Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/_e5G2ZM50nFT8ptWlg0WKA-A1lw.roa
File: _e5G2ZM50nFT8ptWlg0WKA-A1lw.roa (raw, json)
Hash identifier: f1pH8n0Ssd3ylVyOdFHQr/3eISG/jcPalTtN6bl7r6Q=
Subject key identifier: FD:EE:46:D9:93:39:D2:71:53:F2:9B:56:96:0D:16:28:0F:80:D6:5C
Certificate issuer: /CN=46ffa79440c517eddbaced3aa60e5fbcbdc6502e
Certificate serial: 12039367
Authority key identifier: 46:FF:A7:94:40:C5:17:ED:DB:AC:ED:3A:A6:0E:5F:BC:BD:C6:50:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rv-nlEDFF-3brO06pg5fvL3GUC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/_e5G2ZM50nFT8ptWlg0WKA-A1lw.roa
Signing time: Sat 01 Jan 2022 03:01:51 +0000
ROA not before: Sat 01 Jan 2022 03:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62248
IP address blocks: 185.73.132.0/23 maxlen: 23
185.73.135.0/24 maxlen: 24
185.73.134.0/24 maxlen: 24
2a05:4280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302224231 (0x12039367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ffa79440c517eddbaced3aa60e5fbcbdc6502e
Validity
Not Before: Jan 1 03:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdee46d99339d27153f29b56960d16280f80d65c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:33:5f:7d:09:23:d0:18:f4:c2:4d:99:52:38:
2f:96:9f:24:ed:b5:c3:5c:e7:aa:4d:e5:8f:dc:e8:
17:6b:5e:33:3d:97:39:6e:51:ed:e8:4f:40:93:69:
f4:6e:ed:0c:09:d6:98:3c:a7:75:e5:3f:8e:d6:1c:
3b:a7:f1:3c:91:8d:50:85:ed:41:af:9c:f8:af:61:
1c:83:b2:d5:41:be:3b:dd:00:ae:fb:c9:78:35:02:
1b:56:32:f7:3d:34:86:e2:51:56:2e:03:28:9b:0a:
33:d1:2f:0d:e0:72:a8:8e:13:e3:7b:b4:4c:71:b8:
da:e2:a0:2b:47:92:5b:5a:2f:fd:1f:43:d8:ce:90:
f7:65:77:ab:03:a6:aa:6e:87:ac:48:5a:29:25:f8:
28:54:24:f1:45:c8:51:11:96:64:c0:cb:b6:67:71:
89:14:7b:57:be:89:4e:28:a1:d7:9f:db:7a:4d:31:
ec:df:52:dc:17:96:4a:6a:1f:04:1f:38:65:63:c5:
56:ce:a9:5e:64:67:f3:f1:4e:8a:eb:cf:8b:fb:4a:
56:b0:ee:33:c5:ad:a3:aa:59:b8:d6:33:56:9c:15:
91:5e:bc:43:cd:bd:5f:f9:46:5e:bd:08:19:51:6c:
5b:9d:fe:fa:04:b4:0d:ab:1e:2d:34:92:1d:c8:4f:
77:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:EE:46:D9:93:39:D2:71:53:F2:9B:56:96:0D:16:28:0F:80:D6:5C
X509v3 Authority Key Identifier:
keyid:46:FF:A7:94:40:C5:17:ED:DB:AC:ED:3A:A6:0E:5F:BC:BD:C6:50:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rv-nlEDFF-3brO06pg5fvL3GUC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/_e5G2ZM50nFT8ptWlg0WKA-A1lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f92a0d-f74a-4768-96c5-4dc2e9361ff1/1/Rv-nlEDFF-3brO06pg5fvL3GUC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.132.0/22
IPv6:
2a05:4280::/29
Signature Algorithm: sha256WithRSAEncryption
9b:1a:5a:62:cf:c9:bd:93:af:03:8e:ea:e7:f2:9f:09:41:1b:
a7:5f:6a:98:7d:c0:46:70:df:cc:a3:25:99:ed:dc:44:fa:20:
93:62:9c:70:c3:64:4d:cc:4e:5c:c9:9a:4a:69:fb:86:87:7e:
d8:6e:e4:ea:d5:85:1a:7c:dc:d1:87:0f:b9:0f:4d:ff:c2:c2:
f7:4a:7b:b3:31:1b:d9:71:1a:95:5c:16:20:e6:23:32:82:11:
43:44:20:de:cd:59:84:92:6a:95:34:10:eb:c5:da:e5:01:7d:
a2:06:b2:0b:94:15:bb:fb:11:0a:de:b7:d3:1f:2c:91:be:28:
2d:5f:ce:09:bb:2f:b9:9a:4e:26:44:6c:b0:a4:67:ce:5f:cf:
d5:f1:26:c5:40:20:15:cd:ee:a5:a7:15:0b:2c:c0:5c:de:ce:
b5:66:29:a1:2b:d3:07:87:b9:59:ba:19:a4:21:42:a6:d4:66:
1c:40:78:3f:95:af:e3:7a:38:77:ea:0f:56:79:56:c7:25:15:
db:b7:c8:8b:c6:06:9e:f6:e5:3e:b6:93:d0:07:d8:56:ef:72:
dd:7c:c3:19:f4:6a:96:bc:93:2d:45:73:63:05:1c:20:ff:7b:
d9:74:da:d2:b3:9a:b5:2d:03:cb:6b:7f:49:ae:22:80:6d:0e:
e9:52:4c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:41 2024 by rpki-client on console-ams.rpki-client.org