Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/aktL6BgMY2MFwAoBvc0NjltB1UU.roa
File: aktL6BgMY2MFwAoBvc0NjltB1UU.roa (raw, json)
Hash identifier: w11kAg15mpXR9hs0zgdny5/766hL4nBUr6ML6tSy8oU=
Subject key identifier: 6A:4B:4B:E8:18:0C:63:63:05:C0:0A:01:BD:CD:0D:8E:5B:41:D5:45
Certificate issuer: /CN=29db7ca4eee1e453d26fab99c8201adf894612be
Certificate serial: 0385F999
Authority key identifier: 29:DB:7C:A4:EE:E1:E4:53:D2:6F:AB:99:C8:20:1A:DF:89:46:12:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kdt8pO7h5FPSb6uZyCAa34lGEr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/aktL6BgMY2MFwAoBvc0NjltB1UU.roa
Signing time: Sat 01 Jan 2022 02:00:44 +0000
ROA not before: Sat 01 Jan 2022 02:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198623
IP address blocks: 37.77.192.0/21 maxlen: 24
193.104.81.0/24 maxlen: 24
37.123.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59111833 (0x385f999)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29db7ca4eee1e453d26fab99c8201adf894612be
Validity
Not Before: Jan 1 02:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a4b4be8180c636305c00a01bdcd0d8e5b41d545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5c:42:ad:5d:6c:e1:3c:51:fd:19:4c:bd:95:
b1:f8:4b:18:e9:7d:b0:1d:33:13:66:eb:ad:5c:dd:
56:96:5a:f6:37:52:41:f1:93:6b:8b:ca:8b:e0:85:
29:98:64:e4:3b:b5:03:15:61:d7:56:d8:cd:cc:6b:
e0:78:16:3b:bb:b9:1a:d9:66:4d:4f:33:27:dc:1d:
2e:2f:51:af:fa:ba:dc:b1:fb:2a:3e:93:fa:32:08:
72:f1:ce:32:d8:43:8c:a8:80:ae:5c:c5:fb:4f:af:
7d:a6:d0:c2:1f:74:80:f5:2a:d0:c5:d5:de:68:f5:
ea:46:f7:0a:fe:52:28:a0:53:e2:1a:00:65:24:28:
ae:14:43:69:48:ac:91:3f:bf:1a:e5:ff:78:75:34:
ff:9b:db:d9:b8:33:ac:a6:83:73:14:b3:31:e0:9b:
46:32:40:54:8c:07:20:60:77:31:8e:ac:1c:bb:6e:
34:6d:ec:a9:6e:d3:74:7b:87:cc:31:03:f9:10:0b:
85:fd:2b:d5:1b:52:a2:a9:7e:16:b1:df:37:c8:0f:
b8:3d:99:e4:9d:7e:a7:48:5b:21:29:6b:99:86:0f:
a7:38:74:f0:d1:0b:fe:4b:bd:29:45:e3:66:91:45:
41:48:e6:7e:bd:72:68:e7:c4:d1:1d:86:bf:18:6b:
50:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4B:4B:E8:18:0C:63:63:05:C0:0A:01:BD:CD:0D:8E:5B:41:D5:45
X509v3 Authority Key Identifier:
keyid:29:DB:7C:A4:EE:E1:E4:53:D2:6F:AB:99:C8:20:1A:DF:89:46:12:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kdt8pO7h5FPSb6uZyCAa34lGEr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/aktL6BgMY2MFwAoBvc0NjltB1UU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/Kdt8pO7h5FPSb6uZyCAa34lGEr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.192.0/21
37.123.248.0/21
193.104.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:48:5e:05:ad:1d:ad:5b:8d:5e:62:69:ae:02:65:20:73:c6:
b8:8d:f3:47:a5:35:0e:65:85:7a:48:af:37:8b:c9:92:dc:b6:
96:f0:85:56:d6:18:80:ed:ac:e3:2f:dd:4e:13:e6:e7:39:9b:
c2:52:a3:9c:df:fc:47:b0:a6:65:bc:e9:25:46:42:9a:2c:96:
f6:b7:a8:f4:10:86:2f:15:9b:5e:62:84:10:30:77:ab:43:4e:
74:f0:e3:f9:6f:51:7a:d9:1c:75:ab:16:65:0a:b1:f1:1a:60:
ff:84:f0:0a:d9:07:31:c5:28:c5:4f:42:eb:f0:a8:81:4e:a8:
11:5e:b8:be:00:4c:70:89:19:3e:10:f0:e6:02:6f:a3:07:78:
d4:bf:4f:f6:f5:33:c5:69:93:09:98:45:cd:a6:14:af:ec:fe:
21:23:10:32:96:23:2e:b1:45:f8:df:0e:04:26:19:62:88:29:
d4:1f:b6:15:62:6d:bc:a8:ab:9c:28:c9:1f:ed:9a:37:b5:ba:
f0:9a:ea:59:fb:90:b3:fb:f5:fb:00:38:61:6d:3f:93:f5:b0:
78:3d:cb:a3:ad:a0:a1:e7:5f:4b:33:50:28:26:17:da:5c:bf:
0f:f1:6e:c0:75:32:1e:92:28:ae:e3:7d:fc:bc:8f:62:a0:1b:
4c:88:87:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:46 2024 by rpki-client on console-ams.rpki-client.org