Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/kJLrk0HudmVMKpszS25AGj4PFe0.roa
File: kJLrk0HudmVMKpszS25AGj4PFe0.roa (raw, json)
Hash identifier: NXht8i0h+DYK8S/zL2a+qCGwz2+YW+Rd6svjluQ4Ydk=
Subject key identifier: 90:92:EB:93:41:EE:76:65:4C:2A:9B:33:4B:6E:40:1A:3E:0F:15:ED
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 075EBED0
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/kJLrk0HudmVMKpszS25AGj4PFe0.roa
Signing time: Mon 31 Jan 2022 18:04:58 +0000
ROA not before: Mon 31 Jan 2022 18:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 195.211.190.0/24 maxlen: 24
45.88.137.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
193.57.43.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
85.209.123.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
85.209.120.0/24 maxlen: 24
193.30.241.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123649744 (0x75ebed0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 31 18:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9092eb9341ee76654c2a9b334b6e401a3e0f15ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fc:84:d4:cf:f0:80:69:21:b3:31:da:da:20:
2a:4a:13:5d:21:dc:08:0f:3b:9d:5f:6d:dd:c3:16:
1f:15:65:80:4c:35:dd:f9:2a:19:1f:fe:bf:97:95:
69:31:31:c4:60:b9:65:1c:e6:2e:a9:8f:29:aa:4d:
de:96:f0:29:4a:1e:b4:d3:70:2a:2a:83:37:41:d1:
f9:61:4f:77:3d:92:67:cf:e6:0e:55:9c:5c:a0:93:
d5:ed:22:f0:6b:f9:a5:97:ed:ed:4f:aa:bf:d9:7c:
bc:77:fc:81:89:2b:3b:db:34:46:f8:3b:b0:bd:ac:
95:66:15:de:6b:bd:4b:fa:53:14:d3:51:f4:04:9a:
cb:e9:cf:d9:db:57:2b:f1:21:ce:24:f2:a9:9a:02:
fc:f4:56:c7:b7:7b:09:a9:38:32:2d:ee:87:df:b8:
e2:d3:65:a8:35:d5:02:24:df:03:a7:40:6f:99:98:
7e:f4:30:8f:48:7f:04:57:c3:9e:fe:bd:9e:c8:94:
92:1f:67:9c:96:9a:fd:41:a4:eb:ba:07:2f:3f:f8:
fb:60:38:3d:b3:5a:5f:65:c3:fd:63:63:6f:de:ec:
8d:8b:d5:1a:67:49:ab:49:6d:41:5b:46:90:32:27:
f5:aa:db:64:e4:0b:96:5f:57:3d:7c:1f:2e:76:bc:
d8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:92:EB:93:41:EE:76:65:4C:2A:9B:33:4B:6E:40:1A:3E:0F:15:ED
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/kJLrk0HudmVMKpszS25AGj4PFe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.29.0/24
45.88.137.0/24
45.144.212.0/23
85.209.120.0/24
85.209.122.0/23
185.43.248.0/23
185.43.251.0/24
185.200.62.0/24
193.30.240.0/22
193.57.41.0/24
193.57.43.0/24
194.242.96.0/22
195.62.24.0/24
195.177.93.0/24
195.177.95.0/24
195.211.190.0/24
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
b0:3e:54:06:d8:79:bf:94:cd:f7:ce:79:ca:67:34:bd:b2:97:
de:57:38:a5:07:dc:0d:cb:0f:34:45:bf:51:83:b8:8f:70:08:
25:36:20:e5:ae:6f:a4:0b:f0:e7:b5:90:8f:f6:6e:7f:fb:27:
d1:5e:e2:f6:f7:9e:bd:20:a4:27:64:0d:4f:e5:ae:51:41:cc:
92:1d:79:ba:e0:bf:6b:34:ef:af:d5:2c:d1:1e:d9:06:87:72:
04:c9:56:6b:22:c3:eb:9f:da:31:0e:5b:ed:f5:32:04:cb:5d:
b3:70:51:d3:9b:85:a8:de:4f:cc:a9:7f:92:b4:74:02:f1:40:
4e:30:5e:db:0f:54:f1:61:aa:15:03:23:aa:11:9d:ef:22:10:
1f:9e:9f:e2:df:e8:21:81:e0:63:82:2f:fe:37:15:9a:6c:32:
1f:ea:21:69:99:04:11:eb:63:4f:51:91:4b:4c:65:02:39:26:
a4:46:5b:13:c8:5f:64:70:f0:bd:29:f6:7a:f6:df:1c:c6:10:
03:36:df:0a:c9:a6:c9:59:2c:ea:63:12:df:2a:61:0d:80:e7:
5b:4a:ae:b0:9c:73:4b:b4:29:76:c4:44:14:8d:f9:05:4e:c5:
fb:92:ea:6d:12:f1:c2:58:d5:5c:30:26:86:8e:57:a8:7c:bd:
61:b6:5e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org