Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/d3oWCFOdb4kAM06iFNxdjQG52Hk.roa
File: d3oWCFOdb4kAM06iFNxdjQG52Hk.roa (raw, json)
Hash identifier: oZBAiGSeRYJQ2RjlJTs/RTGRjENsu46rklPdms0fNdE=
Subject key identifier: 77:7A:16:08:53:9D:6F:89:00:33:4E:A2:14:DC:5D:8D:01:B9:D8:79
Certificate issuer: /CN=41e42d830eca98a533f4372da169c9c792c393b2
Certificate serial: 0183DAB4ADADC43259906EA3148209A2C756
Authority key identifier: 41:E4:2D:83:0E:CA:98:A5:33:F4:37:2D:A1:69:C9:C7:92:C3:93:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/d3oWCFOdb4kAM06iFNxdjQG52Hk.roa
Signing time: Sat 15 Oct 2022 08:13:37 +0000
ROA not before: Sat 15 Oct 2022 08:13:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200548
IP address blocks: 185.159.120.0/22 maxlen: 24
185.159.122.0/24 maxlen: 24
185.159.123.0/24 maxlen: 24
130.0.92.0/22 maxlen: 22
185.189.221.0/24 maxlen: 24
185.189.222.0/24 maxlen: 24
185.189.223.0/24 maxlen: 24
185.189.220.0/24 maxlen: 24
185.189.220.0/22 maxlen: 22
45.87.188.0/22 maxlen: 22
45.87.189.0/24 maxlen: 24
45.87.190.0/24 maxlen: 24
45.87.191.0/24 maxlen: 24
91.230.22.0/24 maxlen: 24
192.76.138.0/24 maxlen: 24
185.174.72.0/22 maxlen: 24
2a0b:f880::/32 maxlen: 32
2a0b:f880::/29 maxlen: 29
2a0b:fb00::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:da:b4:ad:ad:c4:32:59:90:6e:a3:14:82:09:a2:c7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e42d830eca98a533f4372da169c9c792c393b2
Validity
Not Before: Oct 15 08:13:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=777a1608539d6f8900334ea214dc5d8d01b9d879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:48:45:fc:85:a0:af:c9:59:62:7c:10:bf:ff:
4f:22:bf:87:93:13:c1:f3:99:1d:1e:87:59:57:19:
b8:39:2c:18:bc:6f:e2:90:f4:a2:fc:6a:55:14:55:
7b:3c:76:ea:bd:6c:a0:6b:f4:8c:3a:13:90:cc:6b:
ef:a1:0e:17:6d:cc:21:df:ff:68:17:3b:7b:cd:5d:
10:ce:b5:9c:5e:62:4d:88:4a:cd:e2:63:22:9f:99:
b5:e0:68:a1:8d:99:9a:6e:12:2e:22:ff:0b:0b:2f:
e7:e1:2f:6c:d6:00:7d:07:68:7b:bb:ec:d5:97:03:
cd:58:81:e1:56:b0:8c:8f:f3:49:e3:64:ab:a9:5c:
9e:9e:41:93:77:05:12:b2:9b:95:4e:3a:87:e8:d4:
c3:20:69:80:74:d0:d4:f7:2c:b8:16:3d:72:af:c4:
6f:3e:c4:55:52:e7:32:ad:75:86:0b:47:c1:d5:c7:
cd:71:3e:ed:14:83:72:f8:cd:c0:90:a4:1a:0f:f5:
47:f9:98:e6:74:ef:a3:dd:c8:df:57:85:cb:4c:6c:
a2:11:7b:69:c3:63:ea:ef:13:a9:63:fd:39:1d:6d:
9d:8b:e2:a3:df:fe:b1:40:99:0f:3e:17:2a:31:42:
a1:37:5c:20:59:a4:7f:04:ce:9d:f7:63:a9:aa:a9:
f2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7A:16:08:53:9D:6F:89:00:33:4E:A2:14:DC:5D:8D:01:B9:D8:79
X509v3 Authority Key Identifier:
keyid:41:E4:2D:83:0E:CA:98:A5:33:F4:37:2D:A1:69:C9:C7:92:C3:93:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeQtgw7KmKUz9DctoWnJx5LDk7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/d3oWCFOdb4kAM06iFNxdjQG52Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/4956df-91dc-4490-8333-1ad61ede0a4a/1/QeQtgw7KmKUz9DctoWnJx5LDk7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.188.0/22
91.230.22.0/24
130.0.92.0/22
185.159.120.0/22
185.174.72.0/22
185.189.220.0/22
192.76.138.0/24
IPv6:
2a0b:f880::/29
2a0b:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
65:60:e5:d7:2f:2b:19:d9:52:4f:75:91:47:6a:eb:59:34:e7:
e0:14:82:ff:cc:f1:f6:88:84:82:1f:38:60:a2:4d:f0:47:4f:
40:55:e5:c4:05:6f:fc:a6:5a:df:5b:59:8f:2b:de:19:f6:d7:
40:af:da:0f:89:89:84:dc:61:6d:df:d5:82:70:53:ac:43:87:
3e:92:70:d7:68:82:fd:4b:7e:dd:25:84:46:71:8c:a6:97:a2:
70:67:8a:b9:02:a8:66:75:bc:b8:23:91:0d:12:fa:23:69:a8:
73:f6:06:3d:12:38:69:17:f2:fb:ef:a4:9d:62:5e:f1:15:4a:
e7:64:68:2e:22:9c:1e:ce:0f:18:6d:a8:30:9d:04:0f:11:51:
80:6c:02:1e:23:ba:c7:92:6f:98:49:3f:a1:c6:76:e2:89:9f:
e5:74:bc:0b:01:00:53:e7:d9:27:93:15:d8:b5:46:67:0d:9f:
ce:1d:5c:c3:73:21:60:88:55:ad:31:07:ae:8d:fc:23:46:96:
d5:ce:3f:34:f8:5a:df:01:17:8b:3f:aa:27:74:af:a6:28:08:
1e:94:cc:7a:47:ec:8e:2f:9c:99:29:31:c4:81:5b:73:4a:ea:
62:93:9f:bb:bd:1a:a0:32:d7:f1:60:2a:63:1c:47:c2:9a:b4:
94:b7:2f:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:33 2024 by rpki-client on console-fra.rpki-client.org