Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/qdCmU14lNtmxeErhF1bc8YUcg08.roa
File: qdCmU14lNtmxeErhF1bc8YUcg08.roa (raw, json)
Hash identifier: gNhETRBsMLv+U78XMsTpnFDWi2hV5XRZ3KRx4TBM/Wg=
Subject key identifier: A9:D0:A6:53:5E:25:36:D9:B1:78:4A:E1:17:56:DC:F1:85:1C:83:4F
Certificate issuer: /CN=91c10bfde5813ab47c38c5c1904ec26b32c2a095
Certificate serial: 4066E097
Authority key identifier: 91:C1:0B:FD:E5:81:3A:B4:7C:38:C5:C1:90:4E:C2:6B:32:C2:A0:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcEL_eWBOrR8OMXBkE7CazLCoJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/qdCmU14lNtmxeErhF1bc8YUcg08.roa
Signing time: Sat 01 Jan 2022 14:08:36 +0000
ROA not before: Sat 01 Jan 2022 14:08:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 213.46.253.0/24 maxlen: 24
213.46.252.0/24 maxlen: 24
212.142.32.0/19 maxlen: 19
212.83.64.0/22 maxlen: 22
212.83.68.0/22 maxlen: 22
213.46.160.0/19 maxlen: 19
213.46.60.0/22 maxlen: 22
212.142.0.0/18 maxlen: 18
212.142.0.0/19 maxlen: 19
213.46.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1080483991 (0x4066e097)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c10bfde5813ab47c38c5c1904ec26b32c2a095
Validity
Not Before: Jan 1 14:08:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9d0a6535e2536d9b1784ae11756dcf1851c834f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5a:50:e2:12:9b:8c:28:33:04:11:3b:09:4b:
3c:3b:6b:fe:79:fa:75:f8:89:96:b7:6a:04:64:b2:
47:44:58:f6:80:c5:4d:75:6b:09:e6:6c:1e:00:68:
fb:8c:cc:9e:b9:e0:fd:a2:b8:5e:a2:5c:2f:1f:fb:
65:0b:23:41:46:29:02:f8:32:a9:3a:a3:fc:4f:d3:
ea:bc:57:ab:d6:9f:8f:5a:e1:f9:be:ef:1b:18:08:
66:8c:a1:43:70:51:a7:a5:93:45:f9:ff:b0:d8:ac:
1b:d9:8a:81:04:f3:fc:e4:31:e8:2f:48:dc:00:1a:
af:1e:95:14:53:35:cb:6e:61:b8:c7:33:7f:bb:9a:
21:27:c7:62:6d:9c:e8:88:6a:4e:56:cc:f1:65:37:
62:a7:bd:71:4a:90:fa:d9:de:a0:9d:a4:bc:21:64:
cf:3f:aa:93:46:70:e1:ec:c9:9c:a0:94:d6:ca:14:
d5:7e:ac:e4:ae:c7:26:c8:69:83:3a:b7:e8:14:b7:
ce:85:83:0a:81:59:bb:14:c1:d6:b2:ab:23:66:90:
92:2f:6a:62:f4:06:c5:c6:19:ff:73:4d:da:a9:49:
a0:9f:e1:d2:c2:db:8b:f9:b5:ed:db:c9:47:eb:ba:
a9:3b:3c:0c:ce:d4:48:a1:88:3c:50:7c:16:6b:2a:
c6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D0:A6:53:5E:25:36:D9:B1:78:4A:E1:17:56:DC:F1:85:1C:83:4F
X509v3 Authority Key Identifier:
keyid:91:C1:0B:FD:E5:81:3A:B4:7C:38:C5:C1:90:4E:C2:6B:32:C2:A0:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcEL_eWBOrR8OMXBkE7CazLCoJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/qdCmU14lNtmxeErhF1bc8YUcg08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/kcEL_eWBOrR8OMXBkE7CazLCoJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.83.64.0/21
212.142.0.0/18
213.46.60.0/22
213.46.160.0/19
213.46.224.0/19
Signature Algorithm: sha256WithRSAEncryption
0e:9c:ba:0b:78:c1:f8:e4:c0:0f:be:dc:ea:d7:91:5e:ce:5c:
1e:68:91:79:84:47:3a:f7:24:8d:2e:70:c9:0c:b7:82:37:04:
4c:24:c4:54:49:52:48:4a:d0:4c:71:58:8e:a8:5d:c8:64:e2:
b7:c7:59:53:42:15:76:61:64:7f:18:a0:da:2a:fa:f7:84:c1:
0a:c8:00:49:0a:09:fd:c5:92:31:e1:b5:97:46:93:34:c8:9a:
0e:43:50:f3:72:8d:93:46:1f:13:a5:0d:9a:36:8b:ef:25:2b:
6a:5f:be:a3:fb:4d:ae:eb:cc:94:11:d1:70:d8:a2:48:71:d5:
b8:44:dc:2a:57:bf:fa:f3:d8:3f:05:ad:83:8f:1e:70:8b:e0:
d5:8a:84:ba:51:ed:c3:c4:41:88:0a:9c:7c:7f:18:7f:65:b3:
a1:05:f7:b0:ff:d5:76:30:f1:68:c3:b2:98:29:df:b1:9c:3c:
75:12:5f:cb:a3:b0:e0:59:7b:46:4a:10:6a:d4:44:ce:1b:d7:
d7:c1:0c:b8:cd:50:f6:38:b2:8e:86:35:29:67:f6:a3:17:71:
bc:23:dd:c9:07:12:27:aa:10:50:98:71:c6:0a:bd:94:d0:5a:
c8:c1:8f:33:f4:50:5a:c6:19:a2:f5:f0:ef:0e:6d:48:ee:d4:
43:c1:d2:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:48 2024 by rpki-client on console-fra.rpki-client.org