Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/5f83c4-640d-4ff3-9cf4-60627e115269/1/A-Y1RskAbxmkYshi3SdRv3p9P-o.roa
File: A-Y1RskAbxmkYshi3SdRv3p9P-o.roa (raw, json)
Hash identifier: ne6XOiV83OXLM9PgDy8TLStL61+V7dQ4HeyeubzdK1c=
Subject key identifier: 03:E6:35:46:C9:00:6F:19:A4:62:C8:62:DD:27:51:BF:7A:7D:3F:EA
Certificate issuer: /CN=08018478914871aab0e1c0036d3626ebad6e20cc
Certificate serial: 031B5B02
Authority key identifier: 08:01:84:78:91:48:71:AA:B0:E1:C0:03:6D:36:26:EB:AD:6E:20:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAGEeJFIcaqw4cADbTYm661uIMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/5f83c4-640d-4ff3-9cf4-60627e115269/1/A-Y1RskAbxmkYshi3SdRv3p9P-o.roa
Signing time: Sat 01 Jan 2022 09:06:21 +0000
ROA not before: Sat 01 Jan 2022 09:06:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212650
IP address blocks: 185.190.88.0/24 maxlen: 24
92.61.168.0/21 maxlen: 21
2a10:6540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52124418 (0x31b5b02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08018478914871aab0e1c0036d3626ebad6e20cc
Validity
Not Before: Jan 1 09:06:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03e63546c9006f19a462c862dd2751bf7a7d3fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:71:91:5b:8b:56:c4:61:11:1f:b3:b2:a2:d4:
3a:59:24:a7:f0:a3:69:d1:fb:9e:21:ea:6f:98:d6:
41:bf:7a:c1:32:75:ee:4e:25:8e:62:dd:a4:4b:05:
5d:f5:c0:88:2a:65:dc:80:1a:2b:a2:aa:8c:c0:89:
12:5e:a5:36:99:ce:4c:a2:0b:28:d2:7c:4f:56:9b:
d7:c2:e7:cd:a5:5e:f5:e9:34:0d:92:9b:b3:31:3a:
7a:15:78:72:e7:cf:d1:96:88:44:4e:ce:95:a8:c5:
81:fc:03:d0:7f:91:55:46:8d:bd:63:3e:10:e7:23:
70:42:a7:ce:b4:c9:04:52:24:ac:00:8f:c1:59:83:
ed:23:63:b0:a0:4b:ef:ea:7d:ff:80:85:f1:29:de:
81:9e:a4:9e:a3:ad:3a:a6:97:b5:28:33:b5:2d:28:
db:08:cb:ad:dc:1f:d3:b4:4c:ea:ca:e7:89:ee:32:
9a:e2:0b:d6:41:1c:0b:d5:42:3f:40:84:b2:ed:43:
8f:c7:d1:d5:9f:cb:8d:e5:0d:93:d1:67:cb:fa:4d:
96:71:c5:dd:6c:08:99:d1:e3:0e:6c:a8:ef:ef:97:
bf:9f:13:e8:a7:ed:7a:0e:88:00:e9:8a:16:1b:5d:
1f:a1:c5:8b:a6:c6:8a:51:7c:7a:68:ab:e4:d9:7e:
b2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E6:35:46:C9:00:6F:19:A4:62:C8:62:DD:27:51:BF:7A:7D:3F:EA
X509v3 Authority Key Identifier:
keyid:08:01:84:78:91:48:71:AA:B0:E1:C0:03:6D:36:26:EB:AD:6E:20:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAGEeJFIcaqw4cADbTYm661uIMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/5f83c4-640d-4ff3-9cf4-60627e115269/1/A-Y1RskAbxmkYshi3SdRv3p9P-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/5f83c4-640d-4ff3-9cf4-60627e115269/1/CAGEeJFIcaqw4cADbTYm661uIMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.168.0/21
185.190.88.0/24
IPv6:
2a10:6540::/29
Signature Algorithm: sha256WithRSAEncryption
0d:33:6a:8d:cb:5f:1d:22:77:55:38:eb:04:ec:7b:10:7e:2b:
e2:db:97:a3:a2:de:f1:8b:d6:08:1d:0c:b6:a5:f4:84:b4:d6:
d1:00:94:31:52:03:93:d3:42:d0:5f:a3:c4:0b:2e:28:a9:89:
13:b5:33:e3:db:fa:07:3d:4e:19:82:61:a8:47:74:7a:6a:bf:
4c:59:dd:a5:81:ac:1a:f5:2c:0b:d7:54:e0:22:2f:1d:e5:1d:
c7:ed:e3:70:bc:7d:90:fa:02:c4:e8:40:eb:c0:74:4c:fc:67:
56:eb:aa:27:37:ec:fa:09:ec:7c:bc:d3:02:ee:de:8a:10:de:
a7:fe:15:84:d2:ed:4f:e4:94:da:08:d8:29:83:98:cf:01:b6:
7e:bc:34:6a:f9:d4:ea:09:11:c3:5e:c4:bf:4e:85:36:4a:a2:
ee:e8:97:dd:69:42:1d:9c:d8:43:15:9c:68:3d:0e:d5:83:db:
ef:fe:20:e1:71:17:f4:4f:94:3d:8c:df:fb:64:d6:07:43:da:
3e:8c:f1:59:ee:7f:75:dc:42:76:5e:f7:45:ad:58:de:4d:19:
24:52:23:8e:2e:59:90:cd:0b:16:e8:7e:ed:d4:e9:01:76:ef:
53:b7:90:ae:57:53:ad:f2:e3:7e:a6:10:2f:5d:54:81:2a:92:
18:e8:61:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:37 2024 by rpki-client on console-ams.rpki-client.org