59:14:bc:06:49:9e:62:a7:b9:fd:8a:ac:f2:e3:
c8:e9:31:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org