Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/080530-3f81-4479-b5a0-9a38159b794e/1/M435y_PGYpR0Fhef0CS14m9apYA.roa
File: M435y_PGYpR0Fhef0CS14m9apYA.roa (raw, json)
Hash identifier: ctmiJ+G6T/qcbZqX7kBPisJGyp3IYehA4C/MuytfBdk=
Subject key identifier: 33:8D:F9:CB:F3:C6:62:94:74:16:17:9F:D0:24:B5:E2:6F:5A:A5:80
Certificate issuer: /CN=773110a43704d9549df7156e3a789e62285b1693
Certificate serial: 05D41676
Authority key identifier: 77:31:10:A4:37:04:D9:54:9D:F7:15:6E:3A:78:9E:62:28:5B:16:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzEQpDcE2VSd9xVuOnieYihbFpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/080530-3f81-4479-b5a0-9a38159b794e/1/M435y_PGYpR0Fhef0CS14m9apYA.roa
Signing time: Sat 01 Jan 2022 03:54:38 +0000
ROA not before: Sat 01 Jan 2022 03:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59626
IP address blocks: 185.139.100.0/22 maxlen: 22
2a07:1480::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97785462 (0x5d41676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=773110a43704d9549df7156e3a789e62285b1693
Validity
Not Before: Jan 1 03:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=338df9cbf3c662947416179fd024b5e26f5aa580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:75:50:92:47:9e:aa:57:9f:e9:4e:6d:b4:
f0:62:c9:3a:b6:51:1a:e6:6f:bf:45:ff:12:b1:fe:
1e:fc:17:88:1b:50:e9:e2:de:28:af:7e:62:11:15:
08:f2:7c:51:14:d8:3d:f2:6c:c4:f9:bc:84:2f:81:
81:55:ce:3a:8c:de:8f:9d:21:1b:80:42:52:3b:48:
dc:9b:cf:02:e5:66:c5:a9:ae:a0:44:63:8b:d0:75:
d1:4e:a2:19:4a:71:28:52:f1:a9:3b:de:7f:85:d5:
4e:cd:4d:25:64:d5:e1:e3:47:88:58:1c:1d:fd:49:
9c:69:88:b4:3e:96:be:45:55:6d:27:5e:c9:de:a0:
c0:4b:85:08:78:f1:70:82:a9:00:ac:4b:37:f2:0e:
56:29:5b:d5:dd:6a:d6:55:31:36:0b:db:bc:1d:3e:
25:6a:1d:de:50:23:ba:91:b5:f7:6d:1a:c8:34:95:
f9:7b:96:d5:86:b3:b3:8c:69:78:db:16:12:c8:21:
88:33:2d:13:06:5c:1f:b5:c0:7c:01:30:96:39:82:
18:2a:8f:70:cc:f3:3c:b5:1c:64:8c:60:d1:ad:70:
ef:04:18:cd:ab:21:c3:0a:2b:f8:db:89:8d:9f:55:
5a:d1:fe:32:45:d8:ac:fc:10:61:3b:55:47:d1:16:
b5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:8D:F9:CB:F3:C6:62:94:74:16:17:9F:D0:24:B5:E2:6F:5A:A5:80
X509v3 Authority Key Identifier:
keyid:77:31:10:A4:37:04:D9:54:9D:F7:15:6E:3A:78:9E:62:28:5B:16:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzEQpDcE2VSd9xVuOnieYihbFpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/080530-3f81-4479-b5a0-9a38159b794e/1/M435y_PGYpR0Fhef0CS14m9apYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/080530-3f81-4479-b5a0-9a38159b794e/1/dzEQpDcE2VSd9xVuOnieYihbFpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.100.0/22
IPv6:
2a07:1480::/29
Signature Algorithm: sha256WithRSAEncryption
46:2b:7b:80:b5:96:73:50:60:5d:39:63:90:e5:d5:62:41:66:
69:5b:cd:ea:ce:15:c8:10:f6:38:70:ae:cf:84:3b:22:08:d1:
35:70:f1:c8:88:82:5a:37:ea:9a:a5:96:c6:23:00:d5:a3:28:
26:c2:ab:ae:c8:e8:5f:98:c3:60:29:d2:e5:a9:20:e3:a6:97:
17:f7:04:1e:87:23:1c:5f:20:7a:13:9b:ba:98:2f:f8:94:18:
83:3f:22:fa:da:7a:c6:e1:a4:58:e9:61:6f:d9:79:2c:4b:1b:
ee:a9:29:ee:3f:81:69:18:3e:3e:3e:3b:ea:40:b6:97:90:b4:
67:38:02:1f:48:77:64:a0:46:27:84:ed:5a:a9:2f:ff:0b:ae:
15:96:35:40:88:e8:0c:4f:5d:65:65:b5:ef:db:59:a5:2d:24:
cc:dd:9b:5b:3d:7e:78:ed:76:a9:ae:d4:e8:e6:d3:7d:46:db:
4f:00:f4:5b:49:7e:b3:d0:03:4a:c9:16:2a:f7:cd:0a:85:e3:
f9:fc:4c:d7:21:d0:f1:de:62:c7:b7:de:91:27:9b:ac:6e:be:
54:d3:3d:40:07:98:5b:0e:b9:b1:59:fe:2f:38:25:a4:b6:17:
78:4c:ab:a8:9e:5d:18:a9:59:4c:18:4b:f9:99:9a:f9:6f:e2:
a0:99:25:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:50 2024 by rpki-client on console-ams.rpki-client.org