Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/86a74e-4db8-4fe9-9802-3bb92687602c/1/UQPBjNAJWC6BxBU0S-RyrpdPNjU.roa
File: UQPBjNAJWC6BxBU0S-RyrpdPNjU.roa (raw, json)
Hash identifier: CNGg4Z9MSh49otHWaXiKKt07uvkKwty2U9aMU/ctkos=
Subject key identifier: 51:03:C1:8C:D0:09:58:2E:81:C4:15:34:4B:E4:72:AE:97:4F:36:35
Certificate issuer: /CN=044aacab9a49e143de68979ad156b42dabddde8c
Certificate serial: 1690B6DA
Authority key identifier: 04:4A:AC:AB:9A:49:E1:43:DE:68:97:9A:D1:56:B4:2D:AB:DD:DE:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BEqsq5pJ4UPeaJea0Va0Lavd3ow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/86a74e-4db8-4fe9-9802-3bb92687602c/1/UQPBjNAJWC6BxBU0S-RyrpdPNjU.roa
Signing time: Sat 01 Jan 2022 01:51:22 +0000
ROA not before: Sat 01 Jan 2022 01:51:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2259
IP address blocks: 130.79.0.0/16 maxlen: 16
185.155.92.0/22 maxlen: 22
77.72.40.0/21 maxlen: 21
2a07:2e40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378582746 (0x1690b6da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=044aacab9a49e143de68979ad156b42dabddde8c
Validity
Not Before: Jan 1 01:51:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5103c18cd009582e81c415344be472ae974f3635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b6:cb:5d:0d:53:47:f4:e6:b6:40:7a:de:81:
d0:cf:9d:a0:02:15:b6:f9:66:46:8b:6b:94:45:b7:
8a:f3:d8:b1:77:bd:c4:bc:32:c0:e6:1a:34:1b:85:
b9:d5:1d:85:b5:ec:02:ad:3b:d4:46:61:e1:de:83:
6c:61:e6:06:2b:d9:9a:3f:77:4b:59:fc:ea:3a:13:
3c:0c:09:e7:71:6d:2c:53:1f:74:e9:0b:00:f0:27:
eb:ac:2c:22:90:ff:03:5c:4b:3c:a8:95:8d:dd:be:
a9:27:45:cb:0f:96:a1:8f:61:7f:c9:c5:03:23:18:
b0:bf:0d:3f:81:c9:2f:8e:60:09:a5:51:22:74:3c:
0e:bd:ff:60:d1:c1:f3:c7:da:5a:71:58:39:40:f8:
fc:e7:29:65:60:38:a9:6a:07:38:ec:ed:b0:33:98:
bb:8c:60:e1:be:0c:11:36:33:ee:f8:95:e3:ee:e0:
36:a6:f4:f7:36:f1:d4:53:c8:89:ad:35:f3:42:d8:
46:65:bf:e5:4f:c0:bd:a2:7f:31:fd:07:a4:ad:14:
75:1f:30:ed:5a:cb:f7:ba:1f:24:49:3f:d3:88:f2:
3e:2c:65:fe:e3:f9:ca:d4:bf:80:c9:ff:24:89:29:
8f:d3:d4:83:17:5e:c6:b1:ef:eb:cf:8b:c9:03:f7:
7b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:03:C1:8C:D0:09:58:2E:81:C4:15:34:4B:E4:72:AE:97:4F:36:35
X509v3 Authority Key Identifier:
keyid:04:4A:AC:AB:9A:49:E1:43:DE:68:97:9A:D1:56:B4:2D:AB:DD:DE:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BEqsq5pJ4UPeaJea0Va0Lavd3ow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/86a74e-4db8-4fe9-9802-3bb92687602c/1/UQPBjNAJWC6BxBU0S-RyrpdPNjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/86a74e-4db8-4fe9-9802-3bb92687602c/1/BEqsq5pJ4UPeaJea0Va0Lavd3ow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.40.0/21
130.79.0.0/16
185.155.92.0/22
IPv6:
2a07:2e40::/32
Signature Algorithm: sha256WithRSAEncryption
65:26:24:d6:ee:27:6f:47:c8:69:26:39:05:66:c0:50:87:78:
4f:55:b5:7c:72:f7:28:10:a3:ec:5f:37:5b:63:56:1f:74:3b:
0e:5b:e3:5e:e1:74:1a:11:39:8a:f8:47:d3:48:86:21:fd:39:
78:77:59:85:09:90:89:15:3a:d7:23:fe:19:42:1c:44:f6:0d:
de:a5:59:5d:91:fb:b5:17:3c:12:3c:1c:b8:9c:f5:5c:70:d5:
1a:07:f5:26:66:50:90:21:42:44:86:50:85:a8:0d:a3:13:66:
92:ba:af:e2:0e:44:ed:12:1e:12:37:34:6f:53:04:9e:a9:de:
88:db:36:0d:19:95:b4:cd:c2:91:2a:47:81:a7:89:06:31:f8:
df:52:0c:23:8c:39:a8:3e:be:c8:39:17:d6:1f:b7:dd:26:58:
3c:67:d0:e7:24:d0:09:1f:d4:fd:28:f2:22:85:9e:85:24:6e:
00:3f:08:ac:79:7e:ad:4c:51:f2:d8:52:b5:de:38:9b:96:49:
14:d1:ae:b7:41:09:33:28:05:e3:3e:f4:a2:25:38:21:5d:2d:
2b:3a:6b:66:f9:09:d5:c5:a0:75:5e:84:75:1d:87:c9:2a:6a:
36:14:21:c5:08:17:46:1e:37:53:e3:45:47:5b:42:f0:0d:8f:
aa:53:f2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:52 2024 by rpki-client on console-fra.rpki-client.org