Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/3qyi1Lvukxn5FtoBk_L-dX50MLA.roa
File: 3qyi1Lvukxn5FtoBk_L-dX50MLA.roa (raw, json)
Hash identifier: on4ZV/SYTmyCxPSdqVLfOuBJ/yQI8p6xkJxAKQ+2isU=
Subject key identifier: DE:AC:A2:D4:BB:EE:93:19:F9:16:DA:01:93:F2:FE:75:7E:74:30:B0
Certificate issuer: /CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Certificate serial: 182446DE
Authority key identifier: 70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/3qyi1Lvukxn5FtoBk_L-dX50MLA.roa
Signing time: Sat 01 Jan 2022 11:54:39 +0000
ROA not before: Sat 01 Jan 2022 11:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50358
IP address blocks: 195.191.50.0/23 maxlen: 24
91.241.88.0/22 maxlen: 24
2001:67c:26a0::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405030622 (0x182446de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Validity
Not Before: Jan 1 11:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=deaca2d4bbee9319f916da0193f2fe757e7430b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:ef:5f:73:f9:28:bd:ea:4f:b4:b8:30:ee:
79:f5:ef:2e:9d:44:3c:44:f6:e6:eb:44:f3:5e:3d:
8a:bb:e0:e5:08:ed:04:ce:68:2d:59:72:55:7b:49:
ae:1a:82:26:53:04:9c:63:88:0b:be:87:cb:34:5c:
89:cd:cc:f6:3c:79:fc:ae:36:4a:6e:77:d1:9e:ac:
63:a8:9e:9a:14:91:da:69:57:89:32:8d:ba:4f:21:
22:1a:b3:9c:a2:72:b7:fe:ed:09:f9:58:21:ff:8f:
c8:47:53:28:8e:be:5a:d0:88:7d:7f:b2:07:37:8a:
73:91:81:c5:1a:70:71:77:16:b2:4f:0c:ce:96:85:
08:1e:1b:58:21:d3:ff:61:39:82:49:88:f5:a3:4c:
20:af:13:34:f3:cc:a2:69:b6:8d:a7:a5:d6:e5:69:
13:24:8a:7b:78:14:41:a7:dd:ab:7b:b0:37:1f:9c:
74:c1:fa:f7:82:59:69:63:99:4c:8d:1a:ac:ae:5e:
99:72:b6:75:41:6a:b1:98:2c:02:bf:13:e9:09:f1:
23:2e:f4:70:ec:3c:46:ba:33:78:07:03:af:16:4c:
66:8b:01:4d:00:08:78:1f:c8:92:7c:55:7c:65:1f:
60:ca:8d:88:db:27:7a:80:0f:0f:04:c6:bf:e7:f4:
b8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:AC:A2:D4:BB:EE:93:19:F9:16:DA:01:93:F2:FE:75:7E:74:30:B0
X509v3 Authority Key Identifier:
keyid:70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/3qyi1Lvukxn5FtoBk_L-dX50MLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.88.0/22
195.191.50.0/23
IPv6:
2001:67c:26a0::/48
Signature Algorithm: sha256WithRSAEncryption
97:9f:6a:9a:0a:32:d0:b9:69:ed:2c:e7:01:88:88:96:0f:72:
31:62:56:23:f3:84:22:be:35:ae:8a:d7:5b:71:ac:7f:32:83:
22:28:b2:9c:9a:7f:4d:95:96:b4:d2:6e:f3:da:29:f6:08:5d:
55:84:7c:20:bc:9a:79:d6:ba:ca:4a:8f:94:2a:b5:90:8c:e0:
93:28:16:08:4a:38:1d:45:77:2c:37:b3:ea:d3:3e:ee:c1:72:
66:cd:68:75:ae:3b:08:71:c7:a8:12:85:4f:03:bf:d8:8c:04:
e5:9c:f2:b6:13:a1:00:0c:4f:1a:53:12:04:33:b4:7e:ba:b8:
c9:e0:ec:52:90:15:4f:71:7f:41:18:2e:e7:71:ab:91:de:d0:
b0:62:eb:7a:a1:0f:00:1c:ab:e7:4f:af:50:4a:64:f0:f5:4b:
21:74:f6:81:af:50:98:7e:5d:67:68:a6:01:33:e6:b3:5e:5d:
73:1b:d8:6b:5f:eb:c8:93:fd:cc:94:20:a9:d7:66:0d:5e:86:
58:f3:50:2d:b2:b8:48:9c:60:a3:b1:ec:13:87:68:71:98:d8:
34:da:33:1e:9c:1a:1d:7b:50:17:e5:1d:82:94:93:54:6e:1f:
83:da:6c:21:1c:c3:f0:0b:67:bd:7b:59:9a:a8:6f:70:9e:f2:
3a:3d:0e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:56 2024 by rpki-client on console-ams.rpki-client.org