Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ae5b5f-e748-4fd5-b1de-c79a3fa71d34/1/ISYGpytbIuDdeFlxforlj42REqM.roa
File: ISYGpytbIuDdeFlxforlj42REqM.roa (raw, json)
Hash identifier: 7BZAj1ixy1G8w+D5vmAuEOZDkPI5lx6YihfvYUiOpVE=
Subject key identifier: 21:26:06:A7:2B:5B:22:E0:DD:78:59:71:7E:8A:E5:8F:8D:91:12:A3
Certificate issuer: /CN=77e839ea59b975824fd708a0ad735550017cbf7c
Certificate serial: 04C357B5
Authority key identifier: 77:E8:39:EA:59:B9:75:82:4F:D7:08:A0:AD:73:55:50:01:7C:BF:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-g56lm5dYJP1wigrXNVUAF8v3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ae5b5f-e748-4fd5-b1de-c79a3fa71d34/1/ISYGpytbIuDdeFlxforlj42REqM.roa
Signing time: Mon 21 Mar 2022 13:49:08 +0000
ROA not before: Mon 21 Mar 2022 13:49:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49920
IP address blocks: 185.234.53.0/24 maxlen: 24
185.234.54.0/23 maxlen: 23
185.149.60.0/22 maxlen: 24
2a05:c0c0::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79910837 (0x4c357b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77e839ea59b975824fd708a0ad735550017cbf7c
Validity
Not Before: Mar 21 13:49:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=212606a72b5b22e0dd7859717e8ae58f8d9112a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:9b:88:3f:c6:38:1b:3a:73:5b:1e:ef:4a:
2e:75:97:9f:6d:21:76:60:c2:e8:52:1b:da:0d:da:
0c:c6:7e:23:7e:dd:2c:6e:67:a7:f8:02:00:34:b9:
32:9c:14:0a:03:b8:15:2c:61:19:65:01:6d:19:62:
a3:eb:13:8b:da:20:ae:89:c8:38:29:f2:10:8d:5e:
8a:b8:ea:5f:c3:2e:04:34:de:6a:07:c3:2c:77:ea:
8e:e4:26:24:a2:ee:ae:69:d6:a3:00:fd:87:46:42:
06:4a:3a:02:b8:d1:24:d6:e5:6c:aa:4c:ef:b2:17:
fc:c7:75:b1:bb:e3:aa:66:d6:79:d0:8a:64:15:fd:
89:a9:c8:47:b3:b0:3d:15:02:a0:cf:5e:c5:ee:70:
3a:2a:f0:ae:68:ff:8b:83:09:c0:14:a6:95:2e:29:
9c:9d:cd:c8:ce:60:a1:9b:a4:da:fe:49:cd:71:80:
70:d2:a9:19:8a:ee:11:45:44:ac:12:82:95:49:f3:
e3:9b:9e:7d:68:70:ba:53:6b:dd:33:a5:7c:46:86:
c5:f6:83:a8:20:f7:e8:e9:5f:21:f1:e5:b4:1a:ff:
e7:ef:18:49:d2:17:6c:21:f2:da:8c:31:e4:d5:49:
23:06:34:b0:97:e9:70:98:b6:a3:e0:19:27:23:7b:
ef:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:26:06:A7:2B:5B:22:E0:DD:78:59:71:7E:8A:E5:8F:8D:91:12:A3
X509v3 Authority Key Identifier:
keyid:77:E8:39:EA:59:B9:75:82:4F:D7:08:A0:AD:73:55:50:01:7C:BF:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-g56lm5dYJP1wigrXNVUAF8v3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ae5b5f-e748-4fd5-b1de-c79a3fa71d34/1/ISYGpytbIuDdeFlxforlj42REqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ae5b5f-e748-4fd5-b1de-c79a3fa71d34/1/d-g56lm5dYJP1wigrXNVUAF8v3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.60.0/22
185.234.53.0-185.234.55.255
IPv6:
2a05:c0c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:4f:43:d5:60:64:da:ee:b3:ea:4f:28:51:78:cc:f6:88:92:
d5:65:dc:ed:be:e8:31:4d:b8:6a:a7:82:5b:e6:5b:86:a4:ca:
2e:51:8e:04:c7:16:18:ac:ff:80:47:35:87:15:93:6b:25:84:
28:ea:e1:a5:1d:a9:83:8e:f6:ac:35:ea:48:80:ce:92:c9:cf:
ba:8c:72:96:07:25:a3:f5:04:39:50:25:86:48:6e:6d:c0:0d:
d1:4d:0c:16:b2:e0:74:bc:6f:91:f6:10:17:39:a4:3e:3c:a7:
1d:c8:f7:cf:be:6e:60:9e:8d:0f:65:77:84:ec:2c:8c:ad:cb:
48:fe:99:84:ea:99:28:22:ef:38:54:10:93:ac:48:fb:c2:04:
26:b8:ca:ae:8b:99:e0:51:53:bf:e6:c8:ed:ba:ff:7f:b0:4a:
57:c3:ae:ee:d3:aa:77:b9:3e:ea:d5:b4:f7:3d:be:59:b8:1f:
c0:b9:38:c4:15:4a:d4:7c:dd:17:57:9f:f2:2d:94:9b:08:29:
16:ed:48:6e:05:e1:83:c4:8b:01:d3:13:aa:0f:2e:da:cc:3b:
2c:70:da:4a:f0:65:3a:a7:ae:e8:45:39:8e:5c:f7:39:19:1d:
53:54:ac:d2:af:03:84:ec:7c:13:a3:87:33:c9:44:6d:19:52:
7b:a2:fb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:43 2024 by rpki-client on console-fra.rpki-client.org