Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b722c8-14e3-4082-92d1-65f8900e5c82/1/P1a7ELhv3Dx287yHmLNcG4d_XPQ.roa
File: P1a7ELhv3Dx287yHmLNcG4d_XPQ.roa (raw, json)
Hash identifier: MFOuTPtjohpGTbl2cSii/h53EFVNUqenjx64ziMK7AM=
Subject key identifier: 3F:56:BB:10:B8:6F:DC:3C:76:F3:BC:87:98:B3:5C:1B:87:7F:5C:F4
Certificate issuer: /CN=62dd5a4075428a7fc9ac94e6d2a2d9a992ef4853
Certificate serial: 132DECB3
Authority key identifier: 62:DD:5A:40:75:42:8A:7F:C9:AC:94:E6:D2:A2:D9:A9:92:EF:48:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yt1aQHVCin_JrJTm0qLZqZLvSFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b722c8-14e3-4082-92d1-65f8900e5c82/1/P1a7ELhv3Dx287yHmLNcG4d_XPQ.roa
Signing time: Sat 01 Jan 2022 06:57:31 +0000
ROA not before: Sat 01 Jan 2022 06:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47815
IP address blocks: 188.92.200.0/21 maxlen: 21
94.125.64.0/21 maxlen: 21
2a03:4080::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321776819 (0x132decb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62dd5a4075428a7fc9ac94e6d2a2d9a992ef4853
Validity
Not Before: Jan 1 06:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f56bb10b86fdc3c76f3bc8798b35c1b877f5cf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:40:71:e9:54:3f:50:e8:e9:72:75:b3:77:ce:
45:15:03:84:62:4e:fa:ec:11:42:63:b6:f2:a7:81:
db:9e:71:19:64:0a:d0:eb:94:8e:fe:f4:04:c7:dd:
06:cf:af:64:4f:8f:3e:b7:49:74:9f:0b:ee:8c:92:
5d:96:b9:ee:7d:1b:f2:85:64:c8:02:f0:dd:05:8f:
3d:37:da:02:02:4e:d3:e0:0f:5e:52:ac:35:6f:08:
c9:98:15:fe:53:98:52:73:4d:08:fd:3b:17:9d:98:
a4:a2:19:05:85:fb:63:5e:9a:40:54:8f:9e:e6:20:
af:ce:6e:34:b2:e7:d0:0e:fa:26:cf:cd:6c:ad:dc:
a0:45:9a:ab:30:6a:7f:87:b4:7e:c3:d6:1f:7a:e3:
fd:88:b7:41:09:c2:df:60:7d:90:4a:18:a4:7f:34:
c7:39:92:23:f7:06:ca:d3:a9:21:42:56:fa:70:e8:
8e:31:8a:79:70:cf:7e:6d:1a:95:8a:c4:fd:d4:6e:
5f:ba:ee:09:65:fb:e7:52:b2:a8:77:28:95:22:aa:
03:24:80:1c:ab:03:43:c7:f5:72:65:ee:3f:f8:12:
ec:c1:59:04:f0:12:47:59:25:66:2c:f5:28:46:a6:
42:06:e9:6e:91:be:d1:92:46:8f:94:1a:4e:0e:7f:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:56:BB:10:B8:6F:DC:3C:76:F3:BC:87:98:B3:5C:1B:87:7F:5C:F4
X509v3 Authority Key Identifier:
keyid:62:DD:5A:40:75:42:8A:7F:C9:AC:94:E6:D2:A2:D9:A9:92:EF:48:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yt1aQHVCin_JrJTm0qLZqZLvSFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b722c8-14e3-4082-92d1-65f8900e5c82/1/P1a7ELhv3Dx287yHmLNcG4d_XPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b722c8-14e3-4082-92d1-65f8900e5c82/1/Yt1aQHVCin_JrJTm0qLZqZLvSFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.125.64.0/21
188.92.200.0/21
IPv6:
2a03:4080::/32
Signature Algorithm: sha256WithRSAEncryption
a6:6f:39:47:b3:0f:23:33:21:4a:04:ba:ae:55:90:6b:ab:29:
9b:43:25:d4:27:11:d0:a1:e6:d0:71:23:66:ba:b4:0b:f2:dc:
50:49:4d:41:26:46:82:4a:ab:ab:95:53:a7:e9:ba:9e:4e:3d:
1c:17:67:0a:81:45:8e:3f:51:ce:ba:c9:9b:c2:ef:0a:81:2c:
4d:9f:31:83:d8:5b:3a:d1:8a:0c:28:77:f4:e0:17:bb:49:b4:
48:6b:e9:5d:29:49:7e:67:4b:a5:4a:7c:46:be:cf:5e:ec:4e:
49:98:02:4e:76:42:9f:6b:84:bb:9a:d3:41:b0:55:0f:22:25:
c5:87:75:97:8c:61:16:34:6a:a5:21:b8:24:80:da:4c:17:e5:
08:da:0e:32:fa:7f:99:b9:08:7f:ec:62:5c:b3:13:36:65:cd:
88:d2:19:f8:20:27:76:3f:e0:4f:3b:d5:de:5a:49:e9:f0:1d:
0f:10:f6:25:31:82:8b:04:7b:27:45:fc:59:e0:d7:ff:af:cf:
72:c6:08:f5:eb:42:0d:50:3c:d4:ce:79:fa:5c:f5:89:60:0e:
e0:96:8d:82:de:67:52:44:db:29:9a:ef:d1:9f:37:30:18:3e:
5e:e3:92:71:7d:bf:05:34:ba:2b:f3:4b:7d:c6:2b:c9:54:19:
ec:51:5c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org