Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/tQpSLtyDnvF3OozJLBfMn94yJCQ.roa
File: tQpSLtyDnvF3OozJLBfMn94yJCQ.roa (raw, json)
Hash identifier: LIrBewNVHwWjr4lMm3KXEwJeKBR9ukDLwmBr2Y3Fq6I=
Subject key identifier: B5:0A:52:2E:DC:83:9E:F1:77:3A:8C:C9:2C:17:CC:9F:DE:32:24:24
Certificate issuer: /CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Certificate serial: 018336F85CF9C407C000E8E3A4718660DF08
Authority key identifier: C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/tQpSLtyDnvF3OozJLBfMn94yJCQ.roa
Signing time: Tue 13 Sep 2022 13:09:49 +0000
ROA not before: Tue 13 Sep 2022 13:09:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202632
IP address blocks: 213.91.64.0/21 maxlen: 21
213.91.64.0/22 maxlen: 22
213.91.68.0/22 maxlen: 22
185.12.168.0/22 maxlen: 22
185.210.180.0/22 maxlen: 22
185.210.181.0/24 maxlen: 24
31.47.0.0/19 maxlen: 19
31.47.4.0/23 maxlen: 23
31.47.0.0/24 maxlen: 24
31.47.9.0/24 maxlen: 24
31.47.8.0/24 maxlen: 24
31.47.10.0/24 maxlen: 24
31.47.16.0/20 maxlen: 20
31.47.14.0/23 maxlen: 23
217.71.48.0/24 maxlen: 24
217.71.56.0/21 maxlen: 21
185.173.28.0/22 maxlen: 22
213.91.112.0/20 maxlen: 20
213.91.112.0/21 maxlen: 21
213.91.124.0/24 maxlen: 24
213.91.125.0/24 maxlen: 24
213.91.127.0/24 maxlen: 24
213.91.126.0/24 maxlen: 24
2a03:9240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:f8:5c:f9:c4:07:c0:00:e8:e3:a4:71:86:60:df:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Validity
Not Before: Sep 13 13:09:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b50a522edc839ef1773a8cc92c17cc9fde322424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dd:32:1e:94:0e:53:ec:aa:48:08:48:21:b6:
34:a7:ab:64:45:1f:23:8c:2a:6a:5d:6d:1d:22:22:
91:42:19:d5:79:54:b6:f8:6a:c4:71:2c:16:6c:74:
42:d8:02:7c:2c:ae:5d:2f:39:7d:ec:53:51:4a:be:
8b:dc:e1:e1:c9:f8:ec:a4:c1:5d:3a:63:e8:f4:83:
dc:aa:d8:7f:af:96:5c:93:b7:c0:3c:fb:7a:5e:85:
77:d8:89:ad:35:b7:d5:da:5c:b9:d3:fb:d5:15:f5:
2f:0f:d7:83:a4:04:8e:99:24:fd:df:45:5b:c2:d6:
6a:20:80:75:0a:22:1c:5f:73:09:ea:f3:de:12:32:
f8:b6:aa:0e:c2:b3:d6:59:d8:34:00:4e:7c:57:ae:
f6:81:b5:d7:bf:3d:d0:13:d8:a1:e0:46:b7:6a:cd:
cb:8e:8a:15:e1:a4:91:35:15:84:1d:5b:fd:3a:c8:
80:5e:8a:89:0b:cf:ff:bd:02:1c:13:a6:99:da:00:
c4:d2:e6:3b:2d:1e:a6:62:1e:98:12:58:31:c2:9d:
04:cc:f9:cc:2a:fa:1c:13:5e:03:eb:cc:b7:03:47:
8b:7f:53:f9:8f:ae:f1:2f:71:cc:1b:76:41:32:a5:
d8:90:57:ee:ae:1e:19:b8:e8:20:03:e9:2e:03:e9:
80:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0A:52:2E:DC:83:9E:F1:77:3A:8C:C9:2C:17:CC:9F:DE:32:24:24
X509v3 Authority Key Identifier:
keyid:C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/tQpSLtyDnvF3OozJLBfMn94yJCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/x6TS9okT6s5sn1CSvcfdIPV09Dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.47.0.0/19
185.12.168.0/22
185.173.28.0/22
185.210.180.0/22
213.91.64.0/21
213.91.112.0/20
217.71.48.0/24
217.71.56.0/21
IPv6:
2a03:9240::/32
Signature Algorithm: sha256WithRSAEncryption
65:fc:86:be:63:ba:c9:4d:5a:2e:d8:33:20:79:d4:70:38:ae:
0f:dd:d6:cf:b5:e1:ef:1e:0a:7e:0f:97:85:b7:fb:08:ff:c6:
7c:77:ea:2d:75:72:c1:34:48:52:1b:83:32:06:ce:d7:ec:5d:
a9:82:2e:e1:b9:45:52:e9:9a:a8:9d:cc:bd:e3:25:60:91:c2:
17:0e:28:73:33:6e:bc:4c:12:c5:79:99:cc:41:dc:65:1d:db:
15:c4:6b:9b:4c:9c:a9:4e:1a:22:ca:84:56:92:bc:54:40:7a:
44:53:05:06:51:84:f7:78:58:2b:e0:19:55:f1:f8:43:fa:f5:
18:42:32:d9:73:e9:8a:e9:c1:95:01:c7:c8:35:d7:db:ab:5f:
89:cf:7c:00:80:86:05:50:5d:a8:39:d1:59:1b:04:79:e7:87:
92:89:b8:c2:d0:cc:9b:b9:f9:cb:78:3c:96:f8:08:d3:41:1b:
7e:d5:e2:06:ed:2e:bf:6e:5e:f7:5d:59:22:8f:5e:3c:55:8d:
c5:13:c0:4a:8d:19:4a:94:c2:cb:32:8e:2a:cc:e1:dc:92:7d:
68:e1:7a:f4:3b:7f:0f:d2:2f:ee:ab:dc:c6:e0:b0:44:88:e9:
ef:e1:44:5f:2f:04:1d:43:46:b1:41:47:a3:ec:63:f2:ef:23:
bc:e2:1b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:17 2024 by rpki-client on console-ams.rpki-client.org