Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/45f3bc-93c8-4bb9-8d4c-b12d7f892f5b/1/gYMcm886tgYXMOHV638FsV-H3oo.roa
File: gYMcm886tgYXMOHV638FsV-H3oo.roa (raw, json)
Hash identifier: 6L7QCJRBVzKIZTSf5keKrObYRpl7OTrPFmFH2KV/ZNw=
Subject key identifier: 81:83:1C:9B:CF:3A:B6:06:17:30:E1:D5:EB:7F:05:B1:5F:87:DE:8A
Certificate issuer: /CN=c42287c68458f980ca9b7c36d61f6af586464b28
Certificate serial: 17327BCE
Authority key identifier: C4:22:87:C6:84:58:F9:80:CA:9B:7C:36:D6:1F:6A:F5:86:46:4B:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCKHxoRY-YDKm3w21h9q9YZGSyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/45f3bc-93c8-4bb9-8d4c-b12d7f892f5b/1/gYMcm886tgYXMOHV638FsV-H3oo.roa
Signing time: Sat 01 Jan 2022 02:51:41 +0000
ROA not before: Sat 01 Jan 2022 02:51:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59414
IP address blocks: 185.72.20.0/23 maxlen: 24
185.72.22.0/23 maxlen: 24
2a05:3d80::/32 maxlen: 48
2a05:3d81::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389184462 (0x17327bce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42287c68458f980ca9b7c36d61f6af586464b28
Validity
Not Before: Jan 1 02:51:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81831c9bcf3ab6061730e1d5eb7f05b15f87de8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:12:6b:88:52:f4:dd:83:8c:d0:f1:00:59:f6:
19:8e:7f:42:0a:03:10:85:e8:79:4b:84:8a:6c:f1:
29:d6:5d:1e:c1:a4:09:c3:d2:e4:cb:23:4e:89:0c:
e0:25:2c:12:ad:b0:c1:9b:96:05:53:2c:05:19:ae:
36:7f:3f:dd:57:89:51:0a:a2:6c:ef:5d:94:32:ab:
f2:8c:02:5e:df:4f:81:7c:7e:cb:21:70:d3:3d:0d:
2b:af:83:d0:2f:72:e2:97:cb:43:b2:cb:b7:cf:3f:
46:21:e6:12:94:db:9f:11:d2:e0:1d:ca:da:8c:87:
74:62:e3:f0:b4:f4:75:26:18:19:c7:fb:32:ce:20:
4b:62:cd:37:22:86:87:58:15:44:55:6e:c6:1e:8b:
c0:a6:94:10:b2:fc:6f:d1:8d:cc:00:3d:cb:63:23:
3a:52:1b:85:11:f3:1d:43:f2:cc:06:3f:29:e3:97:
28:b3:ef:d5:d3:77:99:82:17:8c:86:5f:6b:04:8c:
c3:47:73:81:5f:37:9c:93:e4:2b:1f:b7:63:84:23:
e7:6d:7e:7d:fe:25:24:5e:4d:e1:02:6b:75:7a:09:
59:b2:ba:75:94:7d:cb:30:ab:c7:39:8c:9d:b9:c2:
70:c2:eb:db:4f:93:00:bc:0c:a2:14:02:35:d7:0f:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:83:1C:9B:CF:3A:B6:06:17:30:E1:D5:EB:7F:05:B1:5F:87:DE:8A
X509v3 Authority Key Identifier:
keyid:C4:22:87:C6:84:58:F9:80:CA:9B:7C:36:D6:1F:6A:F5:86:46:4B:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCKHxoRY-YDKm3w21h9q9YZGSyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/45f3bc-93c8-4bb9-8d4c-b12d7f892f5b/1/gYMcm886tgYXMOHV638FsV-H3oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/45f3bc-93c8-4bb9-8d4c-b12d7f892f5b/1/xCKHxoRY-YDKm3w21h9q9YZGSyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.20.0/22
IPv6:
2a05:3d80::/31
Signature Algorithm: sha256WithRSAEncryption
0b:a4:29:9c:ad:cb:c1:89:a0:67:41:66:c2:6b:be:82:98:e8:
85:dc:67:0c:18:2f:13:22:34:88:bd:13:12:bd:f9:8c:1e:1e:
7f:11:d5:7d:c7:7f:89:f5:96:ed:11:56:50:d1:43:6b:3b:86:
0f:aa:79:21:32:c7:89:69:41:99:84:96:e5:92:18:11:bd:a1:
e6:03:24:89:ff:0f:32:07:a5:c3:56:b4:ff:26:cc:de:d7:35:
f8:68:f7:25:91:a5:47:0b:7e:01:a2:f5:c9:ff:ed:9f:19:ca:
6b:71:fa:59:23:a7:60:dc:f2:b6:06:63:da:74:c2:d6:b2:7d:
1f:29:44:9e:45:1b:65:f6:0d:33:be:cb:45:b9:f2:73:31:31:
3f:e2:dd:00:de:3d:fc:3d:5d:e2:e9:91:c8:88:d9:3c:24:83:
bd:cf:8a:a1:8c:0f:30:ce:97:00:5d:6a:e8:e2:b0:34:02:4b:
78:ef:34:16:85:e3:70:18:6f:44:12:d3:df:e6:3e:7b:73:44:
d1:72:41:53:68:7c:39:15:13:7e:1d:a2:05:d8:1b:ea:74:7a:
18:81:30:db:5a:eb:91:b4:58:93:e6:94:a5:98:3a:51:99:11:
eb:22:d7:47:d7:8d:7d:fd:00:5e:9d:a1:76:f0:ac:ce:2f:f3:
60:66:8f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:04 2024 by rpki-client on console-ams.rpki-client.org