Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/N9jtpce6-Xxh-N-aaS7dXpM2MAA.roa
File: N9jtpce6-Xxh-N-aaS7dXpM2MAA.roa (raw, json)
Hash identifier: +QT9pKd0I0AixnrDaeGz9fdDXTa2w12S+lCHAb/cJnE=
Subject key identifier: 37:D8:ED:A5:C7:BA:F9:7C:61:F8:DF:9A:69:2E:DD:5E:93:36:30:00
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 082A5455
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/N9jtpce6-Xxh-N-aaS7dXpM2MAA.roa
Signing time: Sat 01 Jan 2022 09:00:37 +0000
ROA not before: Sat 01 Jan 2022 09:00:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35179
IP address blocks: 185.49.31.0/24 maxlen: 24
185.49.29.0/24 maxlen: 24
79.110.192.0/20 maxlen: 24
193.239.56.0/22 maxlen: 24
2a01:96e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136991829 (0x82a5455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Jan 1 09:00:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37d8eda5c7baf97c61f8df9a692edd5e93363000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:28:5a:9c:0b:f3:89:83:a6:c1:8b:63:20:8a:
10:f6:86:24:e5:74:30:1c:7c:c0:a9:ed:94:69:df:
93:27:16:e0:61:43:35:44:45:1b:3d:33:76:d9:81:
f7:78:f1:ff:41:50:f9:4a:4b:e9:70:54:7d:98:91:
72:97:62:3f:32:ab:ce:ed:ed:30:c0:01:93:25:c7:
5c:a0:b1:e2:77:96:d7:a0:2e:f1:ec:b7:78:bd:76:
50:5b:33:aa:92:09:03:b9:33:3c:2e:1c:9a:3b:20:
27:72:c9:c7:71:9e:ee:2e:b5:b5:87:ef:f6:e8:40:
c1:09:56:d3:83:99:33:32:5d:fc:74:5a:d5:a1:4e:
ca:18:4f:8f:36:46:7b:3d:f1:80:fe:5d:00:b8:7f:
77:67:60:2b:d0:76:4e:fc:54:ca:14:b2:07:ad:a0:
fc:b9:31:2a:c6:46:df:3d:cd:bd:61:7a:b7:43:e4:
92:ac:74:04:c1:28:f8:f1:26:0b:11:00:6e:e5:d2:
fc:3f:11:54:3a:04:ed:d8:0a:9a:f4:f2:99:d7:5c:
6a:d3:a6:16:db:c9:b0:32:4d:2c:05:a2:94:a0:24:
bb:b5:4a:81:2a:28:a1:ef:43:1d:8b:cc:4f:55:0c:
2f:29:55:7e:a4:e5:11:f1:36:a9:e9:a3:e1:bf:e7:
03:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D8:ED:A5:C7:BA:F9:7C:61:F8:DF:9A:69:2E:DD:5E:93:36:30:00
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/N9jtpce6-Xxh-N-aaS7dXpM2MAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.192.0/20
185.49.29.0/24
185.49.31.0/24
193.239.56.0/22
IPv6:
2a01:96e0::/32
Signature Algorithm: sha256WithRSAEncryption
5b:59:96:fa:cd:d6:e4:8a:0c:6d:3b:9a:92:31:ae:97:ed:2b:
af:52:3d:a4:b8:3c:06:bb:01:31:0c:e3:c4:04:75:64:99:d9:
0d:ac:19:b7:08:84:c6:3e:8a:05:03:65:af:85:49:95:d9:8f:
a1:eb:68:09:23:37:46:33:6e:ea:f8:27:b2:76:f8:d6:ae:ac:
20:3f:21:5c:5f:94:f6:3c:a2:7a:74:91:83:0b:86:52:d3:59:
1a:e7:41:63:a0:90:dd:23:0e:72:10:9e:29:b5:65:50:ab:fb:
d4:37:a0:0b:94:cb:59:c0:93:3e:cb:97:b9:a5:7c:90:bd:b6:
90:ca:c1:0f:7c:e2:70:ed:e1:73:8a:93:8c:86:fa:eb:34:4a:
b8:5d:be:5c:36:8e:fb:53:b4:0d:7a:63:40:71:b2:fb:a2:4e:
fc:cb:b0:23:20:3e:68:36:40:de:a7:ff:d3:9e:d6:f5:df:e8:
aa:2f:ff:9a:c5:19:5f:bc:be:cc:86:63:3f:c2:b6:74:0f:c9:
77:2e:f1:19:25:a0:b7:70:c9:ae:d5:bf:31:4c:06:90:8b:3e:
f0:ad:0a:ca:47:90:79:b8:75:35:cb:c1:4f:d8:a3:8e:43:6e:
2f:23:7d:bf:12:a4:df:c9:d5:5f:0e:bd:5d:a3:76:e5:11:3d:
d2:ba:2a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:38 2024 by rpki-client on console-fra.rpki-client.org