Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/pQYUMdEtufaAOgEATUCKT8s-XbA.roa
File: pQYUMdEtufaAOgEATUCKT8s-XbA.roa (raw, json)
Hash identifier: y8K30iSMOaCCy0oNQh5bPaZEj7uoFnzt8m0YRuqu8O0=
Subject key identifier: A5:06:14:31:D1:2D:B9:F6:80:3A:01:00:4D:40:8A:4F:CB:3E:5D:B0
Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Certificate serial: 0E5BBD37
Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/pQYUMdEtufaAOgEATUCKT8s-XbA.roa
Signing time: Sat 01 Jan 2022 03:56:29 +0000
ROA not before: Sat 01 Jan 2022 03:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198651
IP address blocks: 185.207.33.0/24 maxlen: 24
185.207.34.0/24 maxlen: 24
185.207.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240893239 (0xe5bbd37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd
Validity
Not Before: Jan 1 03:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5061431d12db9f6803a01004d408a4fcb3e5db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d8:05:82:6a:c1:d8:c5:ed:9e:3a:6b:31:e7:
ad:d8:3f:6e:2f:55:68:a2:30:28:b8:2d:89:a1:6d:
99:2b:a7:4b:c5:50:55:c8:31:2e:6b:66:5b:e2:ff:
70:39:f8:57:67:62:bb:59:c3:86:1b:95:be:13:96:
2e:75:f0:95:2b:64:2e:89:51:ba:d6:36:45:34:13:
34:57:6f:65:d2:6a:94:b5:a9:72:9c:25:f0:5b:65:
ab:e5:3c:a7:d3:72:70:32:f6:b6:07:9f:ee:41:54:
78:f4:f2:a0:a3:6b:7e:0b:87:41:b2:67:7a:29:ed:
60:26:a3:b4:e5:38:ac:bb:f4:3b:09:f7:61:37:3d:
00:3c:4d:85:26:ed:3a:5f:e6:69:2d:67:c6:32:96:
fa:fe:4a:8e:7c:e9:5c:e9:3d:d8:03:21:91:3d:af:
c3:c2:6d:13:1b:65:77:a7:70:fd:8a:09:ba:8b:49:
ba:fd:bc:8d:25:1a:1a:85:56:09:7d:a3:8f:98:bb:
34:a3:22:eb:d4:89:b7:4f:88:70:0b:d2:c3:90:49:
83:d6:b4:8e:32:27:ed:3c:5a:61:0e:cf:aa:dc:07:
9e:10:d4:a8:b6:c5:02:f2:e1:3e:ea:77:01:5b:a1:
64:54:63:7f:e1:e3:91:70:5c:cd:9c:d7:6f:46:5b:
05:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:06:14:31:D1:2D:B9:F6:80:3A:01:00:4D:40:8A:4F:CB:3E:5D:B0
X509v3 Authority Key Identifier:
keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/pQYUMdEtufaAOgEATUCKT8s-XbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.33.0-185.207.35.255
Signature Algorithm: sha256WithRSAEncryption
37:25:a0:7c:d2:58:05:7e:6a:e9:de:7e:48:71:d3:70:8e:a4:
b4:6a:a5:e2:11:1b:a0:a8:65:99:e7:0d:c0:03:6f:c8:77:e2:
40:ac:5d:c2:a6:a2:63:f1:ab:db:2e:c7:70:ea:eb:db:f4:00:
58:31:d8:96:9f:31:ae:06:be:2f:4a:7d:59:36:11:45:5e:b3:
8b:0e:33:21:65:e4:78:ef:97:37:00:59:67:1c:02:85:7e:43:
ed:79:68:32:08:59:ef:b1:6c:b2:2d:15:6d:15:be:67:82:30:
ef:44:fe:3d:5e:cf:ec:51:3e:28:95:e5:4a:79:5d:09:80:b1:
91:2b:fb:3e:f6:bd:73:b1:66:c7:f8:c0:03:fc:d6:f6:01:0f:
8d:3c:3e:67:12:7d:18:76:0b:6a:87:2d:b9:82:d9:41:19:63:
26:49:c4:41:00:1f:88:83:ee:d5:8a:df:0a:28:28:1d:fa:9a:
83:ad:06:83:2e:30:9a:71:14:99:e8:b4:65:28:04:f4:be:04:
59:d0:02:f0:3f:a7:23:17:77:aa:cf:9e:13:16:ea:f1:58:9e:
45:6b:32:f4:bd:da:dd:6d:9d:7d:65:dd:59:79:83:d8:a0:f5:
2d:eb:2f:f4:21:6d:8d:72:34:01:3b:68:fa:1b:01:90:13:11:
99:2c:87:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:51 2024 by rpki-client on console-ams.rpki-client.org