Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/yNrUszo3HjKrB_jiVkySzLg-z-0.roa
File: yNrUszo3HjKrB_jiVkySzLg-z-0.roa (raw, json)
Hash identifier: KxyeZdfx35ngLvPdWrmohfaEWg7gyiPM/CXXdw50rc8=
Subject key identifier: C8:DA:D4:B3:3A:37:1E:32:AB:07:F8:E2:56:4C:92:CC:B8:3E:CF:ED
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D8DCF1F
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/yNrUszo3HjKrB_jiVkySzLg-z-0.roa
Signing time: Tue 07 Jun 2022 11:15:04 +0000
ROA not before: Tue 07 Jun 2022 11:15:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 194.233.56.0/22 maxlen: 22
194.195.104.0/22 maxlen: 22
195.179.240.0/22 maxlen: 22
195.179.244.0/22 maxlen: 22
195.179.252.0/22 maxlen: 22
195.179.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227397407 (0xd8dcf1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jun 7 11:15:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8dad4b33a371e32ab07f8e2564c92ccb83ecfed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:26:9a:2f:67:1a:0f:1e:e3:79:c5:c5:d6:ff:
7f:30:9a:92:c1:ae:93:4d:d4:e1:2b:20:25:1f:90:
ee:10:a0:79:dc:8c:28:b2:af:3c:3f:e8:67:2b:d7:
75:2d:9d:eb:73:95:3d:51:8e:02:f8:2d:cc:6f:25:
4a:5f:fe:fc:f6:3e:83:d3:68:95:a7:3e:84:93:56:
07:29:c9:02:60:f2:3e:bf:28:33:b8:e4:ec:c1:8d:
69:03:80:da:43:6c:88:18:fa:1f:05:da:32:ca:ec:
6b:83:46:bd:49:1b:ff:f3:d7:c3:ff:0b:65:6a:a0:
d0:19:89:81:55:f5:21:ca:48:83:43:5c:88:bf:cf:
39:6b:67:ce:d5:6c:04:41:4f:4f:6d:39:f0:21:58:
e5:15:a2:c1:c5:71:86:9e:3e:92:bb:81:56:a3:1a:
89:09:5c:65:09:64:bd:a8:08:f9:30:0e:ab:07:bc:
80:b4:17:19:72:da:b8:43:db:3b:b2:1c:01:23:9c:
97:49:9f:94:54:fc:1a:d4:be:d2:3a:3c:43:f5:4f:
ca:ac:1b:ac:2e:fe:25:ab:f9:9f:8e:29:21:f9:69:
7f:32:8f:4d:49:b9:35:89:47:67:af:79:f2:e8:e1:
86:d7:00:ca:32:ec:51:a2:a9:74:f7:c2:af:58:de:
46:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DA:D4:B3:3A:37:1E:32:AB:07:F8:E2:56:4C:92:CC:B8:3E:CF:ED
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/yNrUszo3HjKrB_jiVkySzLg-z-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.195.104.0/22
194.233.56.0/22
195.179.240.0/20
Signature Algorithm: sha256WithRSAEncryption
72:a4:26:b2:f0:07:db:cd:17:ef:91:3e:c2:09:34:c5:50:85:
6f:2a:11:9a:da:1d:48:82:45:28:a7:e6:57:94:a3:c0:37:86:
55:4f:48:39:c7:64:7c:96:e3:16:2e:ad:40:0b:bd:15:0a:9e:
c9:63:fb:4c:71:f0:70:df:3e:3b:46:e8:90:81:0d:6f:d8:3d:
93:e5:c3:64:26:a0:b3:f3:9a:b9:82:a4:13:2d:cb:4a:05:34:
83:a9:0e:03:6b:04:50:92:63:39:87:84:1f:02:11:9f:b8:fa:
6c:b0:1d:13:8e:10:28:dc:da:a5:25:61:22:af:f2:18:40:71:
03:5e:7c:a6:80:fb:06:97:93:4a:30:47:30:3f:bd:73:12:e6:
0f:89:ac:fb:55:d5:d9:40:ee:83:02:48:f1:f0:45:e7:00:89:
35:8a:26:65:96:a2:7a:12:73:75:3b:dd:05:4a:9d:af:73:bb:
b0:87:1d:7e:ac:1f:d5:0e:e9:93:f1:c8:18:8b:a3:31:fb:4f:
a1:d9:17:ff:2d:be:c9:c2:bd:f5:e7:ee:aa:e7:c5:18:7d:db:
f4:cc:4a:ed:64:e9:6f:b7:d2:30:60:34:21:8b:81:65:38:2b:
be:85:95:bc:92:c5:71:a1:0b:52:36:b9:76:ab:96:69:d1:8f:
4a:10:d9:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org