Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/dVbqdWN7Wr_jUpqb0kuFHBJ71js.roa
File: dVbqdWN7Wr_jUpqb0kuFHBJ71js.roa (raw, json)
Hash identifier: 1WCOzdmdQ5srGKy0D/2BTlMayvnetiw80y7HDJ5zMBE=
Subject key identifier: 75:56:EA:75:63:7B:5A:BF:E3:52:9A:9B:D2:4B:85:1C:12:7B:D6:3B
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 44681284
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/dVbqdWN7Wr_jUpqb0kuFHBJ71js.roa
Signing time: Sat 01 Jan 2022 03:58:14 +0000
ROA not before: Sat 01 Jan 2022 03:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2285
IP address blocks: 90.84.250.0/24 maxlen: 24
90.84.249.0/24 maxlen: 24
90.84.248.0/24 maxlen: 24
2a01:c9c0:8010::/48 maxlen: 64
2a01:c9c0:8018::/48 maxlen: 64
2a01:c9c0:8030::/48 maxlen: 64
2a01:c9c0:8016::/48 maxlen: 64
2a01:c9c0:801e::/48 maxlen: 64
2a01:c9c0:8014::/48 maxlen: 64
2a01:c9c0:801c::/48 maxlen: 64
2a01:c9c0:8012::/48 maxlen: 64
2a01:c9c0:801a::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1147671172 (0x44681284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7556ea75637b5abfe3529a9bd24b851c127bd63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:24:dc:de:17:d0:93:1c:91:42:43:9c:6a:9b:
de:b2:30:04:e9:59:5f:02:6a:f8:c1:1b:c9:6b:0f:
40:15:56:3f:19:dd:22:88:0a:86:c5:6c:e5:59:f7:
de:46:08:b3:b4:e3:bc:38:4b:ac:12:9b:72:33:a8:
22:d2:2e:29:77:8b:9d:5b:40:8b:39:17:ff:44:77:
39:6f:5d:4b:92:a8:aa:de:52:ac:da:8a:1a:f1:30:
f8:ad:ea:c2:03:cf:94:66:a7:b2:4c:5d:90:e3:61:
ca:2f:7d:ee:2b:40:c0:42:e4:e8:95:7b:13:87:53:
c4:2f:30:d9:cc:e3:38:69:ce:87:36:d1:c2:11:f6:
92:7a:b9:95:80:9b:e6:ed:3f:b7:de:a4:8b:f8:b9:
26:75:94:5e:a2:77:15:f6:12:46:e1:86:16:7e:b4:
1a:07:aa:54:32:d0:4c:b9:ac:d8:a5:51:86:5e:2f:
38:bf:da:35:d3:98:84:94:f6:c2:12:31:02:08:85:
06:f5:d8:61:fc:c1:ca:58:21:b3:01:44:08:0b:4c:
56:51:cf:dc:54:db:17:e4:47:57:d3:d5:25:18:09:
c7:f3:fb:24:aa:10:0d:10:6c:6d:31:a9:63:df:1f:
1f:2f:da:ae:85:06:76:b5:78:83:53:47:de:e1:8d:
00:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:56:EA:75:63:7B:5A:BF:E3:52:9A:9B:D2:4B:85:1C:12:7B:D6:3B
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/dVbqdWN7Wr_jUpqb0kuFHBJ71js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.84.248.0-90.84.250.255
IPv6:
2a01:c9c0:8010::/48
2a01:c9c0:8012::/48
2a01:c9c0:8014::/48
2a01:c9c0:8016::/48
2a01:c9c0:8018::/48
2a01:c9c0:801a::/48
2a01:c9c0:801c::/48
2a01:c9c0:801e::/48
2a01:c9c0:8030::/48
Signature Algorithm: sha256WithRSAEncryption
6f:cc:9a:fe:5b:6d:7b:93:92:13:14:8b:fb:0d:64:3a:b3:bf:
94:a0:71:cc:a7:d5:83:00:73:9d:fd:d9:6a:70:8d:e3:52:43:
7b:9f:fd:99:44:42:24:d4:8b:db:6b:48:fe:82:52:d1:3d:1f:
b8:26:0a:98:06:45:b7:28:31:73:33:13:c9:cc:17:c0:67:90:
48:c4:a4:fd:70:75:86:ce:d2:9b:e2:fd:09:db:78:7b:77:5b:
9c:86:d5:f6:d7:4a:c6:b8:1f:6d:51:ff:c5:08:be:1e:17:87:
f3:fe:90:ea:a0:ea:9e:fd:9e:e8:84:0b:86:fe:56:5b:6a:c1:
c6:66:ba:89:0d:ef:2f:30:ef:62:6c:a0:78:f9:90:ef:65:f4:
3e:c8:81:48:3b:c0:0d:3c:85:79:92:39:3a:97:9e:52:b6:d2:
f6:ba:03:d1:fa:d7:91:72:09:2e:f9:7d:52:66:f2:15:f6:87:
a1:7c:6c:3c:8f:a1:f5:e0:12:15:a9:f2:c7:bb:83:15:68:a3:
b5:2e:b6:23:8d:a3:68:d3:f7:7d:e4:07:ad:24:b5:27:aa:2d:
94:4e:b6:5b:79:5d:74:d4:5c:34:54:be:30:21:0c:3b:7c:9b:
c6:c6:01:cc:bb:f9:a2:f3:55:5c:6f:c7:88:6b:a9:38:e0:3c:
75:58:38:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org