Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/7c7e90-c781-42ab-9691-ce923d19508f/1/aSU4IBzUY28fS8GI7GKRa-J6HdU.roa
File: aSU4IBzUY28fS8GI7GKRa-J6HdU.roa (raw, json)
Hash identifier: C1tL8xc78aNpfJmgXDfvr+D4VvMuev8SdjJMN3CEY70=
Subject key identifier: 69:25:38:20:1C:D4:63:6F:1F:4B:C1:88:EC:62:91:6B:E2:7A:1D:D5
Certificate issuer: /CN=12c305404e80b5a4d70d21dab86fc5b6b801a8b8
Certificate serial: 060C1893
Authority key identifier: 12:C3:05:40:4E:80:B5:A4:D7:0D:21:DA:B8:6F:C5:B6:B8:01:A8:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsMFQE6AtaTXDSHauG_FtrgBqLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/7c7e90-c781-42ab-9691-ce923d19508f/1/aSU4IBzUY28fS8GI7GKRa-J6HdU.roa
Signing time: Sat 01 Jan 2022 09:59:54 +0000
ROA not before: Sat 01 Jan 2022 09:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24594
IP address blocks: 185.120.52.0/22 maxlen: 22
93.95.123.0/24 maxlen: 24
93.95.125.0/24 maxlen: 24
93.95.120.0/21 maxlen: 21
93.95.126.0/24 maxlen: 24
2a00:d68::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101456019 (0x60c1893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c305404e80b5a4d70d21dab86fc5b6b801a8b8
Validity
Not Before: Jan 1 09:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=692538201cd4636f1f4bc188ec62916be27a1dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:02:02:27:d7:50:cc:74:eb:ce:c7:83:76:84:
25:0c:e1:90:1d:4b:96:8b:ed:38:19:1c:41:75:40:
db:b0:88:7e:76:78:b7:3b:d9:06:be:30:44:46:a9:
dc:84:17:01:e1:bc:ec:5f:48:03:2a:ab:03:e4:50:
9d:83:96:52:7e:eb:26:20:0c:b6:48:64:4a:16:34:
53:71:05:84:b6:e3:b3:50:86:b0:74:6b:7b:95:18:
5c:b3:8a:55:4c:9e:e0:54:4b:8e:39:5e:d7:d4:a6:
9f:96:97:28:9f:4b:02:d0:98:07:85:fd:ae:fd:ad:
64:5b:9a:f3:cf:8a:c8:bf:5e:40:38:f4:84:97:03:
5b:84:a2:ed:64:1b:97:37:9f:66:34:2b:b8:6e:6e:
c2:8c:f6:ea:7f:e7:09:c6:4b:89:00:df:97:53:20:
21:ea:e2:37:7c:eb:c1:fd:32:a8:42:7c:18:d7:3e:
0a:8a:ca:02:f2:ae:6d:45:e5:71:9f:14:fe:e7:4d:
25:8b:d3:30:41:45:d1:c8:2d:b7:12:6b:ee:01:87:
1e:19:c8:1e:a9:53:e7:fa:21:99:13:0e:90:8d:28:
fc:c0:5e:2a:a6:53:3b:13:0c:a2:1a:33:b2:12:c4:
ac:4a:73:8e:7e:81:a3:10:15:e6:b6:cf:9d:41:91:
cb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:25:38:20:1C:D4:63:6F:1F:4B:C1:88:EC:62:91:6B:E2:7A:1D:D5
X509v3 Authority Key Identifier:
keyid:12:C3:05:40:4E:80:B5:A4:D7:0D:21:DA:B8:6F:C5:B6:B8:01:A8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsMFQE6AtaTXDSHauG_FtrgBqLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7c7e90-c781-42ab-9691-ce923d19508f/1/aSU4IBzUY28fS8GI7GKRa-J6HdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/7c7e90-c781-42ab-9691-ce923d19508f/1/EsMFQE6AtaTXDSHauG_FtrgBqLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.120.0/21
185.120.52.0/22
IPv6:
2a00:d68::/32
Signature Algorithm: sha256WithRSAEncryption
59:2b:1a:65:6a:c5:31:39:48:0f:88:d1:cf:d7:94:68:6a:74:
02:f8:fe:5c:a8:39:a4:42:5e:6b:c4:d8:9f:9e:fe:82:30:02:
30:8c:e3:ea:80:a8:24:e3:86:33:42:63:f1:66:de:b1:a6:54:
0b:c3:42:86:ce:18:85:83:af:ce:cb:d2:12:ac:c7:e4:f4:4c:
d2:ef:9a:9a:fe:fe:ea:5e:8f:65:36:e5:8e:5d:ef:5f:45:f8:
d0:ad:7f:86:d0:ab:de:98:17:83:48:d1:e1:91:08:82:2b:0a:
db:fc:9f:c3:d6:97:75:f6:a8:70:6f:66:10:2d:41:f8:c3:aa:
29:d2:d1:79:c9:1e:51:62:f9:bf:58:e2:10:69:34:1b:38:51:
84:70:68:4c:2b:16:dd:da:e4:ba:bc:04:3d:4e:02:c6:ff:b2:
95:21:e9:07:10:f9:82:12:93:20:69:3f:44:03:4d:94:06:df:
a0:2c:cf:1b:85:65:85:e4:0e:29:e1:8d:f4:e3:22:cc:38:9a:
3c:be:95:82:8d:6e:ba:18:9a:66:69:bc:11:1b:cb:2c:3f:34:
34:ed:ae:27:5c:ba:f4:56:3a:a0:14:95:66:77:24:f6:1f:5e:
ce:90:4c:43:2a:c6:43:7c:62:56:c0:84:16:54:04:c2:1c:11:
36:06:1f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org