Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/c0147a-fabf-40a4-9ef5-2214e96e382f/1/xzeFGgxD8W-SWkJLvSfgGv_bjXY.roa
File: xzeFGgxD8W-SWkJLvSfgGv_bjXY.roa (raw, json)
Hash identifier: Dfa53qk1lAOdGMqMwQ1H5qBjxiZWkXeh3MJDTS7p4BE=
Subject key identifier: C7:37:85:1A:0C:43:F1:6F:92:5A:42:4B:BD:27:E0:1A:FF:DB:8D:76
Certificate issuer: /CN=926cc6b46295cbbc1bdf986302d0271b8b7d7af0
Certificate serial: 1A728B55
Authority key identifier: 92:6C:C6:B4:62:95:CB:BC:1B:DF:98:63:02:D0:27:1B:8B:7D:7A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmzGtGKVy7wb35hjAtAnG4t9evA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/c0147a-fabf-40a4-9ef5-2214e96e382f/1/xzeFGgxD8W-SWkJLvSfgGv_bjXY.roa
Signing time: Sat 01 Jan 2022 05:59:50 +0000
ROA not before: Sat 01 Jan 2022 05:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25472
IP address blocks: 79.107.64.0/19 maxlen: 24
109.242.0.0/16 maxlen: 24
176.58.128.0/17 maxlen: 24
81.92.48.0/20 maxlen: 24
79.107.0.0/17 maxlen: 17
79.107.0.0/19 maxlen: 24
79.107.0.0/16 maxlen: 24
37.6.0.0/17 maxlen: 17
37.6.0.0/16 maxlen: 24
79.107.160.0/19 maxlen: 24
79.107.192.0/19 maxlen: 24
109.242.128.0/17 maxlen: 24
62.169.192.0/18 maxlen: 24
46.190.0.0/17 maxlen: 24
84.254.0.0/18 maxlen: 24
79.107.128.0/17 maxlen: 17
80.245.160.0/20 maxlen: 24
37.6.128.0/17 maxlen: 17
91.140.0.0/17 maxlen: 24
91.140.32.0/19 maxlen: 24
185.3.220.0/22 maxlen: 24
2a03:f000::/32 maxlen: 40
2a03:f003:2::/48 maxlen: 48
2a03:f002::/32 maxlen: 32
2a03:f000::/29 maxlen: 48
2a03:f003::/32 maxlen: 32
2a03:f003:300::/40 maxlen: 40
2a03:f003:200::/40 maxlen: 40
2a03:f003:100::/40 maxlen: 40
2a03:f003:1::/48 maxlen: 48
2a03:f003:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443714389 (0x1a728b55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926cc6b46295cbbc1bdf986302d0271b8b7d7af0
Validity
Not Before: Jan 1 05:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c737851a0c43f16f925a424bbd27e01affdb8d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4b:c9:8e:4d:45:16:39:f0:0b:d4:bb:2e:14:
60:62:84:d6:0a:cc:f6:68:08:e4:41:38:cc:d9:32:
13:c4:9d:b2:99:da:61:33:3a:87:59:29:19:a8:16:
84:c2:b1:1d:3d:a0:e6:5e:72:1a:47:cc:f7:6d:46:
50:74:f5:3c:c5:ac:ed:98:77:a4:f5:b1:fb:d6:3e:
bb:7d:b0:40:37:49:b8:c8:b2:7a:74:7b:f0:06:df:
16:f5:d4:34:1b:cb:8f:01:09:00:7d:d9:6a:b4:c4:
b6:33:71:b8:36:86:ba:cb:ea:0e:72:3b:ce:82:cb:
17:a3:74:af:eb:75:d8:91:f7:09:05:bf:39:18:86:
82:37:61:29:d6:e0:cc:ee:18:f1:82:10:3f:e9:4b:
68:03:cb:ad:50:0e:fd:80:ff:1f:96:bf:41:72:08:
bb:cf:a4:fb:73:63:3b:f1:ce:2b:ed:4b:b9:27:e2:
b0:2f:9e:0c:a4:aa:05:e7:cc:d0:b6:70:58:0d:58:
ce:6f:1b:c6:55:5e:37:ad:77:41:64:17:95:3e:7b:
21:80:43:f7:f6:32:b6:82:85:52:4f:f0:73:80:e5:
17:9d:8a:16:87:1e:ec:57:5d:de:08:94:30:da:2b:
26:28:48:3d:4f:9a:2c:69:d1:f7:61:a8:34:1c:4f:
62:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:37:85:1A:0C:43:F1:6F:92:5A:42:4B:BD:27:E0:1A:FF:DB:8D:76
X509v3 Authority Key Identifier:
keyid:92:6C:C6:B4:62:95:CB:BC:1B:DF:98:63:02:D0:27:1B:8B:7D:7A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmzGtGKVy7wb35hjAtAnG4t9evA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0147a-fabf-40a4-9ef5-2214e96e382f/1/xzeFGgxD8W-SWkJLvSfgGv_bjXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0147a-fabf-40a4-9ef5-2214e96e382f/1/kmzGtGKVy7wb35hjAtAnG4t9evA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.6.0.0/16
46.190.0.0/17
62.169.192.0/18
79.107.0.0/16
80.245.160.0/20
81.92.48.0/20
84.254.0.0/18
91.140.0.0/17
109.242.0.0/16
176.58.128.0/17
185.3.220.0/22
IPv6:
2a03:f000::/29
Signature Algorithm: sha256WithRSAEncryption
2a:4b:ad:d4:97:d9:7f:84:0a:33:95:31:e3:33:a0:3e:93:ab:
af:e7:4f:a3:78:00:aa:0c:11:d0:b4:54:44:22:17:ac:2a:bb:
80:fc:75:d1:ea:d1:b1:13:32:5f:7f:2c:8d:29:e8:b3:96:3f:
b5:62:f3:8d:53:f7:c6:8b:85:9d:70:3c:34:4c:82:74:e8:77:
db:49:6a:e4:3a:e8:b2:01:bc:4c:26:7a:ce:09:ec:b6:af:e4:
13:75:97:3e:16:9e:27:6b:41:bb:89:3d:d9:65:64:76:2b:58:
b7:52:1b:7e:33:78:48:2c:53:51:56:ce:a4:ea:70:50:0a:b2:
bd:1e:b5:a5:da:21:df:21:76:ef:c0:69:c9:07:2a:98:a1:6a:
87:5f:ab:8c:86:07:c4:73:92:ad:73:b8:b1:1f:11:0e:4c:57:
74:11:5f:39:cd:2d:1e:bf:e7:50:d4:9b:eb:d9:c3:d0:70:2c:
b5:13:e6:7f:a2:f3:0e:b4:14:7d:88:34:5e:06:d6:e8:21:41:
28:b2:13:f9:e9:74:16:ff:7c:7d:c5:89:2f:a0:1e:d0:2a:f7:
c1:81:b4:ba:a0:3f:dc:be:12:a8:e8:17:d5:64:3e:59:ac:45:
0e:41:e4:b4:b0:8d:72:5d:bf:3f:a7:ab:7b:bd:6b:dc:83:93:
a0:22:9c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:56 2024 by rpki-client on console-fra.rpki-client.org