Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/p1qSHRQl-V0mLnjuL7IZlb4_Ymg.roa
File: p1qSHRQl-V0mLnjuL7IZlb4_Ymg.roa (raw, json)
Hash identifier: HhxvaLSa9eZoCOGRnhJD/GSVwR6xnnfXMk4ilA4giOQ=
Subject key identifier: A7:5A:92:1D:14:25:F9:5D:26:2E:78:EE:2F:B2:19:95:BE:3F:62:68
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0CB92A94
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/p1qSHRQl-V0mLnjuL7IZlb4_Ymg.roa
Signing time: Sat 01 Jan 2022 05:05:01 +0000
ROA not before: Sat 01 Jan 2022 05:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58073
IP address blocks: 188.215.229.0/24 maxlen: 24
62.197.129.0/24 maxlen: 24
185.214.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213461652 (0xcb92a94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 05:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a75a921d1425f95d262e78ee2fb21995be3f6268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:50:c8:a4:cd:fc:4c:f0:63:0a:d3:70:d1:
c1:43:f7:41:79:5c:83:db:ef:5a:e9:62:f9:44:59:
36:3c:a7:e1:d2:b1:4a:e8:1b:dc:b5:76:5b:6d:21:
e0:0c:3f:60:40:87:d4:78:e0:d1:6a:fb:a0:0b:13:
b6:67:93:b7:93:d9:cc:17:33:b5:09:ea:f1:75:85:
2b:01:61:bb:52:ac:30:ea:d3:d5:d8:20:be:64:73:
46:52:de:5b:37:0c:60:db:2d:1c:41:2c:8e:cc:00:
f3:a2:a7:47:df:de:09:5a:60:42:9f:4c:cc:95:1c:
16:a5:34:25:e0:e8:ac:0f:12:b4:96:3a:38:2d:56:
25:c1:cc:b4:9f:42:08:fd:bb:1f:e3:87:2e:f5:87:
a7:51:f2:7f:ea:00:c6:38:03:f0:9a:36:5f:fc:e9:
36:f8:6b:cd:0b:ed:d4:87:96:69:69:5c:fa:f6:79:
b9:69:92:d3:45:d2:fc:c2:bf:ae:79:e5:25:5c:25:
06:85:61:56:60:1b:24:af:fa:49:3b:ff:60:13:93:
9c:14:79:53:ba:7d:27:c7:f5:4b:4f:54:07:c1:6f:
08:d5:b6:8f:52:c8:b8:46:65:74:f8:53:2c:ca:fb:
fb:fe:04:44:98:b2:1a:72:d0:fc:da:14:71:10:14:
ad:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:5A:92:1D:14:25:F9:5D:26:2E:78:EE:2F:B2:19:95:BE:3F:62:68
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/p1qSHRQl-V0mLnjuL7IZlb4_Ymg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.197.129.0/24
185.214.10.0/24
188.215.229.0/24
Signature Algorithm: sha256WithRSAEncryption
43:37:50:44:5a:cb:61:27:cb:cc:84:b6:57:4f:a8:b4:12:7e:
1e:39:a9:20:e2:04:dc:2e:02:d1:2c:6b:f7:73:55:4b:aa:8a:
5e:51:e5:84:0c:79:89:9e:31:98:8c:8f:cf:d1:4b:48:dd:b8:
4e:c9:bc:66:32:e0:21:2b:1a:ec:91:4a:df:00:c4:fc:6b:5e:
6a:cd:a9:c9:71:ef:fb:28:94:22:fd:3e:2a:4b:d7:22:a2:d9:
66:91:f1:20:57:03:64:91:be:cf:c1:20:16:15:ad:47:80:5f:
ca:50:df:e0:c2:b5:60:44:86:7d:7e:a3:c9:8f:a6:15:e0:d0:
1e:59:6f:8f:6b:48:b0:6e:b2:68:31:33:12:7b:66:14:07:25:
aa:b7:7a:f1:e4:93:7e:67:83:76:86:5c:4f:af:6c:37:a7:fe:
ec:67:5e:a9:b0:48:54:78:15:c4:44:b8:47:11:76:aa:0b:da:
96:dc:ff:25:8b:72:da:78:69:16:4d:83:3c:32:55:01:0d:ce:
1d:db:1b:8c:49:e5:8f:65:a8:88:bb:43:d3:0b:48:75:e3:c3:
fd:62:43:5f:72:95:73:4c:8d:46:1d:97:1d:3d:d6:2d:ef:76:
31:58:06:fc:63:52:9d:fc:da:8b:40:e6:ab:79:12:29:c9:de:
b2:b7:43:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:03 2023 by rpki-client on console-fra.rpki-client.org