Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/czflEqz-cM8dHjNqy6dtUTOwAT4.roa
File: czflEqz-cM8dHjNqy6dtUTOwAT4.roa (raw, json)
Hash identifier: yOjdHGBwNTDuC34hR0v4lAf8KFQUIbroaRKL2iTzv/Q=
Subject key identifier: 73:37:E5:12:AC:FE:70:CF:1D:1E:33:6A:CB:A7:6D:51:33:B0:01:3E
Certificate issuer: /CN=92fb8fa10dff3473e653dbf61c9a86432180a5c7
Certificate serial: 03501C58
Authority key identifier: 92:FB:8F:A1:0D:FF:34:73:E6:53:DB:F6:1C:9A:86:43:21:80:A5:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvuPoQ3_NHPmU9v2HJqGQyGApcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/czflEqz-cM8dHjNqy6dtUTOwAT4.roa
Signing time: Mon 31 Jan 2022 09:32:38 +0000
ROA not before: Mon 31 Jan 2022 09:32:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211331
IP address blocks: 91.220.10.0/24 maxlen: 24
185.119.10.0/24 maxlen: 24
185.119.10.0/23 maxlen: 23
185.119.11.0/24 maxlen: 24
2a10:80c0::/29 maxlen: 29
2a10:80c0::/36 maxlen: 36
2a10:80c0:1000::/36 maxlen: 36
2a10:80c0:1000::/48 maxlen: 48
2a10:80c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55581784 (0x3501c58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92fb8fa10dff3473e653dbf61c9a86432180a5c7
Validity
Not Before: Jan 31 09:32:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7337e512acfe70cf1d1e336acba76d5133b0013e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:89:62:7c:2c:33:52:d1:1b:f5:ab:f8:f4:2e:
2c:c8:7b:2f:53:a3:08:14:49:a5:33:9c:b3:e0:9c:
29:c1:e3:69:d9:1b:b8:f6:1b:15:b4:3d:12:d9:7f:
f6:41:e0:9c:5c:64:05:d7:56:a4:a8:3b:da:ba:ce:
a9:64:ff:96:25:f7:88:e0:1d:90:ae:f5:72:8a:ae:
d3:20:43:fe:bc:17:51:24:54:fa:c8:13:11:46:d8:
19:77:e0:b5:dd:15:40:e6:40:9b:30:53:23:9a:4a:
43:9b:fc:c9:8b:54:b9:66:c7:04:78:36:ea:9d:d1:
a2:85:6b:4e:e2:13:f5:82:8e:3e:0a:b7:41:d9:98:
b5:50:28:e2:5c:6e:30:17:16:76:19:e8:12:1c:1e:
dc:62:04:03:aa:6e:e1:f3:fa:72:17:c9:60:ca:1f:
6a:a8:d3:2c:a1:b9:3f:25:76:63:64:1f:dd:34:be:
9c:ee:86:a2:26:91:dd:6f:7d:5b:14:19:24:ba:83:
0e:9f:b4:3d:f7:59:be:6d:7f:45:99:c5:e3:d1:26:
0a:d9:20:70:07:3d:ed:f7:48:12:34:d1:f4:96:5d:
65:25:c4:4e:f8:d7:cc:ff:30:99:24:6b:fd:46:6f:
bd:96:e0:37:29:4c:45:c6:c1:6e:bb:93:d0:a7:be:
e5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:37:E5:12:AC:FE:70:CF:1D:1E:33:6A:CB:A7:6D:51:33:B0:01:3E
X509v3 Authority Key Identifier:
keyid:92:FB:8F:A1:0D:FF:34:73:E6:53:DB:F6:1C:9A:86:43:21:80:A5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvuPoQ3_NHPmU9v2HJqGQyGApcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/czflEqz-cM8dHjNqy6dtUTOwAT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c64d50-fcdd-4a9f-9047-293f6122a19d/1/kvuPoQ3_NHPmU9v2HJqGQyGApcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.10.0/24
185.119.10.0/23
IPv6:
2a10:80c0::/29
Signature Algorithm: sha256WithRSAEncryption
9e:9e:5e:23:a4:a3:42:cf:6e:a7:03:c1:eb:fd:9a:53:ed:20:
08:2b:e5:e9:04:f5:79:e3:a7:cd:7e:78:d3:83:21:dc:ae:82:
ec:e5:95:b1:36:bc:d0:a7:cb:fb:cc:1e:a0:1a:47:40:c0:10:
88:ab:94:e6:3c:c4:55:60:29:d5:b1:07:7b:45:e7:aa:a2:66:
22:76:82:40:73:ce:15:ca:a5:96:a1:fc:2d:5a:21:bf:0c:f1:
a3:3b:fc:41:4f:e0:91:6a:17:84:a2:7e:f5:42:61:71:d9:e7:
4f:a9:00:2d:14:da:dc:4c:48:85:08:21:af:fc:3e:26:2c:9b:
ab:f3:00:43:99:b6:0b:d2:73:4d:e2:56:94:e3:50:b0:7d:83:
1c:3b:91:4d:42:d0:9c:3a:a3:6c:b2:59:79:9b:e8:e4:2e:e1:
3f:97:21:5f:f9:8d:ce:9e:1d:78:88:6d:08:e6:c7:90:04:4a:
2d:82:50:5a:64:3a:be:f9:db:06:1e:ae:b0:30:2c:27:86:b3:
1e:19:47:f0:3d:b6:12:b6:c3:71:52:a8:11:fe:d1:ed:b5:1e:
6c:f8:1c:30:ae:1a:f1:d4:f6:6d:6e:8e:13:e0:fe:a6:48:4f:
14:45:ac:6e:dd:e6:c5:77:e0:06:aa:e9:b0:c4:ea:05:20:1f:
30:77:f6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:37 2024 by rpki-client on console-ams.rpki-client.org