Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/pTGYCs91H_yvKCTARizpTzLa3Ms.roa
File: pTGYCs91H_yvKCTARizpTzLa3Ms.roa (raw, json)
Hash identifier: /g8iHLKXHDuGKyRTATY9fCbr/2IJMuh1KFZOfQIEi0c=
Subject key identifier: A5:31:98:0A:CF:75:1F:FC:AF:28:24:C0:46:2C:E9:4F:32:DA:DC:CB
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01835A81FBD0233C184FBC6EAC307D73F982
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/pTGYCs91H_yvKCTARizpTzLa3Ms.roa
Signing time: Tue 20 Sep 2022 10:46:51 +0000
ROA not before: Tue 20 Sep 2022 10:46:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 85.122.112.0/23 maxlen: 24
85.120.12.0/23 maxlen: 24
217.156.84.0/24 maxlen: 24
194.102.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5a:81:fb:d0:23:3c:18:4f:bc:6e:ac:30:7d:73:f9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Sep 20 10:46:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a531980acf751ffcaf2824c0462ce94f32dadccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5e:c9:30:28:67:d1:33:e8:46:65:41:b7:7e:
84:f1:1c:43:81:cc:46:e7:ac:db:3f:d6:90:71:75:
18:ae:94:47:15:08:66:1d:b4:59:a8:54:37:64:f3:
72:70:ae:39:40:d1:b7:e8:a9:f2:41:6e:47:f8:9e:
2b:8c:8f:0d:79:1b:0e:53:39:48:03:17:46:e0:d9:
bc:ea:ce:27:2f:ad:ed:86:80:08:e8:c7:0c:68:2f:
8b:b0:b1:3f:ae:1e:8f:11:c8:c0:48:f5:79:30:7b:
dc:d6:ed:60:ae:98:64:51:53:f5:22:87:1d:55:ca:
02:1d:22:55:a1:cc:47:60:cb:2d:1c:7a:09:e9:9b:
b5:15:82:27:c1:b4:9f:c7:8f:05:f5:4d:1c:c9:53:
77:15:c9:26:00:69:fd:60:6c:c6:1e:4e:aa:f2:49:
45:0b:82:a0:b3:93:c9:46:d6:4c:9f:ac:f3:6c:a6:
13:96:91:dd:95:26:58:6c:42:0b:83:fb:f9:1a:33:
35:5e:94:ff:b2:1f:a5:a0:72:cb:6c:da:45:be:7f:
a5:54:98:24:c8:3e:1a:7b:14:bf:8f:68:13:b0:9c:
bb:96:51:5e:ad:f4:9c:93:fd:2a:d2:aa:e9:2c:f4:
eb:c6:e7:14:1e:18:4c:36:e8:9f:8d:1f:b7:4d:fb:
be:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:31:98:0A:CF:75:1F:FC:AF:28:24:C0:46:2C:E9:4F:32:DA:DC:CB
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/pTGYCs91H_yvKCTARizpTzLa3Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.12.0/23
85.122.112.0/23
194.102.218.0/24
217.156.84.0/24
Signature Algorithm: sha256WithRSAEncryption
87:29:f7:7a:76:35:f5:a3:dc:4a:61:f7:88:5d:9a:9f:f5:d6:
90:27:f3:78:ef:2d:6f:00:cf:ed:c1:4a:0d:cd:98:c8:25:49:
4f:ba:fc:59:ba:2f:ed:75:5a:a2:d7:e5:42:ab:e0:9a:7e:3c:
75:40:9a:18:c4:29:8c:d5:e8:bc:32:6a:0e:07:49:6b:ce:98:
ba:f8:7f:a7:1f:ea:71:bc:2e:ee:95:29:00:8e:2c:da:4e:46:
30:a2:d4:e1:da:0e:e2:48:54:cc:ab:61:16:c1:9a:e5:13:c0:
f2:fd:bb:c6:50:75:6c:c4:ed:a1:3a:99:b9:50:93:19:eb:c8:
9f:be:3f:9f:d5:82:57:3c:17:47:de:fe:c0:9f:02:dc:a6:38:
79:cf:df:c5:0c:75:3d:2e:c1:77:84:14:39:bf:82:40:87:bc:
26:ce:b5:14:a7:de:b8:b9:93:dd:c1:e6:62:2c:6a:3d:d0:ca:
c7:9d:8c:3b:73:ac:2e:78:21:98:c3:a3:d9:b3:46:37:14:29:
66:11:fd:db:e1:35:93:ee:6c:16:bb:6d:d1:80:1b:17:d5:e5:
3f:d2:8f:ca:b6:c2:06:ec:57:68:9a:e6:07:97:61:44:65:2c:
ba:53:f8:3d:69:50:6b:22:43:b5:b9:ac:46:1f:e8:00:77:1c:
55:24:be:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org