Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/sTGnrDc2W44lWCe1tdY_yltxZRM.roa
File: sTGnrDc2W44lWCe1tdY_yltxZRM.roa (raw, json)
Hash identifier: V0sEVs3rSqHqfjfcv+7l1ovIzkq5wo+vNwz7C1fFjdA=
Subject key identifier: B1:31:A7:AC:37:36:5B:8E:25:58:27:B5:B5:D6:3F:CA:5B:71:65:13
Certificate issuer: /CN=b44f8539174d00bfa8bfde49043f485c3a587525
Certificate serial: 37977753
Authority key identifier: B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/sTGnrDc2W44lWCe1tdY_yltxZRM.roa
Signing time: Sat 01 Jan 2022 03:57:36 +0000
ROA not before: Sat 01 Jan 2022 03:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48972
IP address blocks: 185.100.140.0/22 maxlen: 22
95.130.232.0/21 maxlen: 21
2a02:b70::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932673363 (0x37977753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b44f8539174d00bfa8bfde49043f485c3a587525
Validity
Not Before: Jan 1 03:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b131a7ac37365b8e255827b5b5d63fca5b716513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:75:af:33:dd:fb:d2:aa:e1:88:cf:1a:02:22:
90:fe:97:e7:08:97:b3:70:1a:b2:99:80:64:a5:8a:
ea:04:7d:ea:e4:29:fb:00:39:0e:f4:f2:de:ce:a3:
b5:33:ac:5a:0d:c4:a8:48:6d:06:29:b8:b3:26:25:
6a:3f:d0:8c:ae:dc:a3:fa:76:d7:8a:88:d8:66:97:
e1:ee:bb:46:56:9d:53:cb:bd:57:4b:87:39:e7:76:
f1:54:1a:61:1f:b0:85:d2:37:9c:ac:4a:ff:ce:cc:
27:f6:55:be:bc:74:55:09:6e:eb:22:50:60:4e:f1:
ee:7d:39:33:0c:3f:11:d7:3d:a7:68:f1:85:04:77:
5a:f5:a5:9e:67:89:3c:8d:29:5f:74:57:d1:37:51:
be:a2:92:98:c0:d1:80:13:8a:fa:74:be:8f:84:5f:
e9:22:cc:62:6c:bf:99:ce:52:d3:25:83:98:5c:f0:
a3:17:5d:d7:7e:35:a5:ef:f2:0f:26:32:75:3c:6e:
ad:61:92:5f:57:2c:a1:47:09:c4:44:a0:3a:34:9e:
10:e7:5c:c7:a4:ca:67:0e:97:07:57:a8:08:11:62:
16:92:50:01:1e:e7:c6:77:a1:32:c9:e4:22:cb:78:
d0:55:95:66:8e:68:7c:82:35:05:7a:75:74:7d:d4:
67:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:31:A7:AC:37:36:5B:8E:25:58:27:B5:B5:D6:3F:CA:5B:71:65:13
X509v3 Authority Key Identifier:
keyid:B4:4F:85:39:17:4D:00:BF:A8:BF:DE:49:04:3F:48:5C:3A:58:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tE-FORdNAL-ov95JBD9IXDpYdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/sTGnrDc2W44lWCe1tdY_yltxZRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/f75596-7790-432c-88cd-333e53cfa021/1/tE-FORdNAL-ov95JBD9IXDpYdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.232.0/21
185.100.140.0/22
IPv6:
2a02:b70::/32
Signature Algorithm: sha256WithRSAEncryption
29:8a:ec:20:a5:d8:7a:a1:e9:0e:ae:36:93:ce:fb:b4:ba:a1:
ce:37:40:14:54:ee:5b:14:18:c3:9f:85:02:e1:e3:c7:3f:54:
ae:82:3f:35:2c:59:78:92:07:6c:22:71:8a:ea:e7:9a:ca:d1:
b4:44:2e:b6:25:99:31:c5:3f:0d:03:aa:07:1a:f8:9e:ca:34:
05:fe:1d:31:23:9d:ca:b5:4b:64:d1:bf:07:4f:16:45:5e:99:
9f:6f:79:56:6c:44:03:b4:b3:73:f6:ef:bb:a3:32:25:26:ba:
c7:d3:97:9f:d7:a7:ad:91:97:37:0c:e9:26:ef:26:2a:59:ce:
5c:9d:af:ab:73:14:1d:26:89:0f:7e:80:4c:dd:c1:03:9e:67:
e3:0d:b1:6e:4c:f9:25:bf:3d:6a:73:76:71:98:4b:65:5c:75:
d8:5f:80:8f:fc:a3:f8:bf:c9:4b:6a:48:23:54:56:c9:a4:29:
13:0f:c2:50:29:ec:19:43:55:fe:37:3d:62:bf:3b:af:df:23:
93:4a:5d:f8:99:0b:2a:b4:53:6c:53:b2:df:1b:b4:b4:c7:21:
23:59:23:7d:f1:de:e9:6e:cc:8d:37:5d:81:4d:50:23:04:72:
69:05:2b:cc:ed:2b:ca:1a:d4:9b:9e:f0:4b:f9:e0:41:a4:f2:
b4:5d:c5:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:55 2024 by rpki-client on console-ams.rpki-client.org