Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/y4GC8CWbCn6hz9m6tayeGchMyDQ.roa
File: y4GC8CWbCn6hz9m6tayeGchMyDQ.roa (raw, json)
Hash identifier: wnS24quE48C1VtkcM4wJHNhVkJlOQvnggNqoSXCma+w=
Subject key identifier: CB:81:82:F0:25:9B:0A:7E:A1:CF:D9:BA:B5:AC:9E:19:C8:4C:C8:34
Certificate issuer: /CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Certificate serial: 0182A577E7F1AA9422348B3C102EE8A92BA1
Authority key identifier: 65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/y4GC8CWbCn6hz9m6tayeGchMyDQ.roa
Signing time: Tue 16 Aug 2022 07:04:34 +0000
ROA not before: Tue 16 Aug 2022 07:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59397
IP address blocks: 185.75.130.0/24 maxlen: 24
185.75.129.0/24 maxlen: 24
185.75.131.0/24 maxlen: 24
2a03:4d22::/32 maxlen: 32
2a03:4d25::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a5:77:e7:f1:aa:94:22:34:8b:3c:10:2e:e8:a9:2b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65226ee5ea0406592df975c6f4c84f10f14d15cb
Validity
Not Before: Aug 16 07:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb8182f0259b0a7ea1cfd9bab5ac9e19c84cc834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6a:bc:55:0d:5d:64:58:25:aa:15:7c:1b:9b:
5b:9c:03:c2:b7:53:37:4e:9c:f4:d1:12:ff:84:2a:
19:25:40:f9:b6:fb:78:ec:5a:b8:b4:67:c0:c4:68:
33:58:39:c0:66:fd:31:1f:69:e4:9d:16:08:3a:7b:
cd:93:a4:76:2c:56:c4:14:a0:1e:41:69:e5:23:42:
a7:f5:3e:2c:09:46:58:ac:71:ac:2d:38:78:f6:c6:
ec:49:3e:f0:dc:e0:fb:11:f5:3c:5b:9e:66:00:ef:
8a:46:ee:82:73:31:f6:4d:31:e5:5a:09:31:a9:8e:
ec:19:a7:b1:7f:7b:f8:c9:1d:98:88:87:22:51:e3:
db:98:c3:b8:cb:d4:02:bd:02:b1:db:89:2c:f4:ee:
c5:48:e5:c4:3c:93:01:fa:5a:21:ba:40:16:fa:e8:
b5:08:46:64:26:de:1d:26:2c:23:e0:d5:9d:d9:10:
08:aa:8b:22:7e:4c:09:e0:97:0c:2b:52:39:02:2c:
e8:ae:8c:23:79:cc:00:80:89:5e:31:23:63:97:59:
3f:2c:91:32:6c:4c:63:52:e7:fc:b5:26:bc:fd:df:
e7:d8:a5:74:b9:8b:a8:16:81:a2:88:1a:63:c3:50:
26:fd:e0:ed:77:b4:7d:06:c7:b7:37:39:4c:f8:56:
f2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:81:82:F0:25:9B:0A:7E:A1:CF:D9:BA:B5:AC:9E:19:C8:4C:C8:34
X509v3 Authority Key Identifier:
keyid:65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/y4GC8CWbCn6hz9m6tayeGchMyDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.129.0-185.75.131.255
IPv6:
2a03:4d22::/32
2a03:4d25::/32
Signature Algorithm: sha256WithRSAEncryption
30:af:67:2e:6f:ac:3f:94:3f:35:8b:ef:45:8d:4c:9c:98:93:
f4:91:83:d9:8f:d7:c6:8c:11:3d:9c:dc:e1:47:8b:5a:83:8a:
77:25:2f:a1:17:03:d2:78:e6:b6:39:9e:c3:94:10:eb:a9:01:
63:1c:89:f3:0e:90:01:4f:20:4d:51:b4:48:1c:5b:a9:ef:6f:
6a:e2:a5:27:38:f3:e3:49:b1:53:ba:0c:78:83:54:c3:a9:00:
4a:ad:26:d8:64:50:b8:7d:bd:92:26:61:05:37:7d:05:16:d7:
86:44:c9:0c:e6:81:e8:f9:d3:30:50:97:7f:b9:eb:6e:8d:13:
4c:18:24:13:46:f4:45:61:91:f7:b4:f0:04:67:71:aa:e5:bd:
67:4a:39:6a:5b:f6:d5:49:61:fd:7b:f8:98:71:e3:9c:f3:ef:
70:09:64:47:ed:35:db:dd:c0:25:1a:b2:b8:7f:f5:38:66:78:
4d:a0:a7:51:af:5b:c2:c4:6f:34:6b:29:aa:dc:45:62:cf:a5:
e2:53:ee:76:6a:26:f4:d5:60:9e:38:e8:40:7f:7f:82:fe:d7:
5b:ea:7a:c8:a7:4a:dc:9b:ae:1b:47:e7:3e:ad:ae:0b:b7:d6:
c7:80:e2:aa:17:c9:e8:47:2d:17:9a:b8:4f:74:36:93:8f:ef:
a0:62:a1:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:40 2024 by rpki-client on console-fra.rpki-client.org