Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/0b8f11-a011-4764-bcf3-6dbba2b1dca7/1/2y4fqtG7sOW8Z1KK1o_wNmQ-EPs.roa
File: 2y4fqtG7sOW8Z1KK1o_wNmQ-EPs.roa (raw, json)
Hash identifier: dSUT3KU1W2XOIQSzpMjsk58voRceWyvwk8qwzmBdAa8=
Subject key identifier: DB:2E:1F:AA:D1:BB:B0:E5:BC:67:52:8A:D6:8F:F0:36:64:3E:10:FB
Certificate issuer: /CN=ee0581767af4579e44da977b1082d94b3c7b9298
Certificate serial: 040159
Authority key identifier: EE:05:81:76:7A:F4:57:9E:44:DA:97:7B:10:82:D9:4B:3C:7B:92:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7gWBdnr0V55E2pd7EILZSzx7kpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/0b8f11-a011-4764-bcf3-6dbba2b1dca7/1/2y4fqtG7sOW8Z1KK1o_wNmQ-EPs.roa
Signing time: Tue 08 Feb 2022 14:50:33 +0000
ROA not before: Tue 08 Feb 2022 14:50:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59771
IP address blocks: 193.105.119.0/24 maxlen: 24
195.85.224.0/24 maxlen: 24
2001:678:39c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262489 (0x40159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee0581767af4579e44da977b1082d94b3c7b9298
Validity
Not Before: Feb 8 14:50:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db2e1faad1bbb0e5bc67528ad68ff036643e10fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2c:4c:0b:63:49:68:27:06:0b:e6:d2:fe:92:
d2:ca:ff:dc:54:b9:ee:a0:a1:6a:98:ac:e1:09:d7:
2d:43:e3:0f:d8:c9:fb:44:1c:4f:a0:40:2a:38:a7:
02:ba:f0:ce:92:28:a8:e3:ef:81:2c:4f:ed:07:98:
d0:ff:3f:49:7c:bb:8e:51:7d:42:dc:7b:69:d4:6e:
1a:d1:37:60:77:31:7b:58:5a:01:af:ee:d8:d7:a5:
00:f4:c5:11:1e:13:41:5e:36:2a:b4:bd:96:76:26:
48:30:e8:c1:8d:0b:09:28:54:2c:3e:88:e0:d0:85:
84:6d:1e:0f:5e:33:18:e4:3a:4f:ce:5b:c1:59:f6:
5e:ed:0e:e5:a0:6c:2f:f3:95:25:d3:9b:52:d1:44:
c4:76:0a:47:fe:ef:18:a6:0b:00:1c:11:ed:97:99:
cb:50:16:3e:9a:0c:dc:3d:e2:d7:67:a4:fd:60:ae:
1e:20:41:97:8e:c9:3f:eb:da:5a:6f:90:b3:42:77:
14:ca:59:07:9e:05:6a:af:77:88:75:e5:86:9b:3e:
8e:57:80:a6:e4:7d:85:86:1b:a5:21:68:b0:9b:bc:
c0:55:e6:1e:af:26:14:5d:ca:d0:18:56:ba:7f:54:
73:88:0f:e5:07:65:6f:64:70:6c:b1:98:b9:ba:03:
34:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2E:1F:AA:D1:BB:B0:E5:BC:67:52:8A:D6:8F:F0:36:64:3E:10:FB
X509v3 Authority Key Identifier:
keyid:EE:05:81:76:7A:F4:57:9E:44:DA:97:7B:10:82:D9:4B:3C:7B:92:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gWBdnr0V55E2pd7EILZSzx7kpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0b8f11-a011-4764-bcf3-6dbba2b1dca7/1/2y4fqtG7sOW8Z1KK1o_wNmQ-EPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0b8f11-a011-4764-bcf3-6dbba2b1dca7/1/7gWBdnr0V55E2pd7EILZSzx7kpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.119.0/24
195.85.224.0/24
IPv6:
2001:678:39c::/48
Signature Algorithm: sha256WithRSAEncryption
81:cc:db:89:a5:9a:80:22:6e:fc:c1:e1:32:d2:72:bb:60:cd:
75:70:26:12:a9:db:b7:8d:76:9e:d5:b2:a0:29:f8:8f:d8:3d:
5e:0a:ee:53:4e:7f:60:16:87:57:4d:0b:1f:b2:50:51:ee:c3:
82:f5:02:76:c7:0d:4e:e3:a4:ab:fd:3a:48:eb:5f:0b:28:14:
d2:4e:2d:55:44:8e:41:ac:e5:4e:78:f1:ae:3b:61:0e:c7:0b:
49:3a:84:d4:ea:cb:73:c3:89:ab:a3:a9:d8:6a:10:4b:a0:b8:
9d:70:de:e2:f5:f3:b1:8f:e3:a6:27:f9:31:31:66:3b:70:96:
37:37:f6:2b:2b:43:2d:83:9d:06:9e:65:dc:4d:7f:7b:8a:7c:
8c:51:2a:83:be:dd:b1:ab:54:fc:78:8e:4e:8e:6c:f8:2e:71:
56:07:fa:75:d1:3f:71:b6:14:dc:71:74:94:5c:7e:b6:b3:76:
0c:fe:c3:4f:52:3b:a8:a3:8e:1c:cd:56:ec:6c:2f:5e:84:8b:
28:fd:45:34:bc:0b:23:4e:8e:d9:05:bb:93:d9:3b:3c:86:0e:
e2:9d:dc:2d:87:6c:e7:7f:3b:6d:30:da:b5:9f:96:3b:25:df:
8d:e2:f9:1f:f8:fd:42:48:f0:52:18:85:26:8a:9a:0f:e6:f9:
61:52:77:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:04 2024 by rpki-client on console-ams.rpki-client.org