Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/b-OWoCXtUu3qv1tL1FFOd3V74zw.roa
File: b-OWoCXtUu3qv1tL1FFOd3V74zw.roa (raw, json)
Hash identifier: 3PbYUsumb2SZvB1g4wWd6VWdydC5v+YQzkwK4K0MaP8=
Subject key identifier: 6F:E3:96:A0:25:ED:52:ED:EA:BF:5B:4B:D4:51:4E:77:75:7B:E3:3C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0934937C
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/b-OWoCXtUu3qv1tL1FFOd3V74zw.roa
Signing time: Sat 01 Jan 2022 06:00:25 +0000
ROA not before: Sat 01 Jan 2022 06:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26636
IP address blocks: 212.87.212.0/22 maxlen: 22
2.58.196.0/22 maxlen: 22
2.58.200.0/22 maxlen: 22
37.221.92.0/22 maxlen: 22
5.180.252.0/22 maxlen: 22
2.56.246.0/23 maxlen: 23
147.78.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154440572 (0x934937c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fe396a025ed52edeabf5b4bd4514e77757be33c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8c:ef:fe:16:c4:68:c9:9c:82:22:ff:48:7e:
74:84:bd:bb:8d:ee:5f:f1:11:e0:87:df:db:45:93:
81:30:e0:a9:aa:eb:da:05:88:c5:d9:88:8f:c1:32:
e1:ac:06:5d:f5:48:d4:c4:67:ea:6c:c8:f1:99:d4:
98:6f:c7:2c:bf:5c:1f:67:6c:53:38:4b:72:08:b1:
bf:52:1a:53:84:a0:7d:a2:ed:f3:23:ec:ae:0f:4f:
a8:de:b1:5d:a0:8a:64:e2:89:cf:26:98:30:52:24:
dd:3e:3b:79:44:84:83:49:77:a6:a5:8f:0e:71:fe:
c8:9f:11:b8:94:e6:20:6b:b0:d6:47:af:59:3a:9c:
77:9b:2e:95:8b:9c:7f:1e:3f:74:92:40:53:b3:0c:
ff:20:49:20:a1:f3:78:06:37:24:39:b8:e0:32:69:
ce:fa:04:97:57:4d:aa:de:15:0b:db:fe:dd:10:96:
80:16:a8:94:1a:fe:6c:cd:79:d9:e9:e7:10:6e:ab:
ab:c2:6b:5b:50:83:bd:4f:86:f0:8f:34:ff:e5:10:
9d:b4:4e:c4:02:98:1c:a5:c3:8a:c2:79:5d:38:bc:
1d:db:c0:a1:4d:12:9e:0f:b4:36:6e:3c:b2:3f:7d:
2f:7c:ef:03:a0:a5:82:62:78:14:12:7c:6b:06:7e:
b9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E3:96:A0:25:ED:52:ED:EA:BF:5B:4B:D4:51:4E:77:75:7B:E3:3C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/b-OWoCXtUu3qv1tL1FFOd3V74zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.246.0/23
2.58.196.0-2.58.203.255
5.180.252.0/22
37.221.92.0/22
147.78.124.0/22
212.87.212.0/22
Signature Algorithm: sha256WithRSAEncryption
58:0b:7a:cb:f9:f8:7d:84:99:c5:43:d3:a6:5c:06:77:0a:50:
30:cd:f9:3a:43:8e:c8:35:40:e2:ce:55:2d:f8:2d:99:df:4c:
a9:c4:45:02:df:15:30:43:6c:17:87:1d:2e:fa:42:e2:d0:8a:
6b:46:60:b3:b0:7f:7f:80:ac:37:a7:c3:aa:d4:5d:06:d4:7e:
27:62:2c:75:d3:aa:44:d4:de:28:1a:71:9f:49:82:18:da:6f:
e1:20:cf:fd:01:d2:78:0e:2d:20:79:04:36:f4:4b:ed:aa:54:
85:1f:c4:c8:a1:8a:c8:55:7e:22:a0:f7:56:2c:9c:33:50:a3:
49:d6:87:09:f4:90:21:62:60:6d:66:04:23:e4:c7:09:4c:1e:
77:20:16:7c:1d:92:39:5c:50:95:0c:15:a4:41:8d:24:22:e8:
bd:17:f7:14:e4:f1:b3:da:3e:60:df:1e:f6:03:32:98:32:89:
36:7c:71:4d:97:83:58:3c:0b:2f:c9:fb:91:f3:8e:73:24:15:
8d:51:e2:60:04:36:58:ae:dc:7b:07:93:db:35:40:ca:a3:02:
65:88:65:e9:31:0d:69:33:96:46:e0:02:70:ba:56:c9:85:44:
18:0b:6f:19:85:1f:4f:6a:de:1c:22:2a:7b:e2:c4:f3:64:10:
c8:39:b0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org