Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/y0UYu3HBIvCogHzAAMn-sdFP5Hs.roa
File: y0UYu3HBIvCogHzAAMn-sdFP5Hs.roa (raw, json)
Hash identifier: y2fYJ8Hpez4w4Urt4RFfNh3Dyu2AAA1OQsemjamgRx8=
Subject key identifier: CB:45:18:BB:71:C1:22:F0:A8:80:7C:C0:00:C9:FE:B1:D1:4F:E4:7B
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 07911F24
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/y0UYu3HBIvCogHzAAMn-sdFP5Hs.roa
Signing time: Thu 03 Mar 2022 14:02:47 +0000
ROA not before: Thu 03 Mar 2022 14:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.11.64.0/24 maxlen: 24
192.35.206.0/24 maxlen: 24
147.189.163.0/24 maxlen: 24
31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126951204 (0x7911f24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Mar 3 14:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb4518bb71c122f0a8807cc000c9feb1d14fe47b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7a:0e:cb:80:40:07:60:52:0b:7d:fe:4d:50:
c3:0a:03:d4:a2:f9:58:15:79:69:f8:52:fa:02:45:
14:da:84:44:98:b8:dd:a2:20:f1:34:87:4f:00:6e:
6e:1d:56:03:ed:5e:c2:4b:fc:b9:1b:4c:92:d9:fa:
61:7b:bb:8b:2c:26:36:86:60:73:7d:29:dc:bc:c1:
03:0d:b7:38:7a:3f:55:eb:9a:ad:9a:cb:ca:2b:f5:
f4:82:3a:e7:b9:33:7a:b1:70:e7:95:8d:0d:7c:b3:
e1:b1:19:fd:1d:c6:49:20:a0:46:1a:fb:e0:96:ba:
74:a6:07:0a:6e:d0:44:64:60:2e:0a:d3:c1:41:5a:
ab:27:5e:3a:84:0b:12:90:27:84:fd:b4:66:ca:cb:
6e:11:fc:18:f9:b1:58:8b:db:f6:47:4f:b2:5c:de:
3a:34:31:6b:c1:84:75:83:10:99:3b:8d:04:8a:23:
f4:43:0b:f9:f8:0e:62:c3:e9:45:44:cc:7b:5b:c0:
b8:14:42:38:98:e6:e3:33:99:f0:ae:fa:a1:1f:39:
54:53:e7:2d:75:a0:f9:76:47:5a:e8:30:a5:10:ea:
ea:41:ce:37:58:3f:17:35:38:c5:2d:b8:1f:68:6a:
f9:84:27:d3:5f:bd:92:76:dd:e8:a1:77:06:a5:ff:
75:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:45:18:BB:71:C1:22:F0:A8:80:7C:C0:00:C9:FE:B1:D1:4F:E4:7B
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/y0UYu3HBIvCogHzAAMn-sdFP5Hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
147.189.163.0/24
192.35.206.0/24
212.11.64.0/24
Signature Algorithm: sha256WithRSAEncryption
20:fb:04:d8:91:9b:0f:65:64:21:f3:dd:52:3b:5b:ca:a2:8f:
4d:ec:2e:c7:bd:f3:80:21:8b:2e:1b:c1:c8:a4:a6:17:e9:3e:
53:71:50:55:ff:83:18:e1:31:d8:6a:55:08:33:b7:12:63:2a:
3c:43:9c:c9:73:61:42:a8:37:7f:2a:1d:c1:3c:e6:32:5d:5b:
33:35:7d:14:77:5d:1e:f3:b7:4c:d1:ee:ec:f6:26:12:41:18:
64:88:1e:98:d3:ca:81:98:f2:a5:d7:7c:ab:1b:e3:31:03:8b:
cc:b1:d6:fb:bf:17:f4:23:3c:65:01:79:ad:28:1a:6b:a5:4e:
77:6d:d3:6c:fc:a7:21:c6:b9:2c:cd:2f:6c:56:8f:e0:2b:0c:
3c:e0:e1:41:4a:d5:c1:f9:68:4c:0e:e8:89:20:02:1f:9b:25:
26:b0:34:d4:10:58:83:11:b9:fc:9a:89:fd:6b:f0:1e:ed:1a:
1c:fd:1c:db:ed:7c:09:07:71:fa:92:4d:f8:db:b6:a6:b8:2f:
fc:00:1f:55:90:10:f1:a4:74:3f:80:db:94:f4:31:86:60:66:
3c:15:b4:64:07:5e:e4:fe:7c:06:92:89:80:fe:d1:11:91:a5:
00:81:94:7f:ed:ff:2e:a3:11:95:39:10:ef:de:42:48:9d:2d:
9d:c2:ee:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org