Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/2fVDrdhEY5FWGYDqtLz1qeiOVBw.roa
File: 2fVDrdhEY5FWGYDqtLz1qeiOVBw.roa (raw, json)
Hash identifier: hBtrlIhFzJ16QoGfwluA25DFt/xlOkKTa29tyt8SssI=
Subject key identifier: D9:F5:43:AD:D8:44:63:91:56:19:80:EA:B4:BC:F5:A9:E8:8E:54:1C
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 434C7CC6
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/2fVDrdhEY5FWGYDqtLz1qeiOVBw.roa
Signing time: Sat 01 Jan 2022 07:59:58 +0000
ROA not before: Sat 01 Jan 2022 07:59:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50613
IP address blocks: 37.235.49.0/24 maxlen: 24
151.236.24.0/24 maxlen: 24
2a03:f80:354::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129086150 (0x434c7cc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 07:59:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9f543add8446391561980eab4bcf5a9e88e541c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:5a:a2:b1:ae:83:f8:b7:a0:a7:c8:a1:2d:
6f:43:c1:1a:b6:a9:df:be:03:73:bc:89:7f:96:c9:
d3:c8:91:00:20:73:e1:c5:f1:f6:8c:fb:95:81:68:
01:54:2a:f2:b3:31:5c:98:28:9c:e8:8f:86:6a:fe:
64:de:07:c0:1c:39:ab:96:a7:4c:cd:4a:d2:8b:bc:
b1:c2:e6:13:cd:d8:67:6d:27:a1:20:c2:f5:19:3c:
c9:15:fd:b8:9d:ea:cd:5e:75:d4:1d:a7:e0:ef:31:
9a:03:28:cf:d1:d8:22:cc:5b:6d:13:57:a1:04:9a:
d2:d9:1b:79:d3:6e:f9:ec:3e:4a:fb:38:1a:13:f0:
d6:a3:7e:1b:09:d8:90:bc:52:ca:64:0e:3c:8a:04:
c4:0e:18:d8:3e:21:aa:c6:85:75:e6:82:63:b0:30:
31:71:1c:75:59:99:75:b8:54:8e:01:a6:c4:0b:e9:
89:1b:0e:b6:74:36:20:8a:95:9a:c4:f5:12:23:a0:
34:0a:a9:ae:69:e0:8e:7f:76:34:1f:5f:9e:66:f7:
d7:0d:79:2c:cd:6b:d5:02:03:ff:8a:26:3a:0b:03:
87:e1:e5:01:57:08:3e:7e:b8:8b:29:c8:dd:ef:8a:
f4:3c:7d:77:14:80:6e:4f:53:40:5e:e2:3d:bc:a8:
db:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:F5:43:AD:D8:44:63:91:56:19:80:EA:B4:BC:F5:A9:E8:8E:54:1C
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/2fVDrdhEY5FWGYDqtLz1qeiOVBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.49.0/24
151.236.24.0/24
IPv6:
2a03:f80:354::/48
Signature Algorithm: sha256WithRSAEncryption
5d:41:37:2d:c8:82:39:26:62:33:d7:32:65:99:ed:6b:f6:c9:
e0:3e:ee:b8:5d:d1:17:9e:be:54:3e:0a:51:c2:30:b4:5b:5a:
4d:76:7d:03:be:32:d7:38:d8:08:8c:48:d5:51:60:23:e8:85:
94:f5:2b:dd:7e:37:b6:f9:d1:e1:2c:a1:37:b0:26:2e:bf:46:
84:d8:ec:01:45:f0:92:e7:2c:a7:fc:e4:e5:a3:4d:de:83:a5:
34:2f:14:3f:1c:cf:22:5a:ce:ae:e1:7f:9b:f0:a2:37:1d:f0:
ab:03:5f:99:9b:e3:4f:4e:e4:1b:a5:a8:69:0e:49:d4:89:a4:
07:e9:72:33:66:e4:65:25:ed:94:8b:36:b7:d1:19:6c:dc:93:
c7:8e:0c:59:c3:01:c3:1f:ca:dd:2a:fe:8f:ba:09:78:d6:ed:
cf:c6:6e:3f:c0:68:44:34:6f:88:14:fc:f3:f5:0c:6c:73:99:
c7:66:27:7b:18:02:07:b2:7c:b5:3a:2c:f4:ac:fd:73:fa:a2:
ca:52:9a:e8:32:c1:9d:9e:68:f9:22:31:d2:11:98:d1:52:04:
5d:60:97:40:57:5d:3b:c6:7e:45:a8:fe:ce:86:c0:fd:82:1e:
2f:61:72:6c:5a:6a:ac:00:de:83:fc:d5:3d:59:62:17:21:c2:
5f:5e:3c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org