Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/A_JmJ7cssOlEk9nX-JIzLfQMkX8.roa
File: A_JmJ7cssOlEk9nX-JIzLfQMkX8.roa (raw, json)
Hash identifier: 2XqsVSyvO0KnOpPxeGID9jpIIOs7a5OnaIA8b8k0k9M=
Subject key identifier: 03:F2:66:27:B7:2C:B0:E9:44:93:D9:D7:F8:92:33:2D:F4:0C:91:7F
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 1B223448
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/A_JmJ7cssOlEk9nX-JIzLfQMkX8.roa
Signing time: Thu 16 Jun 2022 07:19:49 +0000
ROA not before: Thu 16 Jun 2022 07:19:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47441
IP address blocks: 93.174.72.0/24 maxlen: 24
93.174.73.0/24 maxlen: 24
93.174.74.0/24 maxlen: 24
93.174.75.0/24 maxlen: 24
93.174.76.0/24 maxlen: 24
93.174.77.0/24 maxlen: 24
93.174.78.0/24 maxlen: 24
93.174.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455226440 (0x1b223448)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jun 16 07:19:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03f26627b72cb0e94493d9d7f892332df40c917f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2f:a8:70:89:ec:72:98:56:18:8b:b5:e6:30:
f7:82:0f:bd:af:da:16:08:c6:95:12:fa:f3:08:9f:
86:55:aa:59:2e:3e:84:04:2e:4e:d7:44:84:fb:54:
79:f2:76:d5:aa:7e:2a:5b:65:1c:b1:4e:2f:8c:f9:
74:f2:ca:fb:12:db:ed:44:4d:b6:2a:9e:39:9d:91:
06:29:4c:95:05:f8:ee:db:c9:09:c2:be:d2:73:b7:
9b:4f:43:c5:cb:4b:1a:a5:ba:7f:33:dd:73:2d:54:
f6:b7:c0:59:e5:cd:31:29:45:aa:42:f3:a0:ed:0d:
b6:aa:f9:06:70:72:ad:b4:36:0d:d1:98:b0:6f:ae:
d2:4a:d3:34:a4:2a:f0:24:de:f3:ac:0e:cc:c7:00:
fd:2a:5b:6f:4b:1f:ad:5e:2d:19:b2:08:34:d6:22:
17:43:4d:c7:cb:98:5c:1c:3f:a6:50:f5:9e:dd:0e:
64:5b:40:2a:f8:75:c3:0d:87:22:de:22:5a:85:52:
2e:65:fa:43:69:d1:5c:69:b9:8b:cd:92:69:48:88:
76:d6:59:ad:50:3f:3b:56:b1:b3:f3:7b:a0:8a:3a:
9e:c4:0c:36:5f:78:9c:3c:f2:1d:a7:4c:0f:1e:9b:
87:ee:10:25:c9:7b:82:ae:30:3d:66:69:1a:a5:a5:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F2:66:27:B7:2C:B0:E9:44:93:D9:D7:F8:92:33:2D:F4:0C:91:7F
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/A_JmJ7cssOlEk9nX-JIzLfQMkX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.72.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:cf:ec:6f:bf:b4:fe:d8:93:5c:75:da:c7:ff:c9:ba:82:47:
b5:73:0d:f8:6c:04:81:3e:d9:43:de:d1:4a:ba:2e:98:5e:8c:
3b:ba:c4:46:25:38:98:6b:46:3a:9f:b2:28:f7:93:43:45:aa:
9d:9f:f3:c8:da:4c:df:8c:45:31:44:69:9a:d7:a7:2a:e3:8f:
6c:5c:ab:6b:50:ca:78:21:45:32:52:6f:aa:0b:33:fe:8b:c3:
5a:8f:bb:10:94:1a:d7:80:49:b2:34:15:22:53:8e:7f:ae:b7:
0a:ab:c9:d5:e1:b7:93:1f:43:97:22:02:97:71:ec:04:87:1b:
c1:df:4c:83:6a:ed:e1:a4:c8:ba:81:ac:69:29:04:98:73:ad:
8f:78:1e:b1:91:55:7e:05:06:ad:be:5d:88:b3:0d:cf:77:63:
07:31:c2:1e:4c:8a:05:cb:dd:21:91:59:c1:b4:94:64:67:e7:
4e:ac:9f:56:a7:dc:cc:3a:c0:06:d1:68:1c:4b:14:ae:8e:2c:
80:a2:1d:69:6f:be:f8:aa:26:55:62:93:06:e7:f5:ad:35:9e:
51:80:2a:a7:cd:36:96:2c:cc:9b:b6:c6:d0:fe:c6:30:92:b1:
23:d5:8b:b8:8b:e8:0f:84:f4:9f:b4:b9:a5:b1:31:6d:b4:29:
77:2e:23:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:26 2025 by rpki-client