Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7f356a-a251-4b7a-9062-2dcd6a00ca12/1/urThyToYPVOIA94J45kN-lBRpVY.roa
File: urThyToYPVOIA94J45kN-lBRpVY.roa (raw, json)
Hash identifier: 85dZY5BrwVxz7+ZkU3PSL+LFN8hpmiaClGR93FXQctQ=
Subject key identifier: BA:B4:E1:C9:3A:18:3D:53:88:03:DE:09:E3:99:0D:FA:50:51:A5:56
Certificate issuer: /CN=2f57a34b058aafa0a763124a7d5d4187f4faabac
Certificate serial: 08FD1C85
Authority key identifier: 2F:57:A3:4B:05:8A:AF:A0:A7:63:12:4A:7D:5D:41:87:F4:FA:AB:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1ejSwWKr6CnYxJKfV1Bh_T6q6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7f356a-a251-4b7a-9062-2dcd6a00ca12/1/urThyToYPVOIA94J45kN-lBRpVY.roa
Signing time: Sat 01 Jan 2022 12:57:28 +0000
ROA not before: Sat 01 Jan 2022 12:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51492
IP address blocks: 185.177.140.0/22 maxlen: 22
185.36.253.0/24 maxlen: 24
188.116.47.0/24 maxlen: 24
89.46.121.0/24 maxlen: 24
89.46.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150805637 (0x8fd1c85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f57a34b058aafa0a763124a7d5d4187f4faabac
Validity
Not Before: Jan 1 12:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bab4e1c93a183d538803de09e3990dfa5051a556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ca:36:66:90:ec:53:3e:78:6c:da:b6:c5:76:
95:58:ba:dd:1f:43:bd:54:12:bb:1d:51:0f:db:17:
72:02:df:fd:09:20:72:e2:b9:bc:2e:e7:f7:51:66:
12:91:b9:9b:41:9a:91:50:11:61:c0:5a:14:6d:9a:
79:d0:69:d9:ec:78:4f:d3:3e:79:77:74:6b:75:64:
ad:d6:04:5e:48:ca:5f:dd:01:cd:d2:8e:f9:04:a6:
bd:ac:e3:52:7a:bc:b0:71:37:37:18:21:1c:ff:28:
ff:f9:5a:27:33:53:21:38:2b:d2:07:45:90:ed:91:
3f:47:40:bc:b1:91:be:7d:72:dd:9c:42:76:8f:37:
6d:b9:27:18:b5:00:c9:73:13:12:d7:94:b8:0d:76:
e9:01:bd:e2:52:fe:9e:80:b5:8a:fd:12:d1:fe:13:
a3:de:a2:37:73:d8:9e:6b:24:e5:1d:53:db:28:ea:
fb:d4:70:d4:45:07:02:b4:f6:0d:5a:dc:c4:30:81:
31:b3:2a:cc:1d:2c:79:cf:bb:2e:47:98:11:ce:44:
09:b4:8c:0a:70:c0:92:0c:56:1b:80:e2:e8:73:ac:
54:3b:96:fe:7a:9b:2e:a6:73:27:1c:37:c0:03:9a:
f7:23:bc:6e:93:54:39:9b:59:14:a8:5c:4e:18:29:
a8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B4:E1:C9:3A:18:3D:53:88:03:DE:09:E3:99:0D:FA:50:51:A5:56
X509v3 Authority Key Identifier:
keyid:2F:57:A3:4B:05:8A:AF:A0:A7:63:12:4A:7D:5D:41:87:F4:FA:AB:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1ejSwWKr6CnYxJKfV1Bh_T6q6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f356a-a251-4b7a-9062-2dcd6a00ca12/1/urThyToYPVOIA94J45kN-lBRpVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7f356a-a251-4b7a-9062-2dcd6a00ca12/1/L1ejSwWKr6CnYxJKfV1Bh_T6q6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.121.0/24
89.46.125.0/24
185.36.253.0/24
185.177.140.0/22
188.116.47.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a8:c0:ec:1d:dc:40:ec:ad:a2:1b:17:d0:1e:8c:86:73:17:
25:a2:d2:f0:24:ec:d8:be:d5:4f:bd:fc:2c:e9:92:db:f8:8f:
78:6a:03:ca:2d:72:33:da:37:15:89:05:bb:ac:d4:8e:de:a8:
8f:e0:69:58:20:a7:be:91:14:8d:5c:a5:2b:73:85:bf:e1:b8:
70:fb:28:61:05:9b:46:bb:e3:66:e9:21:16:91:35:9d:87:ac:
ba:4c:4a:5f:9c:c5:75:ef:7d:05:4b:82:a2:3a:97:ce:36:83:
89:35:66:2b:69:60:aa:4b:67:59:0e:bc:0b:d1:01:01:94:3b:
87:52:8a:08:5b:21:86:d9:7d:cd:ad:af:1e:60:04:16:b9:e6:
22:ef:c4:1a:7d:c2:bb:b8:99:44:3c:9b:c9:d1:d7:e6:70:9b:
a2:df:a7:d3:71:2b:0c:1b:72:43:b1:15:d0:72:92:c1:f4:32:
a2:fc:88:00:87:e2:ab:09:61:36:ad:f0:7a:56:f9:ad:dc:6f:
69:d7:73:47:ea:97:c7:05:ff:d8:0a:6e:ca:0e:3c:ea:ec:b8:
fe:a5:91:fe:7c:f6:53:9b:fc:05:ef:8c:00:d8:af:e4:66:2c:
1a:9c:b4:ab:35:2e:0b:ab:57:32:70:21:2a:d5:9a:a6:b2:35:
16:9d:1c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:22 2023 by rpki-client on console-ams.rpki-client.org