Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/37b34d-1212-4eca-a236-8f62d7dc1699/1/u9UHT9sTzm1LnyGbXRt6-hzqNAc.roa
File: u9UHT9sTzm1LnyGbXRt6-hzqNAc.roa (raw, json)
Hash identifier: bWwM5XmbsJwboYFGreY0LnYD9e+9wPf8Fm085zQ7KLk=
Subject key identifier: BB:D5:07:4F:DB:13:CE:6D:4B:9F:21:9B:5D:1B:7A:FA:1C:EA:34:07
Certificate issuer: /CN=c415e9274e9d1fe46203c1e06b1b0dc85e612453
Certificate serial: 08F010F7
Authority key identifier: C4:15:E9:27:4E:9D:1F:E4:62:03:C1:E0:6B:1B:0D:C8:5E:61:24:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBXpJ06dH-RiA8HgaxsNyF5hJFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/37b34d-1212-4eca-a236-8f62d7dc1699/1/u9UHT9sTzm1LnyGbXRt6-hzqNAc.roa
Signing time: Sat 01 Jan 2022 15:02:23 +0000
ROA not before: Sat 01 Jan 2022 15:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49821
IP address blocks: 91.202.196.0/22 maxlen: 22
176.126.48.0/24 maxlen: 24
176.126.48.0/21 maxlen: 21
176.126.49.0/24 maxlen: 24
91.235.186.0/24 maxlen: 24
91.235.184.0/22 maxlen: 22
91.235.185.0/24 maxlen: 24
176.108.144.0/21 maxlen: 21
91.235.184.0/24 maxlen: 24
91.235.187.0/24 maxlen: 24
185.244.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149950711 (0x8f010f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c415e9274e9d1fe46203c1e06b1b0dc85e612453
Validity
Not Before: Jan 1 15:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbd5074fdb13ce6d4b9f219b5d1b7afa1cea3407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d5:e2:f1:89:f5:8d:10:5d:af:1c:02:95:a7:
28:d5:9a:01:3e:b0:4f:e0:6d:9c:97:71:4b:1f:b4:
23:e2:2b:a1:11:3f:d3:78:be:49:a2:ce:d6:f4:a5:
b2:2b:85:e8:f4:ef:b5:9a:38:d1:2e:7c:6a:10:8d:
88:38:ed:b6:3d:72:ab:3d:05:40:ee:52:f4:dc:a5:
3a:31:4e:c1:d8:40:35:69:20:c1:1a:a9:62:d3:00:
24:18:a2:4d:ab:d7:77:f9:24:8b:a5:b4:d4:56:e7:
56:f2:43:36:17:3d:9c:5e:5e:50:71:4b:b0:ff:b8:
6d:3d:fb:a1:99:a4:e9:ec:d5:f2:f3:5e:fa:63:f4:
e0:9a:3f:b8:0d:0f:3e:97:73:92:01:86:e7:47:f5:
32:e4:0f:b0:ed:8c:82:d7:3b:5f:61:c8:10:78:3e:
8f:41:82:c6:8a:05:66:67:8b:e5:d7:6d:a1:06:4f:
72:27:2f:3c:f3:7c:f4:1c:f6:46:8b:11:76:26:d7:
de:00:94:f3:c0:35:c0:00:ee:56:df:66:42:a0:df:
ab:77:2b:d4:f8:7b:2a:51:2a:86:2f:c8:f9:b5:f2:
b1:a8:d3:3f:09:9e:13:13:94:3f:04:dd:b0:24:c2:
c5:a1:56:b1:fe:6b:f9:22:b7:cc:4c:e3:3e:8a:94:
60:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D5:07:4F:DB:13:CE:6D:4B:9F:21:9B:5D:1B:7A:FA:1C:EA:34:07
X509v3 Authority Key Identifier:
keyid:C4:15:E9:27:4E:9D:1F:E4:62:03:C1:E0:6B:1B:0D:C8:5E:61:24:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBXpJ06dH-RiA8HgaxsNyF5hJFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/37b34d-1212-4eca-a236-8f62d7dc1699/1/u9UHT9sTzm1LnyGbXRt6-hzqNAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/37b34d-1212-4eca-a236-8f62d7dc1699/1/xBXpJ06dH-RiA8HgaxsNyF5hJFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.196.0/22
91.235.184.0/22
176.108.144.0/21
176.126.48.0/21
185.244.76.0/22
Signature Algorithm: sha256WithRSAEncryption
23:73:6c:15:2b:a4:b5:06:6e:06:64:df:d9:65:d5:f9:00:2a:
37:24:fb:da:b9:af:68:15:46:cd:4d:4f:a8:1e:1d:40:36:35:
3a:df:ec:ef:71:c4:e4:52:1d:f1:4e:ff:6c:27:5d:9b:6d:3c:
0b:0c:d8:f2:d3:c3:4b:73:5a:c5:f3:2e:e4:fe:76:3a:cc:a5:
99:34:c3:bb:7c:36:90:80:f1:0b:ad:a0:fb:eb:5d:3e:e1:62:
80:ca:96:e0:2c:53:05:d9:16:62:36:7a:41:4c:1b:02:e9:f3:
83:98:70:4b:f4:22:c0:a3:e8:c8:a0:6c:2d:fc:51:26:d8:ab:
46:37:17:4a:3e:b8:a8:83:7a:bc:10:11:46:27:f7:d6:5b:5e:
e9:c0:dd:53:f6:2c:9b:17:5d:5d:78:f2:d7:69:12:19:96:7e:
30:ad:7c:94:f5:f7:5d:2f:41:7f:c2:49:10:ce:7a:0e:47:0c:
14:18:ea:bf:2d:10:e4:42:07:6e:5c:37:6a:a1:69:14:f1:53:
42:ff:48:64:08:87:4d:85:a1:89:33:e7:68:51:b2:70:a5:e0:
55:6e:78:5c:a5:99:4a:9f:55:af:48:47:2b:c7:94:6a:01:0b:
7b:71:a0:00:88:24:80:1f:35:d8:55:d8:5e:1e:c2:10:56:4a:
7b:0e:0d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:17 2024 by rpki-client on console-ams.rpki-client.org