Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/P716L03WUyRRRExFpsr1OGTD2Ec.roa
File: P716L03WUyRRRExFpsr1OGTD2Ec.roa (raw, json)
Hash identifier: H7VW0H8KBrCxvkd4xm74pRPEJuPN/iT8rxDy4kUZaNc=
Subject key identifier: 3F:BD:7A:2F:4D:D6:53:24:51:44:4C:45:A6:CA:F5:38:64:C3:D8:47
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0B38B485
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/P716L03WUyRRRExFpsr1OGTD2Ec.roa
Signing time: Mon 18 Apr 2022 16:13:52 +0000
ROA not before: Mon 18 Apr 2022 16:13:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 185.152.92.0/22 maxlen: 24
85.239.36.0/22 maxlen: 24
85.239.48.0/22 maxlen: 22
85.239.56.0/22 maxlen: 24
85.239.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188265605 (0xb38b485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Apr 18 16:13:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fbd7a2f4dd6532451444c45a6caf53864c3d847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cd:5b:70:c0:53:f0:18:6f:bf:49:60:c6:cb:
9b:d2:ec:18:1c:f7:85:3f:49:b2:8b:e4:98:99:af:
34:71:5e:18:ec:1e:0c:97:e6:bd:1d:46:5f:75:4f:
22:52:1e:b2:ec:ce:cf:41:b3:8a:8f:b0:b1:d5:c6:
e5:96:4c:cb:27:c3:30:58:d7:f2:1a:03:07:9d:72:
ce:00:c5:2c:3f:2d:b7:af:59:4f:df:de:67:c5:6d:
0f:02:61:19:29:45:d3:f4:f2:46:5c:e7:35:a1:a0:
8b:03:bb:41:6b:28:35:96:b8:ac:1b:b0:27:19:c1:
5a:da:f6:2e:1f:f8:06:91:f3:27:83:22:98:95:f7:
e6:40:5d:b3:b8:c9:fa:05:f2:cf:bc:6a:71:6b:a7:
32:ee:cb:63:6b:c8:87:b1:f7:39:48:99:8b:1b:3f:
59:52:37:9c:cb:2f:9b:1e:21:c2:6c:0a:5f:91:44:
ff:ad:6b:6f:f1:64:f7:29:96:89:8d:86:2a:9c:49:
d5:17:09:bc:62:ee:5d:c9:70:f5:09:a1:dc:19:ce:
ee:8d:64:00:d8:b9:8a:1d:50:d8:3c:54:a1:8b:a6:
23:50:f8:b5:e6:6f:e0:5d:d4:3a:d4:b8:a3:e7:70:
58:0d:1c:08:1c:0d:47:10:d0:bd:9c:c7:12:91:81:
1c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BD:7A:2F:4D:D6:53:24:51:44:4C:45:A6:CA:F5:38:64:C3:D8:47
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/P716L03WUyRRRExFpsr1OGTD2Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.36.0/22
85.239.48.0-85.239.59.255
185.152.92.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:08:fd:c1:ce:4c:a3:ae:bc:e0:25:bf:ad:42:c9:91:55:80:
a3:cb:74:4d:4b:15:af:3d:eb:02:60:b0:da:87:13:20:73:13:
ee:9e:e0:43:b8:e4:75:4e:87:7c:66:6e:c4:a3:47:f6:72:05:
e2:cb:54:fa:62:e0:f9:5b:41:fc:72:f5:d9:d0:2c:eb:df:a4:
36:14:f2:f0:b8:48:a4:7f:90:e6:7a:d8:02:4f:e6:60:1f:53:
d5:4c:f5:b8:29:24:6c:7f:c0:76:20:99:18:13:73:8b:42:91:
3e:b0:cc:0f:c2:94:aa:74:72:d1:23:88:70:95:d1:e8:d6:52:
f5:bd:f8:a2:60:30:32:c0:44:ff:00:64:4d:5b:ff:35:2b:de:
23:1d:bb:9d:8e:f0:48:ec:9b:80:c5:e2:15:58:ca:6b:de:b3:
82:55:e5:f9:d9:5e:a8:f8:7a:63:7b:61:ac:de:bb:2a:d7:4b:
c1:9e:48:f5:25:64:eb:e8:fe:1b:8a:61:6a:80:51:ee:b4:4c:
c3:b1:a3:ca:64:23:97:2e:8c:15:09:95:12:e3:1c:22:ca:49:
fb:13:20:2d:5b:6b:cc:af:27:20:81:af:cb:25:1c:78:40:2a:
8c:10:87:18:58:67:f5:e5:ec:90:f5:a8:50:6d:16:05:4a:ff:
20:b9:cb:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org