Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/h4Lfyq-VUpCaVLiakC-hT3dMk_4.roa
File: h4Lfyq-VUpCaVLiakC-hT3dMk_4.roa (raw, json)
Hash identifier: 04GPWuHQWTneVeMuElF2qF0DBsAwBt8Kaj2p1XBdU9s=
Subject key identifier: 87:82:DF:CA:AF:95:52:90:9A:54:B8:9A:90:2F:A1:4F:77:4C:93:FE
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 048292C6
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/h4Lfyq-VUpCaVLiakC-hT3dMk_4.roa
Signing time: Fri 18 Mar 2022 10:17:39 +0000
ROA not before: Fri 18 Mar 2022 10:17:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3561
IP address blocks: 146.66.220.0/22 maxlen: 22
188.74.136.0/22 maxlen: 22
178.157.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75666118 (0x48292c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Mar 18 10:17:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8782dfcaaf9552909a54b89a902fa14f774c93fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f0:2c:6b:36:2f:72:02:5f:69:cb:48:f4:63:
e6:78:33:ae:b6:bb:d8:f6:9e:8a:e3:9a:ff:56:f7:
f7:ad:cd:20:dd:92:46:27:75:c3:43:66:cd:38:a7:
04:cf:50:41:68:62:78:f0:c1:cb:c1:13:12:54:75:
e6:6e:a3:81:86:f6:64:29:d1:e8:06:68:e4:e8:eb:
da:4d:ba:6d:78:3a:5c:f4:b4:fd:41:0e:a5:ee:f2:
18:dd:45:57:5c:6b:9b:0c:7d:dc:fd:96:a1:30:bd:
1b:3c:c6:8d:5e:8d:7a:d4:c9:8b:6e:83:2f:52:74:
f6:1a:8b:38:92:70:04:da:77:79:3d:39:89:80:5b:
84:ed:a1:c6:a8:4d:ca:82:d9:f1:6d:bb:88:e0:b6:
c6:ab:fd:b9:dc:7e:1d:c1:8e:fe:00:d5:58:a1:67:
cc:42:a1:54:3d:e5:b3:fa:71:92:ab:b3:02:22:1d:
70:89:7b:ad:d5:db:97:9a:8d:f8:65:36:42:40:fe:
c2:d7:2a:4b:df:b8:0e:16:49:d8:a1:f3:f1:76:97:
9d:d0:da:d2:32:c7:dd:4d:90:5e:08:74:dd:b8:06:
2f:7e:eb:a4:13:46:c2:cf:b3:c0:e0:b0:c6:d4:fe:
d2:bd:a4:a4:05:a4:bf:59:22:ec:d6:78:03:c3:6b:
df:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:82:DF:CA:AF:95:52:90:9A:54:B8:9A:90:2F:A1:4F:77:4C:93:FE
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/h4Lfyq-VUpCaVLiakC-hT3dMk_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.66.220.0/22
178.157.64.0/22
188.74.136.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:f3:2f:90:95:de:80:25:f3:57:f0:7f:18:b1:7a:07:7a:ab:
0c:40:0d:34:20:46:fc:28:a3:5c:d2:89:10:f2:25:c4:f3:3e:
77:59:f1:44:73:75:7e:6e:7b:69:a9:c7:23:11:6a:e1:d8:56:
ae:d1:d6:7f:6c:87:93:5a:4c:71:70:5b:6d:29:f4:70:a4:c4:
36:20:ed:27:58:dd:48:ed:1e:d5:d1:f6:5b:57:45:45:ac:17:
4c:39:3f:d5:0a:28:99:05:cb:d1:92:d4:74:7f:9e:ec:1b:00:
87:20:36:85:58:03:6d:39:57:07:e9:68:ea:b5:16:be:35:e4:
e7:69:92:d6:cc:9c:bf:98:61:a3:49:02:b5:4b:c9:be:62:3b:
0d:30:8d:9c:f1:25:3b:9e:7d:1f:8d:75:a3:cb:a5:36:3f:c9:
c1:24:dc:12:dd:24:02:a6:02:8c:50:fa:82:82:b2:9d:94:4c:
ea:f8:7d:65:f8:ee:d5:a2:87:d9:29:91:73:e8:f6:73:cc:6b:
2a:d8:9a:c0:b6:94:ec:59:2b:5f:5a:32:a5:45:22:70:67:4b:
b3:71:a3:14:a0:01:59:97:70:9a:c7:87:ce:d7:bb:76:4a:b9:
b0:0e:2b:44:21:86:77:67:fd:10:66:f1:45:d8:da:e7:76:df:
4b:c4:da:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:25 2023 by rpki-client on console-fra.rpki-client.org