Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/dyTXG22QEHv5_FXvZxUnBaqieCA.roa
File: dyTXG22QEHv5_FXvZxUnBaqieCA.roa (raw, json)
Hash identifier: kpC3PYqRIQF2nnCXBMqMOcVVejdo4VTGqHtPSz/YpYc=
Subject key identifier: 77:24:D7:1B:6D:90:10:7B:F9:FC:55:EF:67:15:27:05:AA:A2:78:20
Certificate issuer: /CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Certificate serial: 1A51A360
Authority key identifier: E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/dyTXG22QEHv5_FXvZxUnBaqieCA.roa
Signing time: Sat 01 Jan 2022 10:59:17 +0000
ROA not before: Sat 01 Jan 2022 10:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200086
IP address blocks: 185.37.155.0/24 maxlen: 24
2a04:71c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 441557856 (0x1a51a360)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Validity
Not Before: Jan 1 10:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7724d71b6d90107bf9fc55ef67152705aaa27820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:08:51:ed:91:8b:b1:82:67:71:4e:66:89:36:
f7:ad:25:a9:ad:cc:6d:12:cf:59:0b:c8:a4:c0:a0:
bc:81:12:cf:a5:0f:14:13:33:37:94:8c:31:c7:4c:
f1:0c:c2:21:dd:1c:6b:95:1d:f3:ee:df:eb:3b:e0:
9b:63:a4:a3:bc:10:32:40:03:8b:72:f6:ba:dd:0e:
40:85:08:8b:7b:c0:0c:1d:ae:b8:25:96:68:fd:6f:
55:3d:4d:1e:7c:02:a8:2f:c8:b8:e9:84:47:f3:3a:
45:bc:97:6e:3e:8d:08:4b:51:7c:44:7c:79:71:29:
98:e6:35:cf:11:f8:07:89:a1:3c:44:11:63:d3:69:
4c:3d:a1:8b:0d:c5:75:f7:06:89:16:14:38:67:c3:
51:57:20:e0:38:75:25:ad:23:5e:fb:7a:78:4d:de:
0e:e4:4b:43:c4:6c:ce:99:6b:11:0d:1d:f1:82:34:
30:f4:04:90:ab:50:58:7b:49:94:0c:59:05:ed:49:
70:b7:9e:78:a9:db:6c:ea:3d:de:45:60:5b:3d:a4:
2c:0d:8b:b3:10:d5:b2:bc:fd:af:86:9a:a0:02:e2:
42:6e:a0:6c:38:b8:d2:70:ae:64:eb:70:84:83:d7:
a8:ba:e3:79:01:a6:2a:25:f1:81:bd:e5:8c:c7:d7:
ca:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:24:D7:1B:6D:90:10:7B:F9:FC:55:EF:67:15:27:05:AA:A2:78:20
X509v3 Authority Key Identifier:
keyid:E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/dyTXG22QEHv5_FXvZxUnBaqieCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/45Dy7gpwvK7-AZWj2LN300KXqUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.155.0/24
IPv6:
2a04:71c0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:62:dd:3f:3d:c2:e3:1c:9d:17:3f:83:40:b9:a8:95:ef:8a:
1f:4f:7f:a0:24:75:08:57:e9:52:72:df:9a:bb:7a:4b:d0:b0:
af:80:c5:84:03:52:c0:54:58:35:11:15:ab:68:78:b1:e5:3d:
a5:f5:cf:4c:71:cc:a2:a3:a6:d6:f4:31:d2:09:f4:23:ff:75:
2d:95:7f:bc:ad:63:6a:05:bb:b2:cd:8b:a4:61:3a:dc:cc:86:
97:4c:20:58:e7:b3:cd:22:52:f1:73:0b:ff:f7:ae:c7:18:b2:
ca:3c:00:14:44:95:d8:34:4a:6f:85:36:c9:df:07:43:57:1a:
78:0a:aa:df:74:78:52:49:95:06:9d:16:18:3c:d0:d5:cb:f2:
08:f8:86:8c:2f:26:85:9a:b6:de:46:96:f8:5b:a9:6e:fb:09:
74:ef:9f:ff:bb:1c:67:d2:7c:ad:67:d5:6a:13:c3:85:50:7b:
03:db:54:ea:c4:89:9b:5f:34:cf:01:90:3b:6b:b6:5d:b0:18:
28:bc:22:f1:32:96:54:3c:66:16:0d:94:be:5f:20:64:cf:ed:
f0:42:b6:62:42:c2:d5:c2:f1:bd:d9:9e:f6:70:ea:8f:17:50:
7d:9f:9c:a8:b5:53:0c:a7:c1:75:42:18:cf:f9:82:8f:21:e3:
15:c5:f8:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org