Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b247da-3192-4813-bff4-2c7e2e4a9747/1/PYL5B37SoFrMwthTUWiNmdlJMoU.roa
File: PYL5B37SoFrMwthTUWiNmdlJMoU.roa (raw, json)
Hash identifier: SB2DYcUxYecYmiPBIdphKRX0g6Dyzu/IrCFEyk0t77c=
Subject key identifier: 3D:82:F9:07:7E:D2:A0:5A:CC:C2:D8:53:51:68:8D:99:D9:49:32:85
Certificate issuer: /CN=6d6d1f110f595c635ccbe9fbb3090dbb5fcfbd6e
Certificate serial: 02E3761E
Authority key identifier: 6D:6D:1F:11:0F:59:5C:63:5C:CB:E9:FB:B3:09:0D:BB:5F:CF:BD:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW0fEQ9ZXGNcy-n7swkNu1_PvW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b247da-3192-4813-bff4-2c7e2e4a9747/1/PYL5B37SoFrMwthTUWiNmdlJMoU.roa
Signing time: Sat 01 Jan 2022 13:57:03 +0000
ROA not before: Sat 01 Jan 2022 13:57:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211906
IP address blocks: 185.235.60.0/24 maxlen: 24
2a0c:8cc0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48461342 (0x2e3761e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6d1f110f595c635ccbe9fbb3090dbb5fcfbd6e
Validity
Not Before: Jan 1 13:57:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d82f9077ed2a05accc2d85351688d99d9493285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:55:6b:3e:35:e8:1b:f3:37:a1:b3:86:1f:22:
1a:37:3d:15:97:f5:24:df:91:6f:c8:cf:22:9f:c2:
ee:8c:1a:e7:e6:a8:07:e8:4d:ac:2f:92:46:da:56:
41:b1:9b:ce:9d:9b:e0:65:fb:22:ee:ed:6b:e9:ae:
c5:6f:ff:2e:d9:72:04:c4:1c:f4:87:cc:2b:6c:ed:
30:60:a8:82:37:61:0b:dc:51:9a:cf:5b:4a:3d:70:
1a:c3:8f:95:9e:d8:e5:cd:16:4e:40:fb:29:b5:73:
60:39:2a:04:bb:e5:fa:43:df:16:68:a1:f8:b2:90:
05:e4:40:5a:1a:3c:97:c2:3e:35:b3:74:c6:70:b7:
98:b3:86:c6:8f:74:fb:79:ac:63:54:aa:4a:e8:a9:
23:41:39:31:46:56:bc:ed:72:da:eb:cf:35:ed:3f:
47:18:ef:bf:96:14:0f:a2:00:f7:39:45:4d:18:6d:
3d:d5:c6:d3:15:b6:b6:59:10:ab:38:e0:de:5c:57:
d0:5a:9d:20:47:71:5f:12:47:4f:5f:7e:c6:c1:a8:
bc:d6:e8:8e:26:ee:71:7b:0d:f8:57:7c:43:93:f3:
fc:d7:88:73:8d:83:ea:ca:c6:6f:cf:1b:eb:80:13:
db:0a:c3:62:94:94:18:0f:21:af:6b:0d:65:1b:52:
4e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:82:F9:07:7E:D2:A0:5A:CC:C2:D8:53:51:68:8D:99:D9:49:32:85
X509v3 Authority Key Identifier:
keyid:6D:6D:1F:11:0F:59:5C:63:5C:CB:E9:FB:B3:09:0D:BB:5F:CF:BD:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW0fEQ9ZXGNcy-n7swkNu1_PvW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b247da-3192-4813-bff4-2c7e2e4a9747/1/PYL5B37SoFrMwthTUWiNmdlJMoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b247da-3192-4813-bff4-2c7e2e4a9747/1/bW0fEQ9ZXGNcy-n7swkNu1_PvW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.60.0/24
IPv6:
2a0c:8cc0::/29
Signature Algorithm: sha256WithRSAEncryption
56:f0:a3:33:80:77:e4:3d:c7:21:04:11:76:42:2f:76:26:b5:
c9:a2:30:32:88:1b:c1:a7:ab:56:38:be:49:d5:6e:e5:f8:12:
a0:b5:06:6e:55:53:e0:aa:65:0d:46:7d:45:c0:7a:28:90:1b:
b1:87:ac:fa:8c:9d:d6:67:a1:06:6b:e4:46:e3:4d:1b:ab:2f:
69:dc:06:95:a5:09:76:e7:2b:5c:2e:8c:63:68:17:eb:e6:d5:
99:31:99:8c:c1:c2:29:73:d6:0e:db:fd:e0:21:3c:ac:a3:b0:
04:32:b3:aa:49:f2:3e:89:9f:02:d7:7e:14:62:07:21:ba:0e:
53:8a:5f:d1:40:f2:f1:e6:59:57:0b:c7:79:66:90:60:75:e9:
da:27:6b:28:0d:0f:ef:22:7e:77:d3:45:e1:4a:ac:37:42:d3:
11:f4:7a:fd:5f:66:ba:2b:5b:8c:3f:55:ef:ea:0e:99:2d:f6:
e9:05:6c:82:0b:49:2f:98:f3:74:50:89:34:a2:de:e9:45:52:
31:ce:54:a3:06:00:2c:39:ec:07:f7:cf:c4:f0:ed:3c:f1:f4:
21:5d:7f:b6:16:ad:2d:e1:26:25:6c:98:6e:ae:b0:6d:b4:cf:
a7:2c:5d:4c:5f:5c:49:a4:3d:9a:d6:cd:7f:d1:c3:71:c5:3d:
ea:35:b0:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:13 2024 by rpki-client on console-fra.rpki-client.org