Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/45b2d9-e861-43ef-bcc0-e9975a0bdea7/1/ycTMBA27k3M6l8UEv7N5RKl369w.roa
File: ycTMBA27k3M6l8UEv7N5RKl369w.roa (raw, json)
Hash identifier: mpAgryPoWDAq2kU0/1TiKQ3BbX1tH1G8OvzJsgPrZ4I=
Subject key identifier: C9:C4:CC:04:0D:BB:93:73:3A:97:C5:04:BF:B3:79:44:A9:77:EB:DC
Certificate issuer: /CN=a4434d6691e6e27c282caa37aff90f2bc54bf1e3
Certificate serial: 0DFE44A0
Authority key identifier: A4:43:4D:66:91:E6:E2:7C:28:2C:AA:37:AF:F9:0F:2B:C5:4B:F1:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pENNZpHm4nwoLKo3r_kPK8VL8eM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/45b2d9-e861-43ef-bcc0-e9975a0bdea7/1/ycTMBA27k3M6l8UEv7N5RKl369w.roa
Signing time: Sat 19 Mar 2022 23:38:36 +0000
ROA not before: Sat 19 Mar 2022 23:38:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 37468
IP address blocks: 185.148.112.0/22 maxlen: 23
185.148.112.0/23 maxlen: 23
185.148.114.0/23 maxlen: 24
2a07:6040::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234767520 (0xdfe44a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4434d6691e6e27c282caa37aff90f2bc54bf1e3
Validity
Not Before: Mar 19 23:38:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9c4cc040dbb93733a97c504bfb37944a977ebdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ac:14:7d:cf:25:9f:23:64:0d:ef:46:bc:a7:
68:0d:fd:8c:e6:2c:be:74:b7:35:08:25:9b:ba:b1:
ea:57:f7:f8:b3:ba:ab:53:36:35:fa:e5:e3:46:4d:
a9:d2:0b:03:1c:cc:df:97:f7:78:b0:2d:c8:c0:51:
ac:23:4e:4d:64:76:8b:28:e1:cb:6d:1e:56:6e:cd:
ff:06:14:f6:60:83:e9:27:b2:17:d2:42:ee:13:48:
89:2e:66:aa:92:4c:ed:64:5f:05:a0:8b:a5:c5:60:
9f:43:a6:dc:ab:8e:0f:cf:e8:6c:4f:25:03:10:85:
f4:00:e0:da:3c:a7:c2:9e:c4:60:3a:14:b2:0b:2b:
46:f8:2f:88:cd:ea:e8:0c:99:98:18:ff:ae:98:27:
0e:16:03:3e:5d:a8:b7:3f:a0:98:6b:47:e3:bb:ee:
d0:88:ed:73:e7:64:5c:d9:dd:fe:84:0e:95:aa:e4:
71:4a:1f:96:22:a2:5a:b6:15:3e:6e:7f:49:99:9a:
8b:3e:15:c5:51:e4:45:00:27:fb:82:ce:70:c3:da:
25:7b:d9:06:74:1d:5d:69:74:f8:2f:5b:b8:66:09:
a0:15:54:2e:ba:c7:3b:11:d0:c8:02:7b:e4:2a:3e:
99:8b:98:03:ba:0a:d7:44:88:36:cd:c9:15:05:83:
4c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C4:CC:04:0D:BB:93:73:3A:97:C5:04:BF:B3:79:44:A9:77:EB:DC
X509v3 Authority Key Identifier:
keyid:A4:43:4D:66:91:E6:E2:7C:28:2C:AA:37:AF:F9:0F:2B:C5:4B:F1:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pENNZpHm4nwoLKo3r_kPK8VL8eM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/45b2d9-e861-43ef-bcc0-e9975a0bdea7/1/ycTMBA27k3M6l8UEv7N5RKl369w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/45b2d9-e861-43ef-bcc0-e9975a0bdea7/1/pENNZpHm4nwoLKo3r_kPK8VL8eM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.112.0/22
IPv6:
2a07:6040::/29
Signature Algorithm: sha256WithRSAEncryption
06:3b:46:2d:5d:77:75:89:df:1c:3d:8f:35:8e:8f:81:66:05:
a5:57:94:72:80:b8:19:bb:4e:3d:d6:35:db:7b:cb:80:de:38:
de:d1:fb:76:c8:e6:c2:fb:5e:23:e5:a2:04:07:c9:f6:ea:83:
82:98:a5:1d:85:d7:7c:a0:d6:e7:8b:9a:28:d9:c2:c4:18:50:
c4:96:de:0e:2a:91:38:15:91:28:11:f6:fd:0b:5f:16:fd:fb:
2f:a6:d4:34:5b:33:d7:cd:d4:43:d7:d7:f0:b9:1b:7e:01:bc:
95:6f:f2:ee:9a:b5:22:46:40:28:e6:d4:0e:ed:14:66:23:7c:
6b:a2:03:fc:3b:03:bc:a5:63:65:d0:5c:71:30:e5:4e:b9:b1:
32:0d:f2:c2:39:6c:a4:99:33:23:85:9c:f7:52:28:eb:9b:11:
08:d6:32:2b:0a:32:b6:df:2b:4b:2b:12:1f:05:f7:74:7a:f0:
6b:95:ef:a3:d9:db:79:c6:55:1a:0d:db:b0:f6:03:8f:64:d6:
07:d2:2f:e1:8c:8c:34:04:18:35:24:30:8f:e4:a1:8d:fb:9c:
d4:4a:ba:87:fb:9e:f8:9d:f1:44:20:40:97:74:6c:ad:aa:89:
e9:c8:c7:e4:af:e5:72:6f:ff:4b:f1:78:c9:b7:4c:05:cf:69:
25:f9:22:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:34 2024 by rpki-client on console-ams.rpki-client.org