Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/AAVPzZ-StrB1I5KnZbVMIRLVRrk.roa
File: AAVPzZ-StrB1I5KnZbVMIRLVRrk.roa (raw, json)
Hash identifier: BxnkmnPxoAQnANGP8pZAlu34BtCBDtCymrIS3jStqsg=
Subject key identifier: 00:05:4F:CD:9F:92:B6:B0:75:23:92:A7:65:B5:4C:21:12:D5:46:B9
Certificate issuer: /CN=33bb8fccc6d6ab72ba5294b09985de799ea06348
Certificate serial: 34A809FF
Authority key identifier: 33:BB:8F:CC:C6:D6:AB:72:BA:52:94:B0:99:85:DE:79:9E:A0:63:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7uPzMbWq3K6UpSwmYXeeZ6gY0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/AAVPzZ-StrB1I5KnZbVMIRLVRrk.roa
Signing time: Sat 01 Jan 2022 16:03:28 +0000
ROA not before: Sat 01 Jan 2022 16:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15605
IP address blocks: 92.39.149.0/24 maxlen: 24
92.39.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 883427839 (0x34a809ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33bb8fccc6d6ab72ba5294b09985de799ea06348
Validity
Not Before: Jan 1 16:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00054fcd9f92b6b0752392a765b54c2112d546b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:45:45:81:d8:13:03:e9:7f:be:a4:b6:50:54:
84:16:9b:42:99:76:06:e9:21:35:31:ae:b3:11:2a:
96:ea:14:aa:45:7c:4d:1e:25:24:eb:fd:85:c2:01:
7e:90:eb:f1:f4:9e:c7:63:22:69:fb:36:69:40:f9:
f8:87:c8:67:6e:e7:8e:15:44:d9:af:c1:d6:31:b7:
1e:27:af:74:16:03:7b:4e:06:3b:2b:29:97:a9:9b:
f5:de:9d:d7:47:18:cb:ab:41:a5:40:de:02:ee:cd:
5c:15:ed:d5:a8:ef:66:27:ae:e8:34:64:1f:7c:e0:
2d:dd:17:8b:0c:b4:81:6a:e0:24:b1:5c:f6:86:cd:
c5:4b:94:dc:4f:c0:63:f4:37:d9:fd:b9:e7:ba:12:
14:78:50:45:14:57:fa:37:22:00:1c:e5:11:f8:65:
f1:5b:78:42:cb:9e:38:17:4f:d7:ae:f6:4f:c4:0d:
17:1c:ca:99:45:0c:60:94:99:e6:3e:1e:7b:dc:14:
c7:45:17:8c:e3:57:e6:1f:6a:df:0a:b6:1c:1d:96:
b1:b8:3d:e0:6f:01:fd:82:8c:c6:40:37:21:b2:1d:
d5:65:bc:f2:e5:ba:f6:00:1e:0d:f6:39:78:ab:42:
1d:fe:bc:95:a4:7f:6c:29:74:a2:35:84:fd:64:7c:
a3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:05:4F:CD:9F:92:B6:B0:75:23:92:A7:65:B5:4C:21:12:D5:46:B9
X509v3 Authority Key Identifier:
keyid:33:BB:8F:CC:C6:D6:AB:72:BA:52:94:B0:99:85:DE:79:9E:A0:63:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7uPzMbWq3K6UpSwmYXeeZ6gY0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/AAVPzZ-StrB1I5KnZbVMIRLVRrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/56b88c-ba95-47a7-8af8-12907c99fa49/1/M7uPzMbWq3K6UpSwmYXeeZ6gY0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.149.0-92.39.150.255
Signature Algorithm: sha256WithRSAEncryption
88:14:be:0b:ed:3f:c9:78:a0:83:fa:05:9a:34:b7:25:14:10:
38:97:7a:02:0b:86:a3:e9:12:98:62:9b:91:e5:b4:5e:3e:78:
39:0a:b7:da:a1:e9:7c:bd:26:b8:0f:c0:11:df:fe:54:22:16:
43:03:81:bd:88:6e:07:f6:52:ef:c5:89:41:4f:09:2b:63:b1:
2f:a5:6c:36:0d:5d:cc:67:e7:de:e9:d9:fb:48:fd:4f:bc:3d:
5b:0d:70:f2:d3:cf:3c:27:e5:2a:6e:71:86:fa:fa:05:3a:0c:
1f:bd:13:50:90:f8:7f:5d:c3:f0:0a:67:29:f8:58:7b:0a:43:
c4:fb:ed:57:9c:8e:89:6c:e2:a7:2b:36:b6:df:df:d6:67:67:
0d:4b:ac:06:8a:be:95:f9:2e:2f:5c:4e:92:93:df:3c:aa:99:
ed:4e:93:a7:b2:a1:dc:b1:02:a2:63:ec:7e:f0:db:c8:e8:89:
2a:4a:27:ed:1e:db:39:47:1e:ee:77:30:b6:ba:2e:79:c7:11:
ec:fe:da:b1:4c:48:1c:d2:c1:1e:0b:77:ae:52:b2:b5:30:40:
ab:76:58:7d:59:a1:cf:a9:85:89:d4:20:60:cc:6e:a4:6f:d6:
90:17:45:cc:16:5e:29:54:81:e0:f1:78:ae:82:0d:7c:c9:86:
3e:6c:34:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:59 2024 by rpki-client on console-ams.rpki-client.org