Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/O6PPMiARqwAYnXhetsBmSxWXeKw.roa
File: O6PPMiARqwAYnXhetsBmSxWXeKw.roa (raw, json)
Hash identifier: 8GPIK+LKYntzebtMnYu1bJ3EHfBHsylcuBKSy++KME0=
Subject key identifier: 3B:A3:CF:32:20:11:AB:00:18:9D:78:5E:B6:C0:66:4B:15:97:78:AC
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 07B05934
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/O6PPMiARqwAYnXhetsBmSxWXeKw.roa
Signing time: Sat 01 Jan 2022 09:59:17 +0000
ROA not before: Sat 01 Jan 2022 09:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62095
IP address blocks: 31.169.73.0/24 maxlen: 24
185.11.248.0/24 maxlen: 24
185.11.251.0/24 maxlen: 24
185.11.250.0/24 maxlen: 24
185.11.249.0/24 maxlen: 24
2a02:ed40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128997684 (0x7b05934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Jan 1 09:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ba3cf322011ab00189d785eb6c0664b159778ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fc:34:0c:85:63:df:cb:86:fd:ba:2c:f2:70:
09:64:41:63:0d:39:68:6d:10:8f:89:0d:e9:2e:da:
6c:c8:1d:9e:57:29:db:a8:64:14:06:c2:a2:76:db:
14:5b:37:88:43:6e:45:f2:0c:67:26:95:52:b4:7d:
26:43:7e:72:dd:cc:4c:6c:f8:a5:7d:fb:7e:f1:05:
46:66:41:02:69:d4:56:64:d8:a9:0f:a7:5f:47:76:
a0:ba:45:0b:8c:f7:50:aa:f7:9a:ba:da:2c:6d:26:
69:7d:ee:0e:1e:4a:c3:e5:5d:07:a5:2a:7e:8e:2c:
af:77:ea:76:b1:9a:bd:a8:37:a6:09:4a:71:c1:1b:
3a:e1:48:f4:71:c2:81:f4:77:f6:b2:0d:63:84:ef:
a3:4b:92:64:a6:20:9c:aa:28:45:57:7b:ff:95:fe:
d9:58:6c:74:7e:65:0a:c7:73:ba:a5:22:68:43:58:
63:ba:f7:79:f1:a3:5a:26:17:4e:f7:09:91:cb:6f:
99:63:fd:73:1b:5c:da:d2:c1:8a:bc:9d:34:f1:1c:
4a:3d:3b:a3:31:3c:0c:23:cc:25:ae:35:90:a8:8a:
90:d7:f5:a2:5d:50:cd:89:2d:73:6b:f5:de:de:29:
96:65:33:05:72:fd:69:ca:4d:f8:65:06:a3:8b:66:
11:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A3:CF:32:20:11:AB:00:18:9D:78:5E:B6:C0:66:4B:15:97:78:AC
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/O6PPMiARqwAYnXhetsBmSxWXeKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.73.0/24
185.11.248.0/22
IPv6:
2a02:ed40::/29
Signature Algorithm: sha256WithRSAEncryption
82:9d:54:9b:7b:f5:ef:ee:8d:6a:f4:33:15:7c:9b:1c:c1:69:
40:cd:6a:29:c9:ee:f4:7c:6b:73:70:79:ca:15:52:05:3f:d0:
38:c0:f3:53:89:e4:50:f3:a5:8f:74:d7:d2:96:1a:58:ab:20:
4e:51:21:f4:0c:04:d8:a8:e8:6e:b7:23:53:3f:3a:a6:79:58:
ef:f5:cd:5b:b8:5b:68:c2:89:6e:c4:6f:2a:9f:73:c0:28:63:
cc:e9:ff:ca:fa:71:54:4d:e1:ae:b5:3f:3f:20:7e:ea:f7:c2:
93:ff:4f:4e:36:7e:3b:27:81:ef:7c:70:89:d2:2a:cb:21:81:
02:8c:69:ad:2d:5f:7a:f8:a4:cb:79:07:a6:bc:36:7e:24:64:
72:6e:4c:ba:60:90:cf:ff:9e:d2:46:d4:1d:3c:4c:f5:2e:e4:
0f:72:12:cf:ca:d5:00:5a:21:b3:32:a4:76:27:29:57:59:a2:
8b:78:67:56:7e:b0:c0:8d:29:8d:aa:19:cc:e1:90:8b:2e:4e:
5d:04:c4:6c:22:8f:b0:fb:bb:79:71:19:0c:1e:51:21:b0:cc:
69:c7:20:a3:16:6d:6f:23:c3:79:aa:97:4d:bc:b8:05:5d:57:
61:68:b3:b0:98:a4:3c:a7:81:32:4e:05:2b:1d:a8:3e:9e:8d:
ba:57:78:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:31 2024 by rpki-client on console-ams.rpki-client.org