Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3222e2-6456-4c6a-b197-205895961493/1/Imyg5Z77Ntv1JbFFpAbKPcywePA.roa
File: Imyg5Z77Ntv1JbFFpAbKPcywePA.roa (raw, json)
Hash identifier: e/0ekaOwJUVLcZ5gryKyZaf9llWfQR0vJCLXQY1f99c=
Subject key identifier: 22:6C:A0:E5:9E:FB:36:DB:F5:25:B1:45:A4:06:CA:3D:CC:B0:78:F0
Certificate issuer: /CN=8f281090c400a56166fc88b4f37a5cbaed2185f0
Certificate serial: 09FDCA55
Authority key identifier: 8F:28:10:90:C4:00:A5:61:66:FC:88:B4:F3:7A:5C:BA:ED:21:85:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jygQkMQApWFm_Ii083pcuu0hhfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3222e2-6456-4c6a-b197-205895961493/1/Imyg5Z77Ntv1JbFFpAbKPcywePA.roa
Signing time: Sat 01 Jan 2022 14:04:29 +0000
ROA not before: Sat 01 Jan 2022 14:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55081
IP address blocks: 185.239.172.0/22 maxlen: 22
2a0c:5c86::/32 maxlen: 32
2a0c:5c84::/32 maxlen: 32
2a0c:5c82::/32 maxlen: 32
2a0c:5c80::/32 maxlen: 32
2a0c:5c83::/32 maxlen: 32
2a0c:5c85::/32 maxlen: 32
2a0c:5c87::/32 maxlen: 32
2a0c:5c81::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167627349 (0x9fdca55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f281090c400a56166fc88b4f37a5cbaed2185f0
Validity
Not Before: Jan 1 14:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=226ca0e59efb36dbf525b145a406ca3dccb078f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:89:aa:03:f1:73:90:67:4f:33:e3:77:c5:d4:
bc:ae:86:fd:66:bf:2a:0a:00:b4:33:e2:2f:8a:c9:
3d:5e:9b:a6:e3:09:b6:27:f1:f1:72:57:d6:f2:2b:
07:60:2b:eb:83:0c:f0:86:b0:88:08:ee:5a:2e:97:
a5:d4:21:7d:dc:46:31:d0:df:ce:20:a8:26:57:06:
c7:e3:2e:bc:27:7e:7a:48:13:14:b5:ab:07:ae:30:
a1:a1:8b:b2:9b:eb:b5:5d:ad:49:9d:a1:ef:e9:6f:
37:43:13:8e:09:3a:a6:29:ab:b6:66:2b:c4:f3:a2:
3b:c6:bd:a9:2a:31:ea:77:6c:11:20:68:67:56:1b:
10:ea:b1:37:4c:ec:41:43:16:a9:1c:11:7f:db:46:
21:34:fe:0c:13:ee:8b:b1:3a:a9:66:17:a2:3b:b1:
10:78:28:e4:75:1d:07:2a:48:f7:f1:14:b1:1d:35:
94:d7:4c:a7:a2:a4:eb:73:35:e8:6f:9f:ed:c5:ff:
fb:a9:1f:12:bb:d9:35:b2:f4:91:74:6f:ac:3f:91:
85:72:bb:5a:9a:49:3b:15:b0:1b:04:af:36:2f:85:
a1:b7:64:4b:f1:26:e7:4f:fa:26:c7:bd:e1:d6:22:
56:10:5c:38:44:40:dd:b1:f7:73:c5:c8:45:de:59:
77:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6C:A0:E5:9E:FB:36:DB:F5:25:B1:45:A4:06:CA:3D:CC:B0:78:F0
X509v3 Authority Key Identifier:
keyid:8F:28:10:90:C4:00:A5:61:66:FC:88:B4:F3:7A:5C:BA:ED:21:85:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jygQkMQApWFm_Ii083pcuu0hhfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3222e2-6456-4c6a-b197-205895961493/1/Imyg5Z77Ntv1JbFFpAbKPcywePA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3222e2-6456-4c6a-b197-205895961493/1/jygQkMQApWFm_Ii083pcuu0hhfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.172.0/22
IPv6:
2a0c:5c80::/29
Signature Algorithm: sha256WithRSAEncryption
53:48:8a:9a:50:6b:7c:79:c7:13:11:22:dd:43:4e:10:24:c7:
34:57:83:5e:86:ba:fa:f3:dc:ee:4b:ce:bb:42:eb:0a:65:03:
57:f2:06:aa:b1:f3:0b:f8:80:64:3a:95:14:d1:64:3c:3e:41:
34:00:89:0b:8a:55:e3:bc:89:cd:62:d4:fa:b9:dd:f2:cc:4a:
c4:b5:d7:e4:bf:6d:dc:75:55:27:ca:15:9c:6e:3e:1d:c8:eb:
0d:29:a8:d8:8b:5c:56:86:ca:13:90:a6:94:68:c7:3e:3c:7a:
f0:d0:46:d6:3f:3c:8b:ce:38:98:97:3b:fa:c2:fe:c4:7c:20:
8b:0a:b5:f8:7b:22:fb:f8:b4:83:f1:0b:26:d7:9f:88:06:5a:
fb:43:1f:10:43:fc:99:c2:38:40:99:1f:c8:59:ae:ab:fe:9d:
0e:19:ee:7b:92:1c:93:38:7d:af:f5:ba:c4:4f:6b:78:c4:06:
b4:84:f2:d7:2e:bc:14:51:37:5f:d0:1c:29:d8:9f:c4:a3:72:
cf:ea:38:c1:0d:17:5d:5e:aa:66:53:48:56:bb:a3:a3:23:d4:
9c:90:94:b2:3b:01:b6:ca:e0:17:43:fe:0f:dc:2c:1f:51:bb:
d0:21:d8:85:ee:f6:f9:df:ae:f2:10:f2:2d:93:44:2b:7b:2e:
52:18:35:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:26 2024 by rpki-client on console-fra.rpki-client.org