Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/SXskDofaJIoGFcU0x7nBUUthiP0.roa
File: SXskDofaJIoGFcU0x7nBUUthiP0.roa (raw, json)
Hash identifier: RSAsqnf7gBTYpGan3WxVfs9EOWaKSV6vWHldnG5+cNI=
Subject key identifier: 49:7B:24:0E:87:DA:24:8A:06:15:C5:34:C7:B9:C1:51:4B:61:88:FD
Certificate issuer: /CN=65df379faaf210a7036dac05de6b5772dbe4dd6c
Certificate serial: 16168A39
Authority key identifier: 65:DF:37:9F:AA:F2:10:A7:03:6D:AC:05:DE:6B:57:72:DB:E4:DD:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zd83n6ryEKcDbawF3mtXctvk3Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/SXskDofaJIoGFcU0x7nBUUthiP0.roa
Signing time: Sat 01 Jan 2022 10:58:13 +0000
ROA not before: Sat 01 Jan 2022 10:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201838
IP address blocks: 89.45.176.0/20 maxlen: 20
89.36.112.0/20 maxlen: 20
188.212.122.0/23 maxlen: 23
93.113.26.0/23 maxlen: 23
188.215.16.0/23 maxlen: 23
79.171.154.0/23 maxlen: 23
79.171.153.0/24 maxlen: 24
79.171.156.0/22 maxlen: 22
94.177.138.0/23 maxlen: 23
147.12.128.0/17 maxlen: 17
46.102.171.0/24 maxlen: 24
46.102.170.0/24 maxlen: 24
46.102.170.0/23 maxlen: 23
94.176.208.0/23 maxlen: 23
185.59.124.0/22 maxlen: 22
212.132.192.0/18 maxlen: 18
188.215.74.0/23 maxlen: 23
188.241.106.0/23 maxlen: 23
94.247.86.0/23 maxlen: 23
2a02:6b60::/28 maxlen: 28
2a02:6b60::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 370575929 (0x16168a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65df379faaf210a7036dac05de6b5772dbe4dd6c
Validity
Not Before: Jan 1 10:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=497b240e87da248a0615c534c7b9c1514b6188fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:33:17:f3:38:f7:66:d5:b7:98:49:9c:8e:13:
08:67:c7:89:58:06:8d:51:6a:44:c5:1b:ce:a2:df:
a9:e0:8e:39:34:0d:2b:5c:d4:f9:a0:fc:59:50:a0:
bd:8e:a1:c5:46:e1:e4:93:9a:01:62:60:0c:99:bf:
fb:0c:19:6a:78:b6:90:d4:ec:3f:45:18:82:03:e2:
1b:bb:b0:79:26:88:60:82:e7:41:6f:e2:80:d1:21:
40:01:0b:92:48:3f:04:be:37:29:8c:42:28:31:8a:
2e:79:bb:f1:d9:6b:2c:33:74:ba:f1:a6:51:98:8c:
73:59:e6:1c:c8:f4:85:98:47:e8:b0:ea:ae:d6:fa:
b6:2d:2d:a1:c4:64:ff:b5:4b:6b:33:73:71:08:8e:
e2:23:e0:03:8b:ab:ac:df:5f:8c:91:91:91:3e:58:
53:41:b3:fe:8c:cd:c9:1b:97:cf:c8:ff:f4:88:35:
aa:0d:a8:06:7b:63:8b:42:01:44:fa:28:4e:32:d9:
f9:af:e8:83:1f:36:ce:c9:1f:6e:5f:ba:82:92:2a:
d0:af:89:93:df:6d:37:ad:27:9e:7c:cc:7e:28:0c:
33:c3:f1:d5:54:7e:11:7c:03:d9:a7:d9:2e:ed:dd:
ab:0d:e8:e1:1f:37:54:10:7b:a3:58:ac:d3:c3:fd:
cb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7B:24:0E:87:DA:24:8A:06:15:C5:34:C7:B9:C1:51:4B:61:88:FD
X509v3 Authority Key Identifier:
keyid:65:DF:37:9F:AA:F2:10:A7:03:6D:AC:05:DE:6B:57:72:DB:E4:DD:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zd83n6ryEKcDbawF3mtXctvk3Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/SXskDofaJIoGFcU0x7nBUUthiP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/Zd83n6ryEKcDbawF3mtXctvk3Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.170.0/23
79.171.153.0-79.171.159.255
89.36.112.0/20
89.45.176.0/20
93.113.26.0/23
94.176.208.0/23
94.177.138.0/23
94.247.86.0/23
147.12.128.0/17
185.59.124.0/22
188.212.122.0/23
188.215.16.0/23
188.215.74.0/23
188.241.106.0/23
212.132.192.0/18
IPv6:
2a02:6b60::/28
Signature Algorithm: sha256WithRSAEncryption
38:6f:fa:54:f9:a7:b1:9c:5a:66:8b:b8:27:0c:ed:03:e8:3e:
47:1a:31:02:c5:bb:85:9a:07:a4:df:54:90:38:06:78:e8:48:
ea:eb:db:c5:85:50:6b:f7:fa:79:d2:14:e6:78:7e:66:a6:40:
ac:01:90:f7:78:7b:66:c2:a5:b9:15:68:aa:46:83:70:f2:df:
4c:fc:6c:1e:06:b4:93:fb:64:95:bb:92:2a:52:34:2d:9a:cc:
99:ce:56:11:d4:41:0e:38:54:22:f5:7c:d6:14:05:f7:bf:45:
2b:d2:7f:cf:78:c3:82:f0:28:b4:ac:ec:c8:40:56:1f:08:1a:
9e:cc:22:f5:13:80:33:9f:20:8a:be:15:35:bc:a3:65:2a:8b:
4d:92:42:3f:0b:5f:09:e8:35:4a:5c:74:52:7c:88:d4:93:56:
a4:9f:a8:15:5b:92:f5:b2:f5:7a:35:4b:16:e8:e8:86:b1:57:
a2:b1:35:ba:e2:43:94:41:cf:29:85:27:7b:19:7f:0d:11:64:
5e:9a:f0:f4:9e:a5:67:4b:68:df:25:c8:eb:d0:f7:c9:e5:9f:
77:6e:0f:4e:be:52:da:1d:6f:7d:05:8d:6c:a0:32:83:55:90:
6a:cb:a1:0c:68:e7:7e:43:b3:da:27:c5:40:52:2a:1a:07:36:
bc:44:52:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:53 2024 by rpki-client on console-ams.rpki-client.org