Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/5Btw35youqhoulR4dC_SDEy8Zc0.roa
File: 5Btw35youqhoulR4dC_SDEy8Zc0.roa (raw, json)
Hash identifier: fT3AiZ+l0sa6fDUSj886f8kYpkvTMu7SwTJ/wuHYr+o=
Subject key identifier: E4:1B:70:DF:9C:A8:BA:A8:68:BA:54:78:74:2F:D2:0C:4C:BC:65:CD
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 36911306
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/5Btw35youqhoulR4dC_SDEy8Zc0.roa
Signing time: Sat 01 Jan 2022 01:01:05 +0000
ROA not before: Sat 01 Jan 2022 01:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28944
IP address blocks: 147.185.246.0/23 maxlen: 24
147.185.254.0/23 maxlen: 24
80.231.248.0/24 maxlen: 24
195.219.123.0/24 maxlen: 24
80.231.174.0/24 maxlen: 24
2a01:3e7::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915477254 (0x36911306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e41b70df9ca8baa868ba5478742fd20c4cbc65cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9c:ad:e8:d8:99:03:fe:e4:70:0f:dc:f5:86:
7c:d4:21:fd:25:91:5f:37:7f:1a:41:1d:a7:b8:94:
97:ae:77:47:bf:85:3b:1f:d5:bc:44:8c:c2:21:f9:
62:66:bd:19:b2:76:07:ed:13:bc:a2:c8:fd:d2:1f:
86:05:56:13:9e:5b:eb:41:58:de:4c:00:f7:36:1c:
f2:d6:19:13:c3:e9:5d:8e:9b:59:33:01:f2:c4:7c:
e1:6e:56:58:e0:1a:bc:6e:83:80:44:39:00:ef:12:
0f:e2:30:38:84:c6:dc:68:2c:1a:61:a6:fe:e1:ca:
cf:7d:9c:25:ba:00:a7:4e:b0:a1:74:0a:3c:a8:06:
bd:04:2e:d8:ed:18:37:ed:51:50:bd:72:b8:d7:29:
b2:d7:85:1c:5b:00:4b:7c:c5:89:68:04:00:46:f3:
c3:6f:81:b0:cb:5f:d3:f7:08:5d:7c:15:ad:85:18:
b7:4d:96:83:c5:ef:5e:54:0d:43:bf:3e:7a:8a:5a:
d8:94:90:d9:a0:55:63:07:1c:01:63:03:7d:c5:97:
8b:f1:39:86:5c:f1:b1:44:bc:21:27:5e:fa:fb:87:
63:22:e2:75:56:c8:c5:a6:01:eb:6f:0d:38:86:ba:
74:73:f8:ed:3d:97:90:a9:bc:01:01:e4:bb:4f:06:
90:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1B:70:DF:9C:A8:BA:A8:68:BA:54:78:74:2F:D2:0C:4C:BC:65:CD
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/5Btw35youqhoulR4dC_SDEy8Zc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.174.0/24
80.231.248.0/24
147.185.246.0/23
147.185.254.0/23
195.219.123.0/24
IPv6:
2a01:3e7::/32
Signature Algorithm: sha256WithRSAEncryption
98:fb:9c:a8:3c:89:e9:fc:d4:72:5d:4c:4b:80:75:c5:fd:06:
86:ff:f5:12:4e:50:b3:ee:f4:be:8f:33:06:34:30:02:ef:62:
c6:5f:6c:d2:36:38:a7:9c:8d:b4:c4:59:b2:79:16:d7:e2:bf:
dd:98:d9:27:df:6f:6e:28:5b:da:69:c7:19:75:3e:ae:95:ed:
12:52:fc:e4:4e:32:5b:76:fe:77:24:af:ac:b9:88:d0:75:f1:
d7:bc:2f:43:8f:a5:55:a7:e2:ac:18:df:73:e3:98:8b:96:a1:
b7:bd:50:34:6a:94:51:4c:9a:fc:47:82:f8:2e:a5:25:8b:8b:
9c:46:55:42:a2:86:c9:08:de:fb:29:71:06:8f:ef:b5:8d:e5:
ec:c3:5e:b0:21:40:d4:cb:04:99:8b:cf:2d:59:60:7b:57:09:
a6:0e:80:6d:61:d4:47:3d:3d:a7:c5:42:87:ea:c5:b5:02:26:
3f:b7:6b:56:5f:de:7b:5b:42:1d:15:79:4c:37:39:96:8a:b9:
2c:02:5e:1e:a2:15:ee:66:aa:5c:79:74:ab:b3:d2:31:82:70:
64:f7:3a:2b:f0:d1:d3:a6:9c:0a:fc:85:a8:17:ee:76:30:e6:
bc:84:9a:c3:6a:10:b7:83:95:c1:9b:51:45:f5:f4:3a:ca:7b:
18:9f:fe:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org