Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/2yde_kyaDmZUOcyiaNdfB83kuyo.roa
File: 2yde_kyaDmZUOcyiaNdfB83kuyo.roa (raw, json)
Hash identifier: 7WumQXN8BsQBGL4tzl58HdyTKBnfXVp6ye0QCYXsIHA=
Subject key identifier: DB:27:5E:FE:4C:9A:0E:66:54:39:CC:A2:68:D7:5F:07:CD:E4:BB:2A
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 064CCE67
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/2yde_kyaDmZUOcyiaNdfB83kuyo.roa
Signing time: Sat 01 Jan 2022 11:01:09 +0000
ROA not before: Sat 01 Jan 2022 11:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20765
IP address blocks: 185.126.35.32/27 maxlen: 27
185.126.35.80/28 maxlen: 28
185.126.35.64/28 maxlen: 28
185.126.35.0/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105696871 (0x64cce67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db275efe4c9a0e665439cca268d75f07cde4bb2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:37:4c:01:28:91:c1:2b:31:64:51:d8:24:75:
0d:d6:fe:b3:ce:7d:32:f0:d2:f2:b4:44:d1:ca:a1:
0f:47:a6:cf:09:ee:76:be:4e:b1:2c:b4:0d:a1:30:
26:9d:bf:36:9e:0f:88:13:64:dd:7d:64:b4:60:80:
83:df:b2:1a:59:0a:1d:1e:19:c8:c3:91:ed:8b:b3:
0c:aa:07:c2:c8:f8:cd:33:ee:ee:bb:f9:5b:13:ea:
e5:e0:0c:3d:91:67:62:bf:c7:b5:32:55:b9:7c:07:
3a:a4:1e:b1:ce:80:4d:08:61:63:04:b9:92:1d:ad:
be:9d:4a:71:ca:28:ac:9e:8b:d3:bc:dd:a7:8a:b1:
52:9f:49:47:73:e2:0a:67:ec:23:ef:55:27:cd:a4:
75:44:31:3e:dd:c5:69:c5:b2:f2:43:86:8c:6e:2a:
c4:e3:08:ae:c9:70:1f:be:df:86:40:ad:65:60:70:
5e:e6:3a:66:a1:99:6e:43:94:ba:44:db:08:b5:8c:
02:63:09:72:f8:93:e8:bb:fc:19:e7:6c:85:36:46:
17:99:17:e4:7a:1f:35:e2:f3:d2:53:89:62:de:bd:
01:bc:20:90:84:cc:e1:c4:82:5a:74:45:c2:c4:a7:
e6:6f:1f:74:c8:dd:7e:0b:25:1c:0e:9f:64:0f:11:
f1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:27:5E:FE:4C:9A:0E:66:54:39:CC:A2:68:D7:5F:07:CD:E4:BB:2A
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/2yde_kyaDmZUOcyiaNdfB83kuyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.35.0-185.126.35.95
Signature Algorithm: sha256WithRSAEncryption
ae:4e:f9:6f:b5:2b:9b:e8:fa:20:4c:bf:2a:50:ac:f7:f2:68:
95:2b:3e:3b:a2:6d:5f:c5:01:6d:34:0f:64:50:96:fa:bd:4d:
65:18:f0:99:c4:38:d2:9a:d5:8a:71:53:3c:34:61:ef:30:4d:
03:71:f0:b4:bb:21:31:9b:a3:3c:bd:72:58:84:e7:9e:0f:76:
18:6b:2c:ad:4d:b7:28:a9:26:30:5a:47:4a:52:de:01:05:c7:
4f:c8:10:df:eb:fe:db:5e:b4:64:36:45:10:98:e7:2b:56:d6:
74:b5:ed:93:28:26:8d:57:d5:11:a2:6e:5a:3f:e9:db:76:08:
65:6a:01:f9:60:50:c2:95:97:8f:35:57:84:e9:1a:9c:93:59:
1e:74:6c:58:aa:93:ab:0a:f3:2c:02:85:37:47:e3:a7:9c:9f:
bd:aa:2e:2f:73:90:4b:d1:e0:06:5f:2d:84:34:f3:f1:f9:11:
e5:e4:39:6c:03:7c:38:39:89:05:ac:dc:71:21:67:3c:d3:4f:
b7:07:a6:9b:fd:e4:ec:7c:53:41:f1:52:9d:1a:ac:40:a4:26:
00:2e:d1:f7:5a:ee:6a:f8:26:72:45:b7:a6:89:54:9e:20:68:
bf:0f:fa:b8:78:34:02:7f:6e:6c:03:52:e4:d3:9b:8d:e4:84:
15:88:46:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org