Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/1-p_DSDsyXTLSv6J9v1a1A2ASlZM.roa
File: 1-p_DSDsyXTLSv6J9v1a1A2ASlZM.roa (raw, json)
Hash identifier: TS1+NE+2x3b8zuhue+pEe5GhhH3WCQUpfOnGE8psdZc=
Subject key identifier: FA:9F:C3:48:3B:32:5D:32:D2:BF:A2:7D:BF:56:B5:03:60:12:95:93
Certificate issuer: /CN=f7aa039b886b226578bdb6a42781bf59044bb138
Certificate serial: 377E5ED6
Authority key identifier: F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/1-p_DSDsyXTLSv6J9v1a1A2ASlZM.roa
Signing time: Sat 01 Jan 2022 10:04:37 +0000
ROA not before: Sat 01 Jan 2022 10:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24739
IP address blocks: 84.242.4.0/24 maxlen: 24
185.7.147.0/24 maxlen: 24
185.7.146.0/24 maxlen: 24
81.24.112.0/20 maxlen: 20
62.181.33.0/24 maxlen: 24
62.181.40.0/22 maxlen: 24
62.181.40.0/24 maxlen: 24
62.181.45.0/24 maxlen: 24
62.181.52.0/24 maxlen: 24
77.232.52.0/22 maxlen: 22
93.174.240.0/21 maxlen: 21
81.23.96.0/19 maxlen: 19
77.232.56.0/21 maxlen: 21
213.208.185.0/24 maxlen: 25
37.143.16.0/20 maxlen: 20
77.232.50.0/23 maxlen: 23
46.252.240.0/20 maxlen: 20
84.47.137.0/24 maxlen: 25
46.252.254.0/24 maxlen: 24
79.99.104.0/21 maxlen: 21
79.99.104.0/24 maxlen: 24
185.58.248.0/24 maxlen: 24
185.124.188.0/22 maxlen: 25
213.135.93.0/24 maxlen: 25
46.228.0.0/20 maxlen: 20
176.32.176.0/20 maxlen: 20
217.197.224.0/20 maxlen: 20
212.59.112.0/22 maxlen: 22
213.135.68.0/24 maxlen: 25
213.135.78.0/24 maxlen: 25
213.135.75.0/24 maxlen: 25
213.135.76.0/24 maxlen: 25
178.238.16.0/20 maxlen: 20
84.47.188.0/24 maxlen: 25
2a00:1020::/32 maxlen: 32
2a00:1020:c::/48 maxlen: 48
2a00:1020:7::/48 maxlen: 48
2a00:1020:b::/48 maxlen: 48
2a00:1020:d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931028694 (0x377e5ed6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7aa039b886b226578bdb6a42781bf59044bb138
Validity
Not Before: Jan 1 10:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa9fc3483b325d32d2bfa27dbf56b50360129593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c9:86:e6:22:3e:22:91:fc:37:df:f2:83:87:
99:a6:11:be:c6:5f:e9:9f:ed:ca:a1:da:38:71:e3:
52:92:0c:d9:37:68:40:5b:ac:19:43:52:70:15:18:
88:b2:2c:de:da:dd:bb:e6:a6:a4:70:b6:f3:e2:92:
ed:96:08:54:3f:1b:f8:43:42:92:45:d2:b0:b6:cd:
d0:dd:d6:2d:e3:62:76:e8:6b:57:ed:6b:06:44:d2:
57:10:d1:22:d4:f0:53:91:f4:7c:c7:ea:b1:4e:e6:
68:b5:c3:5b:db:16:d7:75:ee:a3:9e:ff:22:99:11:
87:61:82:ef:f7:50:05:79:79:6d:06:08:8b:8e:38:
f5:47:5b:c9:38:4b:70:2b:98:f3:13:69:c4:65:0d:
54:58:6f:f0:10:b3:1e:40:d7:b7:37:ed:40:38:5e:
f3:55:02:fa:0f:7e:96:e9:e3:05:41:fe:6d:8a:37:
90:ae:56:f9:f7:cb:9b:a7:87:f0:8c:28:10:c6:be:
9e:c3:14:97:6b:3e:c1:e4:2c:77:32:56:a5:36:20:
92:9a:40:cc:83:f5:a3:08:13:62:16:25:af:7f:61:
a0:d5:8d:21:4e:26:97:8a:18:3e:02:83:4c:a4:21:
32:9c:09:43:57:1b:16:c4:90:54:c0:d2:dc:7c:4d:
b3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:9F:C3:48:3B:32:5D:32:D2:BF:A2:7D:BF:56:B5:03:60:12:95:93
X509v3 Authority Key Identifier:
keyid:F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/1-p_DSDsyXTLSv6J9v1a1A2ASlZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.16.0/20
46.228.0.0/20
46.252.240.0/20
62.181.33.0/24
62.181.40.0/22
62.181.45.0/24
62.181.52.0/24
77.232.50.0-77.232.63.255
79.99.104.0/21
81.23.96.0/19
81.24.112.0/20
84.47.137.0/24
84.47.188.0/24
84.242.4.0/24
93.174.240.0/21
176.32.176.0/20
178.238.16.0/20
185.7.146.0/23
185.58.248.0/24
185.124.188.0/22
212.59.112.0/22
213.135.68.0/24
213.135.75.0-213.135.76.255
213.135.78.0/24
213.135.93.0/24
213.208.185.0/24
217.197.224.0/20
IPv6:
2a00:1020::/32
Signature Algorithm: sha256WithRSAEncryption
59:b1:dc:dd:20:a2:62:30:f2:e9:a2:99:90:88:e9:1b:b1:4e:
59:f1:9b:b1:91:23:d4:13:ed:f1:c2:b1:b3:2b:ad:8c:83:0a:
39:82:6a:0a:41:27:76:99:42:04:de:2e:17:67:cb:7a:e9:2f:
d4:ee:09:9c:96:10:52:92:61:7f:86:07:b2:0d:62:19:c2:b4:
d9:92:a4:a7:24:7b:64:88:b3:78:b5:2d:52:27:24:3e:e4:91:
bf:36:83:96:7c:7a:dd:73:fc:10:5f:3c:e4:eb:39:03:7e:8c:
fa:78:e7:b6:d0:ae:dc:ba:db:d9:66:de:7f:91:ab:da:9b:20:
9d:bb:79:f3:4d:a2:8b:f6:e3:af:9c:50:61:95:64:d6:ac:3c:
98:87:59:23:59:48:c0:ef:22:90:22:59:18:28:84:5f:7b:6e:
e9:b6:44:f0:a8:fd:8b:c4:a9:65:d8:36:3d:ba:20:4d:90:10:
90:93:49:fb:c5:1d:d7:92:1e:1f:7d:77:55:d4:cb:87:9c:bd:
eb:03:3f:c9:ed:18:b1:e0:48:8a:9d:6b:ba:c2:37:7b:3f:6b:
47:00:d5:e1:ba:d8:b1:96:06:3e:48:55:37:82:d0:fb:e2:be:
ae:2f:0a:b2:ee:8e:1a:ca:f3:37:d7:67:fb:04:69:c5:86:a3:
8e:0e:73:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:05 2024 by rpki-client on console-ams.rpki-client.org