Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/39b8ad-e653-4ccd-828c-b7eb12998b35/1/p3pxaUvL5bRus7XEIkhpocnQA6s.roa
File: p3pxaUvL5bRus7XEIkhpocnQA6s.roa (raw, json)
Hash identifier: 7qFWGQloyJ6wb+Q9AV7qa9UPb6AbEXXTbgNp9qJiZas=
Subject key identifier: A7:7A:71:69:4B:CB:E5:B4:6E:B3:B5:C4:22:48:69:A1:C9:D0:03:AB
Certificate issuer: /CN=0866af425ab3d39d7337c2b125d39593ad91c1d1
Certificate serial: 05AF3E1A
Authority key identifier: 08:66:AF:42:5A:B3:D3:9D:73:37:C2:B1:25:D3:95:93:AD:91:C1:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGavQlqz051zN8KxJdOVk62RwdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/39b8ad-e653-4ccd-828c-b7eb12998b35/1/p3pxaUvL5bRus7XEIkhpocnQA6s.roa
Signing time: Sat 01 Jan 2022 14:00:53 +0000
ROA not before: Sat 01 Jan 2022 14:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205344
IP address blocks: 91.239.54.0/24 maxlen: 24
185.219.12.0/22 maxlen: 22
2a0c:bc00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95370778 (0x5af3e1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0866af425ab3d39d7337c2b125d39593ad91c1d1
Validity
Not Before: Jan 1 14:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a77a71694bcbe5b46eb3b5c4224869a1c9d003ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:15:15:df:f5:64:f0:45:6d:33:cd:ed:06:59:
c9:1e:76:f7:4e:c6:86:5c:a1:4c:35:f3:a3:63:92:
0b:dd:90:96:74:89:a8:63:a4:cb:69:af:a4:ae:05:
78:65:25:f0:dd:ef:b2:c0:89:53:a7:f7:79:11:ba:
21:6e:c2:95:0a:82:42:cc:6c:e6:2f:96:76:71:a2:
72:0b:82:c7:c5:de:9b:b8:c4:f2:f3:dd:1e:16:85:
b9:5b:61:a5:37:7d:5b:24:ef:4c:ed:4e:c7:9b:99:
2f:02:d4:5e:89:62:25:bc:9b:87:77:aa:db:0d:59:
5a:09:7c:ce:e7:19:13:fb:64:a3:4a:74:d6:fa:7b:
46:1a:31:dc:8e:7c:36:ae:79:ba:8f:21:fd:8d:00:
13:63:05:b4:91:48:64:5e:54:82:3a:ea:26:52:84:
9e:f6:8d:d9:8d:bd:9f:83:4a:4a:ba:a6:94:05:1f:
b4:08:f4:5d:34:e3:d1:82:db:80:a5:7e:1b:fd:01:
2c:8e:71:34:65:76:4e:bc:6e:c2:7d:b6:07:ad:ec:
42:86:2f:09:76:1e:a0:fb:93:93:7a:e9:9b:2f:09:
2b:7b:04:6b:4b:d8:6a:9f:dd:f2:47:22:85:71:9d:
c5:80:11:ad:8d:96:68:4f:0a:79:c6:d1:b7:6d:ba:
06:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:7A:71:69:4B:CB:E5:B4:6E:B3:B5:C4:22:48:69:A1:C9:D0:03:AB
X509v3 Authority Key Identifier:
keyid:08:66:AF:42:5A:B3:D3:9D:73:37:C2:B1:25:D3:95:93:AD:91:C1:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGavQlqz051zN8KxJdOVk62RwdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/39b8ad-e653-4ccd-828c-b7eb12998b35/1/p3pxaUvL5bRus7XEIkhpocnQA6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/39b8ad-e653-4ccd-828c-b7eb12998b35/1/CGavQlqz051zN8KxJdOVk62RwdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.54.0/24
185.219.12.0/22
IPv6:
2a0c:bc00::/29
Signature Algorithm: sha256WithRSAEncryption
12:3b:77:69:58:52:88:7f:e7:b5:99:82:57:3a:e2:0a:9b:8f:
3f:7d:62:90:47:9b:a8:71:5f:f3:87:02:03:ad:37:1f:91:72:
43:28:63:b4:3d:05:25:a5:75:e7:ee:16:7f:59:0b:f3:67:66:
ed:8e:52:46:23:e0:28:a6:a8:f3:62:a6:0a:8a:4f:17:f0:18:
8b:8c:39:5f:d9:4f:c3:e2:ba:8d:26:45:ae:1b:f3:31:3a:02:
bf:4b:e7:6c:01:cd:62:62:ce:1a:4c:27:88:59:09:0d:a6:d2:
61:b9:d3:f3:b3:1f:f7:3b:e7:c1:f5:62:aa:ba:9a:08:9c:d4:
21:a5:b0:4b:76:28:b8:f3:df:90:c6:17:d4:bc:14:d0:1e:d6:
b3:54:e2:53:c8:70:0d:8f:e6:50:d0:88:06:a5:e7:84:82:66:
3b:2a:0d:29:4f:5c:f4:40:27:11:a3:2e:ba:e2:c5:2e:6d:f1:
ae:80:2d:33:b5:c2:9d:e5:f9:f5:71:45:b4:b9:f8:86:63:7b:
9c:6b:ab:6a:17:84:64:aa:7b:ca:3e:44:27:91:e1:19:70:14:
8e:d8:fa:15:41:74:f4:84:0c:cb:5e:57:33:c1:2d:9f:25:e0:
f5:75:6d:83:f1:7d:9d:0d:4f:f4:e6:81:47:fd:0f:f3:50:52:
1e:cb:f5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:38 2023 by rpki-client on console-ams.rpki-client.org