Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/YiMOJ84DPPgG9ZYkXDClPmRpq2c.roa
File: YiMOJ84DPPgG9ZYkXDClPmRpq2c.roa (raw, json)
Hash identifier: xohYfsu96GC32lpcL4e/9PzJdSwn+ktMdnftYV8rrZE=
Subject key identifier: 62:23:0E:27:CE:03:3C:F8:06:F5:96:24:5C:30:A5:3E:64:69:AB:67
Certificate issuer: /CN=d301991fc343f358c0f2eebae55cf2da34521c7a
Certificate serial: 07A15945
Authority key identifier: D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wGZH8ND81jA8u665Vzy2jRSHHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/YiMOJ84DPPgG9ZYkXDClPmRpq2c.roa
Signing time: Sat 01 Jan 2022 03:54:21 +0000
ROA not before: Sat 01 Jan 2022 03:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57866
IP address blocks: 185.52.236.0/22 maxlen: 22
45.141.104.0/22 maxlen: 22
37.139.136.0/21 maxlen: 21
2a00:a7c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128014661 (0x7a15945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d301991fc343f358c0f2eebae55cf2da34521c7a
Validity
Not Before: Jan 1 03:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62230e27ce033cf806f596245c30a53e6469ab67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1f:c0:dd:3d:78:22:e9:bf:dd:38:bd:bb:95:
64:98:6d:88:6a:56:2a:d7:39:43:c1:bc:7e:24:68:
5f:2b:42:9b:8b:9d:e7:04:a0:f4:5e:9c:f2:b6:dc:
3f:3f:7d:d7:00:4f:9d:e0:a6:f4:1f:7f:80:53:60:
a6:78:19:8f:c2:81:cd:d3:de:af:98:74:5a:61:6c:
5d:26:99:b0:1b:e4:fc:c9:ca:7d:98:81:43:22:c3:
4c:e3:12:c3:a2:26:ea:d2:bb:cb:1d:4c:f0:ed:f5:
3f:05:45:df:27:29:c8:2f:d4:98:d8:ba:4c:f6:50:
62:99:fb:e0:01:35:18:d6:04:35:30:d5:f8:3d:b4:
94:bd:67:e4:53:43:1e:78:34:56:73:fe:aa:03:02:
40:49:a7:d4:4f:b4:b2:60:19:3a:27:36:a2:1e:ad:
07:a6:cd:69:ac:3a:88:81:4c:f7:ff:c0:6e:ab:a5:
c6:dd:cb:9d:4d:87:45:98:97:22:7c:b0:26:eb:b7:
d1:56:5f:3a:48:98:9f:6d:e7:b5:6d:11:1d:84:af:
e9:90:9a:d4:db:cb:06:03:6b:24:59:9e:9f:d6:89:
a9:ea:0b:06:01:ca:90:9f:91:3a:1a:7f:ad:ca:63:
0b:8d:18:a2:ef:f0:44:c8:d5:30:45:c7:b0:f1:99:
59:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:23:0E:27:CE:03:3C:F8:06:F5:96:24:5C:30:A5:3E:64:69:AB:67
X509v3 Authority Key Identifier:
keyid:D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wGZH8ND81jA8u665Vzy2jRSHHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/YiMOJ84DPPgG9ZYkXDClPmRpq2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/0wGZH8ND81jA8u665Vzy2jRSHHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.136.0/21
45.141.104.0/22
185.52.236.0/22
IPv6:
2a00:a7c0::/32
Signature Algorithm: sha256WithRSAEncryption
4c:0f:75:ec:d2:0d:49:cc:3b:01:3d:f6:00:aa:a4:fb:f1:52:
f8:80:aa:de:ab:b2:b9:bf:5d:04:98:26:d4:ca:48:ac:d0:00:
16:77:b4:2a:f2:43:c3:c1:ce:c9:59:00:40:49:bf:25:42:23:
24:e3:78:8c:2c:a5:a5:3a:fb:dd:4d:65:74:88:8e:89:d9:a8:
e7:47:20:67:f3:91:ec:d0:07:db:70:fe:e1:3f:ee:96:33:69:
23:c7:58:97:fb:5c:90:0d:30:96:cc:1a:e1:06:47:e1:70:1f:
3b:df:a3:6a:91:67:e5:c9:3e:bc:92:11:f5:2a:f1:b4:4d:34:
89:50:59:67:92:a3:95:7b:cf:3e:e9:50:92:9c:47:fd:9f:9e:
f5:25:f6:4d:0f:e9:62:3c:3c:a4:54:40:c1:8a:e7:d7:f7:cb:
5e:be:20:21:2a:ae:cf:04:26:85:49:fe:79:94:4b:91:e1:6e:
82:e0:20:7f:00:bd:e6:dc:1b:09:c5:7b:be:ff:0d:2a:45:d8:
54:fe:c8:3b:7d:04:19:0b:37:34:59:1c:b3:f7:52:0d:03:c7:
68:ff:7f:ac:04:22:23:df:17:0f:a0:d8:c8:eb:56:7c:ec:e1:
a8:9a:4c:f1:42:2b:f7:e7:14:45:30:76:cd:8d:b9:ee:8f:50:
97:2b:23:c1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:36 2024 by rpki-client on console-fra.rpki-client.org