Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/OivV2a1vNwsDZEMjqxVgJgiYKHM.roa
File: OivV2a1vNwsDZEMjqxVgJgiYKHM.roa (raw, json)
Hash identifier: lqstvVo6FFZGKufRkBg1vc/M4282s6fHjpfNK+6FVpM=
Subject key identifier: 3A:2B:D5:D9:AD:6F:37:0B:03:64:43:23:AB:15:60:26:08:98:28:73
Certificate issuer: /CN=29c2103fd2417c8869145617de94fcc913b085ef
Certificate serial: 0404C56A
Authority key identifier: 29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/OivV2a1vNwsDZEMjqxVgJgiYKHM.roa
Signing time: Sat 01 Jan 2022 07:54:47 +0000
ROA not before: Sat 01 Jan 2022 07:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48504
IP address blocks: 176.53.128.0/22 maxlen: 24
46.247.160.0/19 maxlen: 24
94.247.160.0/21 maxlen: 24
185.12.96.0/22 maxlen: 24
37.26.176.0/21 maxlen: 24
94.143.80.0/21 maxlen: 24
185.50.76.0/22 maxlen: 24
185.48.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67421546 (0x404c56a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c2103fd2417c8869145617de94fcc913b085ef
Validity
Not Before: Jan 1 07:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a2bd5d9ad6f370b03644323ab15602608982873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c2:a8:50:48:e6:37:6d:08:e8:3f:41:f8:17:
75:75:f1:0e:8a:80:7d:55:a9:bb:8a:d0:c7:78:e3:
92:eb:7f:76:ac:d6:a4:21:d2:33:6e:13:76:da:2d:
0c:8c:54:73:13:de:8b:5d:bb:0a:fc:97:73:b1:b4:
e8:d5:e9:4e:bb:37:97:97:64:56:ee:53:9a:14:1d:
42:c6:0d:64:ec:67:6f:47:49:48:be:c2:d0:2c:6b:
fa:f6:c9:91:22:54:c8:40:6a:f8:2f:ef:52:ab:90:
9b:74:4c:79:24:33:1f:eb:7a:71:e1:67:e7:43:7a:
62:11:ae:7b:9a:7a:9a:ec:b0:21:46:d5:42:1d:90:
06:4f:23:b2:49:d7:11:e9:d6:c7:22:7c:ed:a4:75:
72:ff:d6:66:a4:df:3a:ae:6a:94:c3:f2:b4:27:60:
98:91:86:08:e4:95:6f:cc:90:ce:e4:0d:74:ea:51:
c1:52:e8:cc:6c:11:65:37:e0:d4:37:0e:a2:9f:c1:
09:fe:bc:81:41:20:83:8d:99:66:e3:37:c6:ff:56:
1d:fd:32:03:95:05:2a:cf:90:a6:60:22:90:f5:77:
f2:70:4f:07:f0:a8:91:bc:4c:9c:9f:46:f3:e2:aa:
92:5b:d6:3f:29:99:3c:3b:95:f8:0f:bb:80:3a:b4:
51:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2B:D5:D9:AD:6F:37:0B:03:64:43:23:AB:15:60:26:08:98:28:73
X509v3 Authority Key Identifier:
keyid:29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/OivV2a1vNwsDZEMjqxVgJgiYKHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/KcIQP9JBfIhpFFYX3pT8yROwhe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.176.0/21
46.247.160.0/19
94.143.80.0/21
94.247.160.0/21
176.53.128.0/22
185.12.96.0/22
185.48.48.0/22
185.50.76.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:71:ce:1c:ea:c1:5e:53:8e:04:b5:99:65:e1:5c:74:da:22:
e6:6d:7c:d1:bd:dc:22:c3:5b:71:44:45:47:97:7e:87:51:d2:
27:d9:28:bf:e7:d3:29:66:14:56:60:76:93:f3:ab:ea:2a:35:
0b:a9:b3:47:4c:9f:c5:fb:81:d9:c4:30:08:e1:7c:d7:99:89:
47:89:13:6d:e3:83:bd:73:1f:f1:64:28:13:fa:ba:fd:26:19:
66:37:43:b5:86:2e:87:01:08:0e:2a:d2:27:66:09:22:27:75:
1e:2d:29:40:51:9f:a7:85:6d:9e:a3:b9:5a:73:da:b9:77:a3:
f3:01:20:fc:e6:5a:2d:3c:af:09:3e:a0:b0:81:f4:0d:4e:b8:
d2:58:27:01:d5:98:8f:72:24:24:07:b7:6d:63:4f:00:3c:0a:
3d:8b:c7:fa:c6:a0:df:b2:6c:77:0f:fe:1e:0b:f5:98:7c:55:
c7:c9:b8:47:c0:49:22:80:3c:c0:bc:52:89:93:ba:2b:67:3b:
1a:af:07:a3:43:9b:f6:af:d1:b3:a7:55:48:70:06:20:85:3c:
a3:28:76:25:e7:d8:20:0f:96:21:60:82:87:df:1a:7e:71:4f:
44:d6:8c:ca:c8:33:fe:3a:87:c3:48:99:75:da:b7:eb:d6:2e:
fa:b3:03:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org