Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/0YlnKJteavTtzdBf-yyv4_ONw1Q.roa
File: 0YlnKJteavTtzdBf-yyv4_ONw1Q.roa (raw, json)
Hash identifier: UY8ZKA1YC0OyDlKLEvD6FGL7hPBfq3Ga4MFZYnys3o4=
Subject key identifier: D1:89:67:28:9B:5E:6A:F4:ED:CD:D0:5F:FB:2C:AF:E3:F3:8D:C3:54
Certificate issuer: /CN=4ad1e9185eaa8b5c71c89fabe6fbe2acf7ea9824
Certificate serial: 0866A94D
Authority key identifier: 4A:D1:E9:18:5E:AA:8B:5C:71:C8:9F:AB:E6:FB:E2:AC:F7:EA:98:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/0YlnKJteavTtzdBf-yyv4_ONw1Q.roa
Signing time: Sat 01 Jan 2022 12:02:59 +0000
ROA not before: Sat 01 Jan 2022 12:02:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15600
IP address blocks: 185.74.132.0/22 maxlen: 24
5.149.32.0/19 maxlen: 24
2a00:d360::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140945741 (0x866a94d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ad1e9185eaa8b5c71c89fabe6fbe2acf7ea9824
Validity
Not Before: Jan 1 12:02:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d18967289b5e6af4edcdd05ffb2cafe3f38dc354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f7:d2:dc:9e:fd:5c:b8:2b:02:ce:ca:a3:ff:
dd:ea:14:c8:a6:7a:f4:e3:6e:84:33:bd:ba:56:c1:
b6:92:0a:8c:24:d2:39:f4:0a:3e:25:2f:e4:f4:58:
c8:b1:7b:67:47:59:4d:7c:11:d2:48:76:c6:03:69:
6f:50:bf:8b:35:9f:21:bf:0a:81:fa:ab:cd:25:1a:
33:f3:5a:41:15:05:a1:87:27:d1:a2:1d:c0:44:34:
6c:24:5e:0b:2c:1d:ea:9a:28:23:91:0c:25:19:b8:
32:cc:ce:d8:1a:2a:a5:16:e9:9c:1c:9d:7b:be:79:
43:66:d1:90:3a:d8:cf:6c:e1:6a:77:7b:5f:d0:2f:
af:0f:ba:f5:b4:58:44:d7:8c:61:c5:13:c4:27:24:
77:d2:66:65:47:65:cd:69:54:2a:98:01:22:53:cc:
48:2c:cb:e3:51:58:84:61:09:c2:07:fb:42:28:5f:
5c:c1:06:fd:43:ba:6d:3b:58:6d:41:3a:27:77:99:
e3:95:43:78:b4:64:23:ee:16:4f:27:19:73:39:64:
85:93:f3:2f:5f:37:e4:95:7a:3e:db:33:ff:a5:55:
a5:61:87:3d:b2:a3:12:8e:af:f7:49:28:9f:e5:da:
32:8e:08:39:36:63:b3:e2:29:c1:74:89:c3:fe:14:
17:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:89:67:28:9B:5E:6A:F4:ED:CD:D0:5F:FB:2C:AF:E3:F3:8D:C3:54
X509v3 Authority Key Identifier:
keyid:4A:D1:E9:18:5E:AA:8B:5C:71:C8:9F:AB:E6:FB:E2:AC:F7:EA:98:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StHpGF6qi1xxyJ-r5vvirPfqmCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/0YlnKJteavTtzdBf-yyv4_ONw1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b1cb4-96a9-4ed2-bd93-c38669b37b9e/1/StHpGF6qi1xxyJ-r5vvirPfqmCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.32.0/19
185.74.132.0/22
IPv6:
2a00:d360::/29
Signature Algorithm: sha256WithRSAEncryption
3f:ec:da:c3:2a:a5:d9:38:e7:b1:cf:e5:67:b9:9e:2f:fe:9b:
96:b3:16:af:eb:98:8f:92:fc:c5:79:eb:1a:e5:2d:79:0d:f3:
7f:b7:99:d3:cd:35:a5:63:76:7a:98:1a:f0:88:bf:a4:6c:5f:
53:d5:49:d4:c5:c2:f4:78:ca:43:27:ef:c9:2b:4e:3f:82:fa:
18:6c:f1:26:37:d3:7c:28:6e:a6:10:48:44:b1:a3:50:3e:fa:
0f:30:bd:11:ed:3d:9b:d2:aa:e3:ed:3a:5d:44:61:0b:bb:b3:
7f:5f:0d:b7:90:1d:54:1d:d2:eb:90:55:f4:76:e9:36:85:e5:
86:2e:7c:dd:3a:26:12:00:e8:fa:ef:36:a9:1a:44:d6:ab:fc:
05:96:7b:cc:f9:90:9a:91:15:f8:da:bc:cb:7c:4b:8c:5e:f6:
a0:f1:58:ac:38:ea:e2:a0:64:35:02:b6:ef:24:c5:6d:f8:d7:
c1:07:2f:8c:8b:22:89:89:e0:bd:af:a6:17:83:3d:c4:cb:74:
ec:34:f5:1f:e4:14:70:56:d1:4f:d8:8f:88:1d:03:6a:9e:5b:
7c:d0:7d:8d:d3:ca:7a:a7:6f:e1:4f:5c:37:3f:2b:6f:64:23:
e0:47:0e:5c:06:8a:c2:2d:2c:07:94:15:2d:b5:41:e9:4f:75:
55:52:70:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:16 2024 by rpki-client on console-fra.rpki-client.org