Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/eff592-1a47-40bc-84d4-0c68777a4019/1/02yYM_XX8mmY_LdYIHu7dzXzjg4.roa
File: 02yYM_XX8mmY_LdYIHu7dzXzjg4.roa (raw, json)
Hash identifier: 9FzxOf0C73Q8HxyUEBkW8E9lyaphJR9WVm7jwbl4tCg=
Subject key identifier: D3:6C:98:33:F5:D7:F2:69:98:FC:B7:58:20:7B:BB:77:35:F3:8E:0E
Certificate issuer: /CN=0b403e71ef8c3d973ce76d42042f7dfa1891688b
Certificate serial: 01956284
Authority key identifier: 0B:40:3E:71:EF:8C:3D:97:3C:E7:6D:42:04:2F:7D:FA:18:91:68:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0A-ce-MPZc8521CBC99-hiRaIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/eff592-1a47-40bc-84d4-0c68777a4019/1/02yYM_XX8mmY_LdYIHu7dzXzjg4.roa
Signing time: Wed 16 Feb 2022 15:10:51 +0000
ROA not before: Wed 16 Feb 2022 15:10:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31543
IP address blocks: 185.221.76.0/22 maxlen: 24
91.217.38.0/23 maxlen: 24
2a02:61e0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26567300 (0x1956284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b403e71ef8c3d973ce76d42042f7dfa1891688b
Validity
Not Before: Feb 16 15:10:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d36c9833f5d7f26998fcb758207bbb7735f38e0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:70:61:22:98:5b:f4:4f:46:b7:11:f2:1e:3b:
13:5d:f4:0c:ac:cf:c0:0f:e0:ab:21:a3:27:12:17:
46:83:ae:2a:6f:7d:40:bb:76:3c:a9:40:e2:6f:de:
68:a8:8f:0b:43:92:8d:36:ef:db:40:69:78:cd:81:
7f:4a:82:c9:70:77:8f:46:1d:3b:d0:05:03:5e:9f:
e0:a4:0f:62:b3:2b:36:2e:96:c1:47:be:9b:8f:d1:
1b:7c:5d:e1:1a:9b:e9:dc:e1:97:2d:4f:17:2a:20:
c3:2e:49:d3:0d:75:c0:b6:d3:47:09:14:16:9d:f0:
79:f1:3c:94:d3:73:1f:6f:b5:80:7e:05:6d:c1:9a:
e2:88:55:19:1f:5a:a5:20:09:19:9f:9f:e6:dd:d8:
f1:9f:09:47:4d:cf:26:0b:49:78:d6:4d:71:b8:72:
4c:94:d8:92:ca:0a:a8:1a:93:87:f2:e5:48:99:f7:
0a:87:90:64:8e:19:f8:19:a3:f4:7f:58:e1:98:19:
16:1f:de:cf:cf:ce:6a:45:4f:b3:1e:b0:cd:39:54:
75:b7:54:18:5b:d2:60:35:88:a8:da:94:31:31:82:
48:6a:fd:cf:e6:42:97:0f:b8:ff:06:79:d2:49:35:
8b:b7:e0:4b:bb:5b:1d:ac:1b:ad:49:aa:ab:41:7c:
5d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6C:98:33:F5:D7:F2:69:98:FC:B7:58:20:7B:BB:77:35:F3:8E:0E
X509v3 Authority Key Identifier:
keyid:0B:40:3E:71:EF:8C:3D:97:3C:E7:6D:42:04:2F:7D:FA:18:91:68:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0A-ce-MPZc8521CBC99-hiRaIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/eff592-1a47-40bc-84d4-0c68777a4019/1/02yYM_XX8mmY_LdYIHu7dzXzjg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/eff592-1a47-40bc-84d4-0c68777a4019/1/C0A-ce-MPZc8521CBC99-hiRaIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.38.0/23
185.221.76.0/22
IPv6:
2a02:61e0::/32
Signature Algorithm: sha256WithRSAEncryption
b3:ff:65:d8:ed:1c:1f:7a:68:62:39:46:18:45:fc:08:44:6a:
35:7c:78:25:15:17:b9:01:ae:ad:24:2a:0d:f6:a0:c1:fb:1f:
ad:57:64:ae:50:b9:90:c5:40:4a:57:5c:91:cf:6d:c8:08:21:
b8:9b:31:0a:4a:1f:30:81:46:bd:5f:fc:6f:9d:a2:3d:77:9c:
88:a6:4e:da:bb:04:74:90:a4:61:51:e0:c0:de:c9:0e:69:6a:
14:c5:15:cd:f7:c7:2f:58:60:9c:82:17:c0:a1:ed:68:78:ab:
bf:b1:e0:0d:e2:c8:97:7a:3d:eb:27:17:19:5c:5d:cf:e9:4a:
5d:e3:02:38:ed:38:7e:97:e2:94:b8:be:a4:8c:77:b2:ad:d0:
a8:06:6b:0d:a3:c9:01:7d:f5:7c:0e:fd:68:d9:0e:5d:a1:a3:
b4:79:ed:5c:1d:b7:06:68:92:b0:08:76:dc:4d:d4:a0:f3:cb:
12:24:5a:c9:31:c5:27:f6:2a:50:25:16:b6:8d:6e:8b:45:d4:
f1:6d:a9:3a:d6:69:71:8b:54:6c:d5:cb:ff:fb:f4:99:db:a7:
71:6a:93:4e:c0:f1:06:f1:76:63:49:0d:ca:48:3c:05:93:ed:
69:43:cf:85:e3:34:fd:c1:3f:6f:92:40:2e:d2:ee:51:c7:31:
d5:9f:ec:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:11 2024 by rpki-client on console-ams.rpki-client.org