Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/D_-R72C1RPmQA7qfOGN45HBwkKo.roa
File: D_-R72C1RPmQA7qfOGN45HBwkKo.roa (raw, json)
Hash identifier: xIF/HOpcOe4No3kA3fAiPzLI7IqSK/teGUmqYHmxCxk=
Subject key identifier: 0F:FF:91:EF:60:B5:44:F9:90:03:BA:9F:38:63:78:E4:70:70:90:AA
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 1BE38AE1
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/D_-R72C1RPmQA7qfOGN45HBwkKo.roa
Signing time: Sat 07 May 2022 19:31:11 +0000
ROA not before: Sat 07 May 2022 19:31:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 46.31.78.0/24 maxlen: 24
46.31.76.0/24 maxlen: 24
185.73.203.0/24 maxlen: 24
185.73.201.0/24 maxlen: 24
185.73.200.0/24 maxlen: 24
185.73.202.0/24 maxlen: 32
185.17.112.0/24 maxlen: 24
185.17.113.0/24 maxlen: 32
185.17.115.0/24 maxlen: 24
185.17.114.0/24 maxlen: 24
2a05:4640::/29 maxlen: 48
2a04:7c0:1::/48 maxlen: 48
2a04:7c0::/29 maxlen: 48
2a04:7c0::/33 maxlen: 48
2a04:7c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467897057 (0x1be38ae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: May 7 19:31:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fff91ef60b544f99003ba9f386378e4707090aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b9:5b:35:c8:60:22:c4:c8:70:91:a9:41:5c:
1c:94:db:51:8f:99:12:15:c6:0e:30:88:e1:2e:51:
cb:6c:f3:dd:63:37:25:3b:51:fa:d5:05:0b:91:95:
a7:8e:fd:f9:b9:5b:f9:dc:6f:48:90:4c:0e:ce:97:
65:34:4c:19:78:b9:95:0f:fd:d7:18:7d:5f:50:ae:
69:11:36:15:e8:bc:97:e9:b4:5e:98:af:34:22:3e:
c3:6c:98:e6:5e:2d:be:75:1f:96:88:42:ba:dc:a5:
ed:79:8e:fb:cd:a5:7d:73:d1:d2:15:de:16:85:7e:
60:c7:76:95:45:1b:4e:7e:a6:ef:48:37:16:a6:e5:
c1:15:8a:23:59:cc:ba:83:a4:fa:5a:03:16:bd:3a:
aa:98:3d:31:f5:4b:69:a9:ed:53:4b:76:72:c7:33:
3c:4f:9d:f1:f2:0e:15:21:6a:32:01:12:b2:0b:4c:
f8:36:36:e7:a6:ef:82:2e:8b:a0:17:f7:d7:95:98:
e8:e4:6b:13:8a:bb:94:6e:a9:ff:8d:72:1e:8d:75:
69:62:5c:6c:92:1e:24:12:fc:5e:1e:15:2c:7b:59:
21:3a:4c:bb:dc:d3:5c:62:60:01:88:09:75:65:54:
92:65:61:16:d4:7c:f1:4c:8f:73:8a:75:9a:5a:2a:
7a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FF:91:EF:60:B5:44:F9:90:03:BA:9F:38:63:78:E4:70:70:90:AA
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/D_-R72C1RPmQA7qfOGN45HBwkKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.76.0/24
46.31.78.0/24
185.17.112.0/22
185.73.200.0/22
IPv6:
2a04:7c0::/29
2a05:4640::/29
Signature Algorithm: sha256WithRSAEncryption
0c:e6:e9:ac:26:e4:ee:81:f4:5a:03:58:0c:1d:39:ee:aa:b5:
3a:84:1c:a3:92:77:4c:e3:31:a6:ff:f6:06:55:f1:aa:6a:a0:
7e:29:95:f0:5b:a1:6d:07:df:b9:31:2a:8b:85:f1:4a:c0:d3:
ce:c3:11:d6:b8:6d:a9:ab:d4:90:ca:a9:a2:72:81:94:dd:09:
88:29:99:02:1a:7a:d6:e9:44:d0:06:0e:43:62:12:bd:3b:14:
83:99:2e:01:2c:fd:14:60:b5:e3:14:c7:57:8d:cb:d7:ce:1d:
4d:c7:ba:4b:e1:fc:80:95:2d:44:84:ec:bd:53:86:aa:18:33:
28:75:cb:b9:41:cd:aa:d0:a6:b0:91:98:ac:4e:59:d5:1b:9b:
be:6a:27:d1:45:17:26:b9:56:23:5e:33:81:ce:68:0d:85:6b:
42:4e:b6:30:42:db:03:99:f8:f0:d8:ce:5d:ac:9d:1f:56:5b:
2c:f5:5e:d3:69:81:20:a3:a3:3b:f1:ba:5b:5b:1e:7a:92:05:
82:4b:14:25:6c:dc:b0:de:b7:62:08:e6:6f:cc:70:c1:6c:20:
a0:d4:99:70:28:dd:97:56:7f:34:e0:29:84:9b:bc:70:59:75:
5b:79:34:fb:ff:89:51:fd:51:1f:39:14:95:27:99:f2:8a:5a:
09:03:b5:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org