Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/o3EwD099WRVD99v1ltqAPOCXUxc.roa
File: o3EwD099WRVD99v1ltqAPOCXUxc.roa (raw, json)
Hash identifier: M+DGy04GqRWOUFjeyt89EJe+rl+dPzQWtzqLqs9lcuE=
Subject key identifier: A3:71:30:0F:4F:7D:59:15:43:F7:DB:F5:96:DA:80:3C:E0:97:53:17
Certificate issuer: /CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Certificate serial: 02F87104
Authority key identifier: 54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/o3EwD099WRVD99v1ltqAPOCXUxc.roa
Signing time: Sat 01 Jan 2022 04:52:37 +0000
ROA not before: Sat 01 Jan 2022 04:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44293
IP address blocks: 185.79.36.0/22 maxlen: 22
194.61.16.0/22 maxlen: 22
185.240.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49836292 (0x2f87104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54d6ff134bd656f0ce14d410b02bec551eb69a2c
Validity
Not Before: Jan 1 04:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a371300f4f7d591543f7dbf596da803ce0975317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ed:b2:49:12:85:19:d5:6b:07:2b:b2:09:67:
4f:12:fc:b0:37:66:85:de:e0:ae:d5:42:48:03:ac:
28:52:9e:af:2d:36:f8:75:b0:64:41:cf:20:61:df:
d6:31:15:55:d2:fc:f6:00:c3:af:ca:b6:d2:4e:fb:
01:b8:86:bf:71:00:70:21:d0:6a:3a:b2:c5:ca:b9:
34:77:77:79:59:17:7c:d5:25:f9:cf:f3:15:dc:1a:
43:e9:55:7e:f8:9f:d8:cc:99:f9:3b:32:a1:6d:1c:
14:b2:51:ca:0d:19:38:0a:6f:85:8f:bb:d8:52:ce:
58:d8:57:ae:46:1b:40:ae:29:96:2f:7b:21:cf:a1:
a3:37:d7:28:7b:70:5c:31:76:34:48:25:86:00:7f:
12:cf:1a:aa:0d:17:cb:4f:bf:7f:84:a7:9e:06:8e:
2a:d6:6c:5f:5d:8c:57:b0:89:16:67:24:0f:e1:17:
ae:9d:37:12:84:4d:91:1a:44:c8:97:49:b7:b6:62:
1c:89:16:d2:c8:d8:6f:9a:e3:96:1a:51:be:3a:96:
c6:20:be:25:ae:c3:36:98:07:87:b6:55:7a:b8:7b:
f6:41:bd:e0:da:f9:32:d1:87:16:8b:0b:bc:6d:77:
f5:f5:9d:46:79:1d:5e:ab:73:c5:f0:ef:9f:7c:6d:
32:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:71:30:0F:4F:7D:59:15:43:F7:DB:F5:96:DA:80:3C:E0:97:53:17
X509v3 Authority Key Identifier:
keyid:54:D6:FF:13:4B:D6:56:F0:CE:14:D4:10:B0:2B:EC:55:1E:B6:9A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VNb_E0vWVvDOFNQQsCvsVR62miw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/o3EwD099WRVD99v1ltqAPOCXUxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f21ee7-4925-4dd6-b202-64278c0d8ebf/1/VNb_E0vWVvDOFNQQsCvsVR62miw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.36.0/22
185.240.232.0/22
194.61.16.0/22
Signature Algorithm: sha256WithRSAEncryption
37:2a:74:76:65:93:6a:af:03:d3:e7:40:6f:f9:a0:d6:76:50:
c4:aa:05:0f:0e:88:dc:09:fb:49:5c:1a:60:4c:a4:18:dd:01:
0f:28:01:b2:22:ad:2b:af:1e:52:5e:3d:74:72:bf:7c:47:78:
1f:39:33:37:39:bb:41:5c:85:95:26:09:82:b9:cc:ba:d6:6a:
78:64:92:1b:eb:73:94:a4:d8:09:33:d9:7f:e2:a5:f3:37:a6:
c2:08:e6:08:63:e8:eb:e5:db:4e:0a:a3:99:8e:f7:89:34:93:
fa:8f:6d:28:f6:7c:ef:ae:0d:a6:5c:c5:6a:62:3f:71:03:97:
dd:bd:c3:3b:c9:2a:23:af:ed:31:f1:cd:06:bf:5c:14:b2:46:
71:c8:13:68:92:82:3a:f9:bc:7a:94:3a:ba:2e:e0:fd:42:bf:
2e:1c:aa:10:42:a1:59:e8:e0:ee:e1:a7:16:06:a9:e9:14:33:
25:76:62:da:43:e6:87:0f:d8:40:59:0c:67:bd:83:6a:82:8e:
ba:c4:6f:65:de:cf:52:08:2a:99:f5:d1:d1:d1:f7:6e:3a:99:
ee:b3:a8:96:78:0a:3f:9f:04:e8:e0:39:91:c7:26:1f:63:e9:
c1:fa:e9:ac:69:70:bb:bf:f3:93:b5:e8:a2:8f:98:d4:ef:21:
6d:bc:a7:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:32 2024 by rpki-client on console-ams.rpki-client.org