Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/Py9e9MSuicYn2Yv7W_4UTyJrRB4.roa
File: Py9e9MSuicYn2Yv7W_4UTyJrRB4.roa (raw, json)
Hash identifier: A9nG/3rpcDWGjU3f52ZQGYbEsyb0t0zlPV1TWC4AFY4=
Subject key identifier: 3F:2F:5E:F4:C4:AE:89:C6:27:D9:8B:FB:5B:FE:14:4F:22:6B:44:1E
Certificate issuer: /CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Certificate serial: 0182B53E08A8EC95FE9A1107355E924DF43D
Authority key identifier: E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/Py9e9MSuicYn2Yv7W_4UTyJrRB4.roa
Signing time: Fri 19 Aug 2022 08:35:17 +0000
ROA not before: Fri 19 Aug 2022 08:35:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196818
IP address blocks: 217.73.240.0/23 maxlen: 23
217.73.244.0/22 maxlen: 22
217.73.240.0/20 maxlen: 20
217.73.242.0/23 maxlen: 23
217.73.248.0/21 maxlen: 21
37.202.32.0/21 maxlen: 21
37.202.40.0/23 maxlen: 23
37.202.42.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b5:3e:08:a8:ec:95:fe:9a:11:07:35:5e:92:4d:f4:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Validity
Not Before: Aug 19 08:35:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f2f5ef4c4ae89c627d98bfb5bfe144f226b441e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:03:1d:bb:3c:e2:06:40:bc:dd:17:20:77:51:
1b:ab:d7:79:6f:77:34:33:05:b9:79:7e:7f:bd:ad:
5b:48:cc:5f:53:a6:13:0e:09:1b:44:e0:68:51:82:
1c:fe:6f:3e:7d:ea:08:0e:c4:3f:e3:a0:b8:01:39:
26:e8:14:df:ac:b4:02:8d:47:94:fc:33:f3:0d:4f:
e5:e2:9d:ec:a1:76:78:c0:e2:4e:82:a4:db:b2:0e:
16:0d:f1:dc:bb:c2:7f:fe:81:38:88:cf:60:4b:aa:
9e:da:65:bb:9d:15:82:04:00:c1:dc:41:c5:14:7e:
df:f5:87:15:b6:99:89:68:e7:1a:40:07:b0:6c:aa:
f3:3e:ab:7e:1e:e6:4b:bf:75:0d:b0:fd:a2:b9:dd:
42:6d:03:ae:f4:f0:52:16:b2:8e:96:33:f2:46:4d:
c4:45:90:cd:e9:54:d1:7d:d0:e0:ee:0f:6f:88:da:
2c:bc:20:ef:3c:2c:b2:87:be:93:0d:f8:65:95:f4:
d4:25:86:61:c9:b3:6b:76:e0:47:e4:56:58:81:be:
b5:c8:0c:8d:24:c3:6a:d6:95:77:86:0e:9d:1e:6c:
26:c0:cd:75:bb:03:ac:64:28:f2:bf:c1:56:a6:d5:
52:25:d1:64:a7:8b:1a:ca:80:77:2a:81:3f:6c:ab:
b8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2F:5E:F4:C4:AE:89:C6:27:D9:8B:FB:5B:FE:14:4F:22:6B:44:1E
X509v3 Authority Key Identifier:
keyid:E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/Py9e9MSuicYn2Yv7W_4UTyJrRB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.32.0-37.202.43.255
217.73.240.0/20
Signature Algorithm: sha256WithRSAEncryption
14:84:f2:1d:61:af:16:19:80:b3:f4:09:0d:95:f9:7b:ee:44:
06:63:87:a9:c7:e5:4f:57:98:79:53:2c:16:94:29:82:d6:d0:
9e:6b:71:6c:40:36:d8:8a:44:9d:bd:3b:9e:0b:c0:7f:ab:40:
86:f4:7b:33:17:86:7c:cf:30:bf:d2:ae:98:4d:56:20:92:7f:
fa:47:9d:03:6e:94:f4:d5:cb:4b:f6:ff:d2:fa:2e:f9:9c:9e:
14:f0:e4:ec:c3:1b:6f:5b:a0:06:fb:b5:4e:5f:7c:e7:47:fe:
e7:ab:66:20:4d:be:71:c6:d1:bd:d1:76:41:3d:75:bc:3f:86:
af:fd:0d:66:3d:77:b5:26:ff:f3:49:cd:39:c2:98:66:18:eb:
7b:fa:b1:50:91:99:12:fe:67:68:d4:c4:69:90:ec:17:70:a1:
af:da:e4:80:7f:04:02:ad:3b:8f:5e:d4:69:fa:5c:aa:05:56:
7b:f1:7d:a5:8e:89:69:69:86:11:bf:70:0b:87:58:3d:70:16:
25:45:29:35:2d:e6:87:01:2e:d3:e0:9f:a1:2e:fd:24:cc:86:
20:37:1f:e2:1b:f0:06:db:b8:8a:77:da:53:88:25:e2:31:8d:
5b:dc:b8:55:5b:dd:56:74:54:10:6b:f6:9f:3b:1f:b0:19:e3:
f1:60:02:ce
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:42 2025 by rpki-client