Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/t_yyDbChAsnJBYSJCvHnk5MAklU.roa
File: t_yyDbChAsnJBYSJCvHnk5MAklU.roa (raw, json)
Hash identifier: 5IZrJ0rjkkTX4wubnC/px9bz7am1tfmqBQGxk8FJRuI=
Subject key identifier: B7:FC:B2:0D:B0:A1:02:C9:C9:05:84:89:0A:F1:E7:93:93:00:92:55
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17FF9BFB
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/t_yyDbChAsnJBYSJCvHnk5MAklU.roa
Signing time: Sat 01 Jan 2022 04:00:29 +0000
ROA not before: Sat 01 Jan 2022 04:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60560
IP address blocks: 46.10.194.0/24 maxlen: 24
90.154.232.0/24 maxlen: 24
90.154.237.0/24 maxlen: 24
90.154.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402627579 (0x17ff9bfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7fcb20db0a102c9c90584890af1e79393009255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b8:da:9b:54:2f:b0:50:d9:a2:6d:d3:c2:ca:
c3:06:32:e0:90:4f:9a:3f:ef:4f:1b:30:e9:a0:38:
4e:0c:72:d3:98:63:2d:78:00:03:3a:ed:5a:f5:8e:
90:f2:87:85:19:3b:08:00:83:89:5a:3d:5b:1d:22:
2d:c1:e8:1b:d8:d5:66:e7:c1:67:31:12:fb:9c:22:
79:c7:75:52:59:17:7d:70:88:ef:37:4a:7e:68:f3:
e8:f5:b5:e5:ee:c5:e4:21:8d:e6:2f:03:c7:2d:78:
41:8b:ad:61:8f:48:f5:c5:f0:f1:e4:69:72:1c:c8:
e7:84:63:a4:c6:4e:29:94:04:b3:50:ac:50:be:e7:
83:b9:04:8a:ba:ed:42:2f:82:54:31:42:dd:82:84:
5e:61:a4:fb:47:12:b8:59:df:23:6d:76:73:be:85:
d3:ce:e6:96:61:60:6e:2b:7f:f2:b7:61:91:b7:9c:
70:8e:c6:f6:82:9a:e8:5a:18:97:94:7b:a3:7c:5f:
61:1b:6a:df:83:ca:53:70:9d:c9:d9:53:32:4b:9e:
42:19:15:12:a5:89:ed:d2:4e:14:39:8d:d5:26:a9:
1e:2c:a4:4a:5b:da:ce:ab:3a:03:82:52:e9:b1:33:
a9:5d:e0:75:f5:b4:a6:f9:b6:85:bd:16:61:ad:1e:
bc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FC:B2:0D:B0:A1:02:C9:C9:05:84:89:0A:F1:E7:93:93:00:92:55
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/t_yyDbChAsnJBYSJCvHnk5MAklU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.194.0/24
90.154.232.0/24
90.154.236.0/23
Signature Algorithm: sha256WithRSAEncryption
86:11:44:32:75:22:fd:ec:12:62:2c:cd:13:2e:78:7b:41:cf:
c5:9b:ad:1b:b3:62:7d:5c:4a:c0:3b:07:de:05:67:a2:d2:77:
1c:4a:98:74:c5:84:b6:c0:e4:ba:4a:2a:49:07:73:8a:e9:ef:
b1:7b:c6:89:83:5f:6d:22:d8:45:07:d4:7a:db:22:d7:d4:63:
3a:20:62:b2:01:89:8d:07:7c:9f:44:8c:b4:c3:55:ed:cc:4a:
43:a5:4b:aa:1f:01:7c:2d:5c:e3:59:39:85:e2:6c:07:ce:1c:
ba:07:27:58:32:8a:38:4c:24:b9:af:51:f3:16:3c:b6:d6:44:
5c:77:80:5b:a9:08:67:f2:4e:d8:d1:f2:ea:24:2e:f8:c3:15:
fe:74:cf:59:db:4e:10:11:a5:7c:b7:5a:77:7a:e1:ea:7d:43:
28:0a:46:e1:b2:bc:70:bd:3d:a4:e9:75:88:b1:b8:77:33:75:
3d:5e:c5:ca:4c:24:1d:17:fd:ff:97:6e:d0:61:ca:51:6e:67:
1c:03:de:08:77:ca:af:7a:f6:78:bb:f5:64:70:a9:28:fb:5a:
e6:65:48:85:97:1f:3e:4e:ad:ff:20:a0:f0:84:b3:58:01:9e:
02:e1:24:0f:b1:10:83:7a:31:7d:5c:45:43:67:53:58:d1:18:
eb:ed:92:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org