Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/yzjtGQN33iXAlP-x9Zq0_B9l1MU.roa
File: yzjtGQN33iXAlP-x9Zq0_B9l1MU.roa (raw, json)
Hash identifier: wJDT5fIxOAPLVU9gr/RBotq6zqukkEzpPsY09TWY10s=
Subject key identifier: CB:38:ED:19:03:77:DE:25:C0:94:FF:B1:F5:9A:B4:FC:1F:65:D4:C5
Certificate issuer: /CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Certificate serial: 0182B2A9E7DB2DFF2CDE2F10309A616192D9
Authority key identifier: E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/yzjtGQN33iXAlP-x9Zq0_B9l1MU.roa
Signing time: Thu 18 Aug 2022 20:34:15 +0000
ROA not before: Thu 18 Aug 2022 20:34:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21243
IP address blocks: 212.2.105.0/24 maxlen: 24
31.2.0.0/17 maxlen: 17
212.2.106.0/23 maxlen: 23
37.247.244.0/23 maxlen: 23
2a01:2e1:ffff:6::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b2:a9:e7:db:2d:ff:2c:de:2f:10:30:9a:61:61:92:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Validity
Not Before: Aug 18 20:34:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb38ed190377de25c094ffb1f59ab4fc1f65d4c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fc:1b:dc:01:2a:a5:7e:24:52:74:a8:a9:f3:
20:aa:1f:df:40:f1:aa:95:9e:29:eb:8a:da:72:f2:
43:cd:36:2a:27:fc:88:06:d4:6e:49:ef:01:9b:bf:
49:57:2b:ba:65:3b:5a:64:69:88:52:df:ef:f9:68:
19:f7:21:61:ab:53:5b:6d:e4:5e:7e:0a:0c:fb:c4:
e5:44:14:64:22:db:33:63:46:86:d8:83:8a:f7:6c:
49:e9:a8:0d:f0:e7:fa:bd:38:1e:2e:23:da:bb:85:
18:7d:23:a1:dd:95:f9:26:f0:77:87:ae:4d:67:1b:
07:3e:99:e6:5c:03:07:ab:18:8a:9b:51:56:ea:fd:
36:d3:8b:e8:ed:6b:df:e7:b7:31:72:37:04:37:14:
1f:be:5d:5d:53:b2:df:6d:3a:32:43:7a:c9:29:20:
0b:90:ad:95:af:32:ad:b2:21:cf:8f:4b:97:87:1d:
d7:8f:97:6b:fc:b2:a0:ee:ac:5e:25:78:51:30:a9:
f5:44:5a:82:d6:f6:e4:69:74:1c:30:a5:74:97:2f:
d0:0f:77:6d:c5:41:90:16:4f:0a:f9:48:e2:36:44:
81:ef:de:c6:4e:73:cf:9d:31:02:e8:d5:f8:54:29:
8d:2a:de:0f:22:5f:f9:e5:a5:f2:4e:39:da:f1:3f:
84:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:38:ED:19:03:77:DE:25:C0:94:FF:B1:F5:9A:B4:FC:1F:65:D4:C5
X509v3 Authority Key Identifier:
keyid:E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/yzjtGQN33iXAlP-x9Zq0_B9l1MU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.2.0.0/17
37.247.244.0/23
212.2.105.0-212.2.107.255
IPv6:
2a01:2e1:ffff:6::/64
Signature Algorithm: sha256WithRSAEncryption
70:f2:c3:e1:a5:8f:ff:bb:50:d8:30:d6:7b:34:ba:de:a7:32:
e4:9f:69:f6:26:30:f1:53:07:2b:ee:1e:bf:c6:79:9b:89:20:
81:9b:b3:d4:65:f2:06:19:73:4f:bf:f7:21:13:06:8b:b9:03:
3b:49:85:9b:bc:fc:2c:9a:34:79:e6:f6:5a:20:28:2c:2c:bc:
b3:8c:55:bd:9b:4e:f2:79:9c:1c:19:b4:44:48:e9:93:9b:bb:
7f:9e:7b:9d:10:89:01:a4:d3:5d:eb:67:dc:1b:6b:a6:33:ca:
23:08:49:e1:9a:6a:64:8c:1a:25:f7:bb:f6:47:ec:fc:3e:c7:
a6:a6:a0:e6:58:5a:b5:9d:f3:d0:21:57:19:21:14:44:e6:c3:
e3:06:17:f9:53:dc:8c:44:c7:89:d5:38:73:b1:95:e9:3f:b2:
48:e6:17:4e:f7:51:97:5b:8a:03:85:99:80:94:09:6a:29:15:
f8:99:ae:45:c5:39:ec:65:42:61:7f:06:7d:de:92:6f:83:a9:
56:2f:95:08:b8:9e:be:90:25:7f:3b:93:d8:ad:ce:57:19:2a:
55:4f:04:34:e2:c5:fa:0c:10:ce:cd:a9:fc:12:88:04:d4:cb:
8b:22:27:07:12:01:0a:93:24:8f:bf:8a:bc:83:90:12:19:c0:
01:6f:39:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org