Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/29cd58-8327-42be-b7f9-c9819a410a7a/1/egrpP3gXPWRhuPRM_-HIaX_zsi0.roa
File: egrpP3gXPWRhuPRM_-HIaX_zsi0.roa (raw, json)
Hash identifier: 4svMkyEomhT1jgdQUWWJtYd4QA+uVPVPa/vwhHl99dM=
Subject key identifier: 7A:0A:E9:3F:78:17:3D:64:61:B8:F4:4C:FF:E1:C8:69:7F:F3:B2:2D
Certificate issuer: /CN=348cf9779a92efe97543b22a347b81c2eaa5bbfa
Certificate serial: 01826D393A06842523889237D1687120256B
Authority key identifier: 34:8C:F9:77:9A:92:EF:E9:75:43:B2:2A:34:7B:81:C2:EA:A5:BB:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIz5d5qS7-l1Q7IqNHuBwuqlu_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/29cd58-8327-42be-b7f9-c9819a410a7a/1/egrpP3gXPWRhuPRM_-HIaX_zsi0.roa
Signing time: Fri 05 Aug 2022 08:57:23 +0000
ROA not before: Fri 05 Aug 2022 08:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199752
IP address blocks: 185.36.132.0/22 maxlen: 22
185.187.108.0/22 maxlen: 22
185.239.171.0/24 maxlen: 24
2a00:ef20::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:39:3a:06:84:25:23:88:92:37:d1:68:71:20:25:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348cf9779a92efe97543b22a347b81c2eaa5bbfa
Validity
Not Before: Aug 5 08:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a0ae93f78173d6461b8f44cffe1c8697ff3b22d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4e:0e:99:e4:65:3c:66:e5:22:43:47:f6:7a:
a5:3a:d5:ae:fc:70:40:b8:74:a4:77:c0:bb:10:be:
47:13:47:ba:7f:86:43:96:ff:73:56:5e:74:b6:4a:
c0:3d:dd:8d:3e:49:ff:d2:37:2a:3c:6b:23:87:ea:
08:f5:0c:17:72:d4:ce:4f:07:30:45:2f:e0:8e:2d:
e8:de:3c:20:a2:bd:56:53:f0:dd:21:d4:2b:20:6b:
b5:ae:4f:7d:aa:ff:d4:ac:3a:06:86:1d:db:c4:af:
7b:d6:26:96:b8:8a:32:d1:48:2c:b3:bb:f0:e1:9a:
02:9d:c0:06:f6:c0:3d:2f:0b:77:49:ac:95:fa:7f:
bf:40:5c:dc:9d:19:85:eb:90:f8:87:82:3a:7f:34:
91:78:e6:4c:ae:cf:80:8b:6e:99:c7:22:f5:cd:9c:
dd:65:1b:d5:c6:3f:80:98:8b:f6:2c:48:f0:4f:69:
54:f6:48:4e:5d:dd:a5:b8:02:42:4e:0e:fe:dd:5c:
0d:8f:d8:4c:60:95:98:4a:1d:4d:a9:5a:43:a3:37:
a2:9c:c8:5a:64:71:5d:2d:8f:c2:38:b5:da:ee:c2:
c2:39:f8:93:de:95:ec:c8:6c:6d:d1:b9:ff:74:bc:
e4:27:1c:cb:01:ee:6a:81:81:f1:58:97:46:8d:cf:
92:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0A:E9:3F:78:17:3D:64:61:B8:F4:4C:FF:E1:C8:69:7F:F3:B2:2D
X509v3 Authority Key Identifier:
keyid:34:8C:F9:77:9A:92:EF:E9:75:43:B2:2A:34:7B:81:C2:EA:A5:BB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIz5d5qS7-l1Q7IqNHuBwuqlu_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/29cd58-8327-42be-b7f9-c9819a410a7a/1/egrpP3gXPWRhuPRM_-HIaX_zsi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/29cd58-8327-42be-b7f9-c9819a410a7a/1/NIz5d5qS7-l1Q7IqNHuBwuqlu_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.132.0/22
185.187.108.0/22
185.239.171.0/24
IPv6:
2a00:ef20::/29
Signature Algorithm: sha256WithRSAEncryption
25:a4:5d:b7:a8:ad:b1:24:65:3b:73:16:af:54:46:44:e7:49:
53:5f:3a:9a:33:69:62:3d:86:f9:23:44:4a:ce:2e:6e:37:13:
f3:e1:aa:48:cc:45:f3:8c:d4:ce:23:30:82:da:59:26:e9:dd:
ce:b9:e6:b0:97:95:37:10:12:32:2f:bc:9d:ad:09:88:75:25:
0b:52:09:31:ec:6b:5f:b2:bb:52:6f:f5:14:62:38:1c:d1:64:
ef:4a:12:77:d7:19:0b:88:7e:d7:46:83:1a:45:0f:66:b0:4a:
b2:8a:ad:ff:1b:b7:6b:d5:92:55:1d:06:c3:36:75:12:47:05:
05:a0:de:f3:50:5c:83:f7:08:1f:28:e1:ac:ad:5d:75:13:dc:
14:26:f2:00:a1:79:6e:b4:dd:b8:e4:8b:d2:1f:98:13:dc:92:
ae:01:80:9d:16:e3:58:69:d3:83:5e:11:db:85:0a:95:e2:4a:
c0:63:df:f9:e8:06:84:16:3d:e7:0d:2c:22:d4:67:89:45:e9:
9c:f5:3a:38:5d:57:11:be:db:59:df:2c:0f:91:77:74:7c:d6:
b6:56:d5:64:a5:9a:aa:19:8f:45:68:1b:1e:63:c8:79:aa:ec:
5e:26:22:ba:71:e5:9f:3f:0f:b3:15:3c:79:f4:b2:f5:b8:dc:
f4:2c:39:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org