Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/cyPdIIuPtaVgBnJxWaB5ODTGTRM.roa
File: cyPdIIuPtaVgBnJxWaB5ODTGTRM.roa (raw, json)
Hash identifier: MyZJnNlSnpzxjD7yhyumV6OS2SjQRxtftLLVTQdVrIQ=
Subject key identifier: 73:23:DD:20:8B:8F:B5:A5:60:06:72:71:59:A0:79:38:34:C6:4D:13
Certificate issuer: /CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Certificate serial: 0C65037C
Authority key identifier: 5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/cyPdIIuPtaVgBnJxWaB5ODTGTRM.roa
Signing time: Sat 01 Jan 2022 05:52:42 +0000
ROA not before: Sat 01 Jan 2022 05:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 176.58.80.0/21 maxlen: 21
185.169.238.0/23 maxlen: 24
185.169.237.0/24 maxlen: 24
185.169.236.0/23 maxlen: 24
185.169.236.0/24 maxlen: 24
185.49.248.0/22 maxlen: 24
2a0a:7300::/32 maxlen: 36
2a01:a620::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207946620 (0xc65037c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Validity
Not Before: Jan 1 05:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7323dd208b8fb5a56006727159a0793834c64d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cc:45:09:bb:17:c3:8e:e4:ef:89:ca:13:a7:
69:44:79:1e:f0:fc:40:b1:91:75:a0:5c:b8:2d:1b:
06:14:53:0b:ec:1e:08:42:c9:c5:f3:c6:32:e6:b0:
0a:dc:d0:61:a4:25:4a:5d:c2:89:14:d4:cf:c8:5b:
48:3f:d8:4d:c4:43:50:2f:2c:55:d9:7b:43:f2:e1:
d0:4a:75:82:14:c7:90:6e:05:53:31:d9:ed:e6:c4:
3e:ae:b3:07:41:f3:54:ce:d0:e3:00:ca:c6:d3:c5:
81:9c:55:0c:78:19:54:44:75:33:d8:f5:63:19:82:
3c:d7:11:3d:32:bc:ec:6e:aa:37:85:cb:93:92:7f:
b5:19:d3:e2:80:d5:f1:a5:fc:e5:92:51:fd:7d:a6:
80:45:0e:41:f9:0e:08:0e:a1:07:fd:84:49:44:c6:
af:24:71:ff:61:ac:0b:63:f9:7a:60:db:fa:24:88:
ff:2c:4a:f9:a9:e0:29:60:a8:58:20:de:28:c1:ad:
1c:bf:ed:d4:65:9f:4b:c0:4a:40:f8:df:db:df:ed:
55:f8:d7:ef:87:31:eb:6d:4f:a7:08:f4:79:e8:b6:
3f:3e:fe:28:fe:a6:4e:9c:e9:1c:37:9d:47:b6:d2:
2b:7a:81:7a:bd:fa:4b:37:13:59:da:ff:b7:43:80:
5b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:23:DD:20:8B:8F:B5:A5:60:06:72:71:59:A0:79:38:34:C6:4D:13
X509v3 Authority Key Identifier:
keyid:5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/cyPdIIuPtaVgBnJxWaB5ODTGTRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.58.80.0/21
185.49.248.0/22
185.169.236.0/22
IPv6:
2a01:a620::/32
2a0a:7300::/32
Signature Algorithm: sha256WithRSAEncryption
40:7f:be:6e:4d:10:49:7d:15:ff:09:ed:34:39:10:de:e1:54:
cd:95:40:78:ca:87:d4:47:fc:16:05:a4:7c:ec:59:17:a8:cc:
dd:a2:a4:2d:b9:b6:84:db:05:a6:15:ee:46:c4:9d:da:bd:5d:
21:20:b7:5b:25:d4:d2:60:cc:d0:74:59:9d:af:28:7c:f2:bd:
e1:95:1c:95:2a:3d:aa:fb:ea:03:63:e4:ec:76:10:0e:d0:c4:
3e:a1:17:91:90:83:f2:cf:dd:41:6e:84:0f:d5:4a:b8:1f:20:
00:4c:95:bf:09:9c:a2:98:53:e4:4b:cd:c6:2b:72:83:cc:d5:
e3:8d:ae:bd:cb:51:01:3c:40:a4:f2:47:5f:99:7e:c0:a4:70:
59:07:94:31:e9:5b:5d:7a:dd:cf:54:97:af:3c:ce:c0:24:30:
a7:4b:ff:4d:1c:f8:6c:b5:f4:d6:46:b2:6d:f4:36:70:79:54:
54:12:aa:de:61:53:8a:60:ee:e3:bb:76:59:0f:bd:cb:fd:f8:
a4:9e:81:95:ed:bc:0b:0c:d2:27:e3:6e:bc:61:e9:35:9c:e3:
3a:a4:d9:37:44:51:5a:bf:f3:8e:70:d0:72:80:f3:e4:17:56:
c9:04:77:ee:10:78:26:a6:68:61:4c:fc:93:07:0d:fd:87:7e:
4b:6e:7f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:32 2024 by rpki-client on console-ams.rpki-client.org