Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/EhqmGIN0F05PoQw15HuB0b5-rdE.roa
File: EhqmGIN0F05PoQw15HuB0b5-rdE.roa (raw, json)
Hash identifier: sw2GOsDGDukmsv9hNk1hTyhbxjGUqzBSt0PZ301/8o8=
Subject key identifier: 12:1A:A6:18:83:74:17:4E:4F:A1:0C:35:E4:7B:81:D1:BE:7E:AD:D1
Certificate issuer: /CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Certificate serial: 0183D5B521D65E76F862748491ADF17137C5
Authority key identifier: 94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/EhqmGIN0F05PoQw15HuB0b5-rdE.roa
Signing time: Fri 14 Oct 2022 08:56:01 +0000
ROA not before: Fri 14 Oct 2022 08:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61098
IP address blocks: 91.92.227.0/24 maxlen: 24
91.92.116.0/23 maxlen: 24
91.92.142.0/23 maxlen: 24
91.92.140.0/23 maxlen: 24
194.182.176.0/22 maxlen: 24
194.182.180.0/22 maxlen: 24
85.217.186.0/23 maxlen: 24
85.217.184.0/23 maxlen: 24
2a04:c47::/32 maxlen: 48
2a07:6cc1::/32 maxlen: 48
2a04:c42:f12::/48 maxlen: 48
2a04:c42:f11::/48 maxlen: 48
2a04:c41::/32 maxlen: 48
2a07:6cc0:50::/48 maxlen: 48
2a07:6cc0:60::/48 maxlen: 48
2a04:c47:f12::/48 maxlen: 48
2a04:c42::/32 maxlen: 48
2a04:c47:f11::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d5:b5:21:d6:5e:76:f8:62:74:84:91:ad:f1:71:37:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Validity
Not Before: Oct 14 08:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=121aa6188374174e4fa10c35e47b81d1be7eadd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:dd:9c:f8:69:06:75:81:5d:39:2d:e8:11:56:
81:d9:db:18:18:43:c2:d8:96:13:ba:73:6c:41:65:
5d:6b:4e:b4:83:19:3f:75:e9:95:34:5d:83:4f:72:
6c:dc:44:75:80:b7:32:b5:dd:70:df:bc:e9:52:88:
5b:eb:5f:48:56:df:41:16:da:f8:35:99:29:12:61:
6e:28:18:b6:07:79:68:ab:0d:06:cc:84:26:e0:50:
d2:95:91:09:0d:d5:a2:b4:0d:0c:bc:e5:96:de:7b:
2c:e9:d5:bf:a3:97:c9:fa:db:8a:7f:6c:71:24:e3:
f2:b8:74:e8:66:da:bf:a5:92:53:4d:3f:e9:c2:04:
a1:24:46:98:8c:eb:8f:7d:14:51:60:df:46:27:2b:
49:60:1d:bf:c1:9c:23:52:de:5e:17:12:19:82:c1:
dd:30:d1:af:bc:1e:b9:2f:59:e7:6c:9d:a2:c3:e8:
53:42:23:6a:fb:2e:98:8e:25:76:70:84:de:78:9f:
d5:df:3f:4f:5a:a7:3d:72:9d:a6:17:a6:61:a9:34:
1d:05:7e:6b:ae:5c:2f:c2:6e:e0:1b:f7:59:c4:0b:
a9:be:4c:c3:ab:c0:04:98:0d:14:93:62:8d:23:2f:
b5:d6:41:d4:92:18:22:9d:70:9b:96:b8:ba:88:95:
54:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1A:A6:18:83:74:17:4E:4F:A1:0C:35:E4:7B:81:D1:BE:7E:AD:D1
X509v3 Authority Key Identifier:
keyid:94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/EhqmGIN0F05PoQw15HuB0b5-rdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.184.0/22
91.92.116.0/23
91.92.140.0/22
91.92.227.0/24
194.182.176.0/21
IPv6:
2a04:c41::-2a04:c42:ffff:ffff:ffff:ffff:ffff:ffff
2a04:c47::/32
2a07:6cc0:50::/48
2a07:6cc0:60::/48
2a07:6cc1::/32
Signature Algorithm: sha256WithRSAEncryption
72:b6:90:10:9c:f7:ec:b0:5e:69:ad:cc:e5:54:bf:74:c1:89:
f8:4a:5f:16:9b:2c:62:b4:e2:dd:8e:5d:ea:a0:7f:d5:ff:50:
0d:5a:58:71:95:7e:a3:41:5c:37:7d:3f:d6:c6:ff:aa:02:ae:
52:c7:08:10:c0:09:7f:8c:31:d0:d8:0b:e8:ff:a1:3c:44:a3:
e8:3a:7d:fa:8a:59:47:64:c8:f9:7d:a0:a1:5d:f9:fb:39:52:
6e:ea:c3:e4:c5:58:78:c3:d8:d5:85:a6:25:c7:0c:ad:4b:af:
7a:ea:24:d0:94:ab:fa:8a:12:2d:0b:9c:60:21:af:4f:86:42:
03:f7:67:37:cf:64:e4:a2:bb:07:38:74:8c:62:f6:b6:48:6a:
ff:02:12:99:60:f5:d7:88:a7:6a:e3:d3:eb:50:35:54:ac:41:
a9:16:20:9a:55:ae:37:d6:2e:0f:be:37:6c:4f:c2:76:5c:3d:
7c:67:89:e0:db:18:6f:68:6e:b8:a2:6c:e5:10:d9:15:80:39:
7c:1b:77:ea:4a:c4:b3:77:bf:c8:17:9a:8e:ff:c2:d1:47:a5:
2f:89:e6:53:bd:94:ba:9f:8f:9f:9e:79:e6:c7:ce:07:c4:9b:
6c:23:91:8c:71:00:a9:8e:aa:6a:d4:b9:76:b0:93:c1:02:cf:
b5:0b:ca:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:02 2024 by rpki-client on console-fra.rpki-client.org