Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/by4fXXTJf0ACNnalBAEgK-qo6vI.roa
File: by4fXXTJf0ACNnalBAEgK-qo6vI.roa (raw, json)
Hash identifier: SDEzeJfEpc0dwj38LuJFu/ykoEKidTGOckpO17WqRPk=
Subject key identifier: 6F:2E:1F:5D:74:C9:7F:40:02:36:76:A5:04:01:20:2B:EA:A8:EA:F2
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 02C48638
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/by4fXXTJf0ACNnalBAEgK-qo6vI.roa
Signing time: Wed 18 May 2022 19:25:16 +0000
ROA not before: Wed 18 May 2022 19:25:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 194.113.239.0/24 maxlen: 24
194.113.238.0/24 maxlen: 24
185.221.196.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46433848 (0x2c48638)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: May 18 19:25:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f2e1f5d74c97f40023676a50401202beaa8eaf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:99:04:fe:37:58:10:e8:30:87:2d:e9:d9:de:
0a:fd:a0:7b:c3:f6:04:3a:80:32:5b:56:28:ad:17:
1f:a3:79:ea:51:d0:9a:99:eb:e4:78:ea:4c:c0:ba:
e1:28:3d:e1:e2:0b:1f:0e:ca:e5:2f:8e:af:3b:a4:
31:a9:ba:3f:31:53:2e:93:95:16:51:c0:d3:5d:75:
c5:3c:c1:58:f3:da:77:c2:99:12:08:32:35:81:be:
82:c7:5d:d5:2c:3f:43:3a:12:9f:c3:db:9b:8e:ab:
37:e0:93:4f:80:03:5e:d6:42:e7:43:66:39:9c:93:
57:e7:57:72:e5:5e:98:26:51:30:1b:1c:6e:f9:fd:
20:54:f4:b5:4d:35:3f:e6:f1:8f:53:b1:82:c0:21:
b3:e7:9b:e3:25:2d:45:17:2e:99:df:95:c9:69:3c:
3e:a4:43:b9:c7:fb:26:a1:75:db:c9:aa:7b:7c:a3:
39:50:b3:cc:5e:be:5d:10:c0:73:d5:ba:ae:2f:36:
69:59:54:15:4a:e8:e1:45:62:25:6f:e8:81:73:dc:
4a:01:5b:73:a8:1e:bd:55:05:ac:c7:1c:2a:e8:dc:
2c:b6:70:75:c2:e1:76:d1:ee:f9:f3:1f:88:48:8a:
be:43:2b:51:43:18:e9:a0:74:15:05:e1:b2:7d:34:
07:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2E:1F:5D:74:C9:7F:40:02:36:76:A5:04:01:20:2B:EA:A8:EA:F2
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/by4fXXTJf0ACNnalBAEgK-qo6vI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.196.0/23
194.113.238.0/23
Signature Algorithm: sha256WithRSAEncryption
98:fb:7c:e7:3b:4e:b4:fc:39:09:7c:7c:51:7d:56:8a:9b:cf:
bc:a8:bc:60:a8:ee:31:e8:bd:00:1c:c9:97:7f:8d:68:ea:44:
0c:be:8c:2d:0c:08:d4:14:37:45:c2:ba:06:fa:6b:1c:3b:47:
8d:85:74:45:b5:27:36:68:99:ca:2c:eb:08:2d:ee:35:33:0e:
3c:ba:fa:1b:12:c3:b6:65:74:90:67:ca:92:80:be:b1:7f:fb:
ba:cf:da:46:58:22:33:2f:95:45:8f:6d:56:d5:a5:da:b7:5b:
a1:52:ca:4a:99:cb:8b:30:6b:10:cb:7a:ff:84:72:e2:4a:ed:
b4:d1:63:50:dd:15:03:e3:28:cf:79:c7:d3:e2:c6:26:1f:b5:
80:2e:15:88:da:90:0e:27:01:0b:55:16:95:3d:91:0e:19:1d:
6d:72:40:e5:f3:47:94:43:7a:03:0b:d6:8d:41:6b:64:dd:8e:
8a:c0:3f:1f:a7:ce:f6:f7:a5:db:00:ea:fa:37:92:8c:44:09:
f0:1c:7b:bb:f7:48:7a:4d:43:c9:a6:52:67:bf:60:0f:c1:39:
85:45:f9:00:19:82:3d:2b:f3:a9:55:d0:c4:9c:51:79:00:62:
0e:cf:2f:fe:35:5d:08:8f:ae:2d:14:2e:50:83:0d:c9:79:ae:
7b:68:5a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:31 2023 by rpki-client on console-ams.rpki-client.org