Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/JAS8Dq-sizguuo8I9E4ZqpNMYCU.roa
File: JAS8Dq-sizguuo8I9E4ZqpNMYCU.roa (raw, json)
Hash identifier: zSqPN/oO4Ah6cMcl8V9n5Jswc7wr6/Pn/IrEQamNkw4=
Subject key identifier: 24:04:BC:0E:AF:AC:8B:38:2E:BA:8F:08:F4:4E:19:AA:93:4C:60:25
Certificate issuer: /CN=f7aa039b886b226578bdb6a42781bf59044bb138
Certificate serial: 377F4B42
Authority key identifier: F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/JAS8Dq-sizguuo8I9E4ZqpNMYCU.roa
Signing time: Sat 01 Jan 2022 10:04:37 +0000
ROA not before: Sat 01 Jan 2022 10:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31191
IP address blocks: 213.135.93.0/24 maxlen: 25
213.208.185.0/24 maxlen: 25
84.47.137.0/24 maxlen: 25
213.135.68.0/24 maxlen: 25
213.135.75.0/24 maxlen: 25
213.135.76.0/24 maxlen: 25
213.135.78.0/24 maxlen: 25
84.47.188.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931089218 (0x377f4b42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7aa039b886b226578bdb6a42781bf59044bb138
Validity
Not Before: Jan 1 10:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2404bc0eafac8b382eba8f08f44e19aa934c6025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:47:62:37:79:2e:04:57:36:eb:82:42:b2:d0:
14:3f:ca:a0:7b:95:57:7a:c8:e4:0e:5d:73:aa:71:
08:f7:bc:0b:97:9f:10:18:41:d0:f0:01:b6:4f:c6:
7a:3e:89:b6:26:d8:e0:1c:25:5f:0a:09:82:c4:08:
cd:9d:29:d7:56:db:31:d9:82:da:f6:f1:48:f6:6c:
a8:1e:fe:cc:46:e3:c3:3e:f7:e7:cc:b7:c4:c7:10:
08:20:22:f8:4c:49:f0:b9:27:de:f9:f0:e9:0e:6a:
d6:d2:4c:e8:2b:36:a9:29:0e:d8:26:ff:1e:69:57:
bb:18:ec:a4:53:e7:e7:c4:f2:a0:05:78:f2:de:52:
cd:c4:c9:82:8b:34:9d:3d:be:29:30:62:82:ba:9e:
d6:de:c2:1b:17:37:55:26:34:99:c0:82:19:63:29:
be:83:b1:e3:4f:08:59:bd:d7:4f:2c:9d:c8:ff:fb:
4b:1b:6c:fb:f7:ee:46:04:98:70:55:9f:5b:a4:b6:
14:aa:1c:c8:86:21:01:9e:0f:a6:ae:97:c7:4d:12:
5b:8a:be:f2:17:0a:b6:da:f5:3a:16:a3:dd:65:17:
c3:56:b2:0a:49:2d:22:b1:64:ca:13:af:09:c6:00:
a9:f4:50:86:80:1e:f8:92:3b:84:eb:bd:16:ed:8d:
a8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:04:BC:0E:AF:AC:8B:38:2E:BA:8F:08:F4:4E:19:AA:93:4C:60:25
X509v3 Authority Key Identifier:
keyid:F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/JAS8Dq-sizguuo8I9E4ZqpNMYCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.137.0/24
84.47.188.0/24
213.135.68.0/24
213.135.75.0-213.135.76.255
213.135.78.0/24
213.135.93.0/24
213.208.185.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:af:4e:db:ea:b3:2f:20:50:78:66:4f:d6:23:10:fe:f8:92:
bb:02:60:dd:56:a9:df:e3:6b:12:68:5e:eb:1d:ba:c3:2c:e2:
60:62:32:ec:e9:68:09:ef:a5:86:24:d5:a8:61:91:0f:d3:db:
a2:35:a5:4e:0a:b2:89:eb:fb:e4:71:e1:db:8b:c8:2f:10:84:
b6:e6:e5:76:06:f8:4b:9c:39:fc:1c:e9:58:c4:4c:44:d1:07:
d5:9b:d9:9a:45:08:b4:51:9e:e6:b5:50:3b:38:02:47:a3:52:
8e:63:ae:5a:ef:7a:49:e2:31:09:32:ba:8f:01:b9:6a:47:90:
2a:3a:ef:e5:1a:c5:f0:81:10:8f:cb:08:b3:1e:4b:31:ea:75:
84:45:2c:81:c1:d2:ce:bb:dd:63:64:1d:8b:be:4e:1c:15:8d:
24:03:9e:cd:9f:62:b0:a6:ab:6e:aa:d8:ab:fc:76:c1:eb:7a:
23:31:c0:fd:6d:5a:11:05:db:e5:67:e9:77:17:42:e8:a0:77:
b1:49:65:08:fa:ed:97:36:6a:44:68:44:b3:be:b1:34:d8:a0:
36:9e:84:79:2c:8a:a4:0a:8b:5d:c0:b8:5d:2a:d5:6a:68:8e:
65:ae:43:3d:49:bc:f5:4d:27:90:2a:3d:c9:ca:5b:f8:95:01:
c0:ce:31:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:23 2024 by rpki-client on console-fra.rpki-client.org