Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/cy9VGCmlwSSlNBqb-t-Nc6JlGjs.roa
File: cy9VGCmlwSSlNBqb-t-Nc6JlGjs.roa (raw, json)
Hash identifier: uQQ9opOQzQYW2xTp0MAW1frHRLtbo9YNbhhD7Fjibyk=
Subject key identifier: 73:2F:55:18:29:A5:C1:24:A5:34:1A:9B:FA:DF:8D:73:A2:65:1A:3B
Certificate issuer: /CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Certificate serial: 01849C5FD252E6DC149E01864DEF5B6BC8CE
Authority key identifier: 7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/cy9VGCmlwSSlNBqb-t-Nc6JlGjs.roa
Signing time: Mon 21 Nov 2022 22:47:15 +0000
ROA not before: Mon 21 Nov 2022 22:47:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3177
IP address blocks: 185.129.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9c:5f:d2:52:e6:dc:14:9e:01:86:4d:ef:5b:6b:c8:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Validity
Not Before: Nov 21 22:47:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=732f551829a5c124a5341a9bfadf8d73a2651a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7c:c0:67:cb:63:04:15:c1:e7:1f:6e:76:af:
2f:0f:7a:03:f3:2c:de:11:8d:6c:c8:63:61:f8:b8:
fa:f0:67:f8:b9:f6:a0:43:b3:bc:64:8a:2d:87:ee:
9e:72:16:30:bf:32:43:00:01:f0:c1:c4:bb:4b:bb:
fd:c3:5f:89:a5:f1:f3:c6:f0:a7:a0:66:a5:0f:4d:
ab:fa:cd:70:9a:48:a8:7c:19:e1:82:30:86:78:a6:
70:f5:52:7d:52:1f:b2:dd:69:80:09:7d:a4:2a:e7:
57:c1:5b:84:23:1b:74:83:a8:5b:f6:57:c1:78:13:
33:42:f4:56:1e:7c:63:1f:68:40:f6:a7:a7:96:dc:
07:18:50:5c:9f:3e:3d:d4:7f:fe:25:b8:c3:ba:67:
e0:a8:37:00:89:1a:3b:84:87:8d:f1:16:14:32:a6:
10:08:fd:93:8f:49:cc:1d:85:e1:5c:25:82:7d:8b:
2a:0d:9f:6b:f7:82:f7:1d:29:ab:8c:9d:1e:f8:bd:
94:21:f7:8f:f5:7d:d3:d6:ec:6b:4c:6d:72:a4:e3:
6b:dc:79:9a:c4:ec:8a:64:e4:68:01:b8:02:b3:fa:
37:be:60:70:25:32:5c:22:68:00:23:9e:31:e3:91:
c5:1e:c9:bc:e0:e0:2e:83:3e:f3:a1:5e:e7:81:5b:
a8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2F:55:18:29:A5:C1:24:A5:34:1A:9B:FA:DF:8D:73:A2:65:1A:3B
X509v3 Authority Key Identifier:
keyid:7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/cy9VGCmlwSSlNBqb-t-Nc6JlGjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/e71RJyBktjssZjwClroR216iOMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.184.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:af:26:c0:66:a4:6d:e6:7b:07:8a:3c:b3:58:87:ba:ab:16:
dd:17:0d:06:c8:d0:4b:85:34:a0:e3:f2:0e:47:e6:2a:56:23:
20:22:08:75:f5:bb:e1:c5:95:de:5e:fe:2a:b0:df:2b:c0:29:
b5:05:3a:7e:8d:c7:c7:95:09:97:3b:4e:a8:e3:3b:6e:e7:93:
1d:56:77:e3:2e:bc:81:04:4f:50:e5:7e:78:a3:6c:08:b0:90:
3d:bf:ce:d1:a8:6e:35:c4:84:ab:a8:00:c8:be:23:f7:6b:5f:
e3:eb:17:97:27:d3:36:22:56:e0:f5:3f:65:97:5d:38:fc:6d:
70:c8:28:17:7e:47:66:4b:3c:c5:0d:e2:32:f0:b4:d7:34:66:
2a:84:93:a3:9e:63:50:2f:a9:e5:a3:9c:d9:8a:d1:e9:7d:5f:
63:34:f6:91:b7:60:fa:ae:09:e3:cf:4b:de:d2:89:bd:e8:0a:
6a:b6:eb:45:55:fe:29:38:35:85:72:40:d0:b8:b7:18:22:0c:
7f:e9:c3:e9:10:9c:ad:18:7c:f5:52:48:77:c9:e5:56:0d:b7:
84:27:25:71:b1:2b:90:7c:41:36:ce:45:2a:d0:1b:b2:67:a3:
41:ee:6e:6f:e6:63:9a:5b:09:a5:d9:eb:f0:2d:5c:da:9d:39:
bd:b0:7e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:49 2023 by rpki-client on console-fra.rpki-client.org