Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/B0bxRzVoCaY3r2rUMm16DoQOvvI.roa
File: B0bxRzVoCaY3r2rUMm16DoQOvvI.roa (raw, json)
Hash identifier: mCJBrxAKDg3DjuC2CstBLPnKItcG5UUJujCbcYyPYWU=
Subject key identifier: 07:46:F1:47:35:68:09:A6:37:AF:6A:D4:32:6D:7A:0E:84:0E:BE:F2
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01832D51418BBD6D831E61B7DAF629B69F37
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/B0bxRzVoCaY3r2rUMm16DoQOvvI.roa
Signing time: Sun 11 Sep 2022 16:10:43 +0000
ROA not before: Sun 11 Sep 2022 16:10:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60860
IP address blocks: 81.22.136.0/22 maxlen: 22
109.72.122.0/24 maxlen: 24
109.72.123.0/24 maxlen: 24
185.30.200.0/23 maxlen: 23
185.30.203.0/24 maxlen: 24
185.30.202.0/24 maxlen: 24
89.185.0.0/22 maxlen: 22
93.185.214.0/24 maxlen: 24
81.22.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:2d:51:41:8b:bd:6d:83:1e:61:b7:da:f6:29:b6:9f:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 11 16:10:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0746f147356809a637af6ad4326d7a0e840ebef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5f:01:99:ba:56:04:51:4f:a1:a5:1e:a2:49:
e4:91:bf:62:71:7c:60:92:4b:17:dd:69:9d:b2:3b:
c4:b0:e3:7d:23:01:26:f4:d6:97:26:60:e3:9f:ef:
c2:42:a3:03:f8:b2:56:00:7c:5f:ce:cb:e0:c8:eb:
1f:5f:ae:ba:79:f9:47:52:de:cd:44:3b:b7:f5:9c:
6c:5c:42:59:df:69:5c:86:a5:52:e5:e6:58:02:8c:
0c:bf:fa:c7:b1:01:f6:cd:ae:48:52:c0:5b:2d:4c:
db:bc:b8:22:dc:c2:28:d5:80:05:69:ee:b6:02:00:
74:be:e4:83:6d:75:f2:b3:c9:d5:62:b8:7e:b4:48:
c1:79:3a:34:21:28:74:63:a4:ab:23:64:15:1b:cc:
e4:4f:af:5f:03:6b:89:f9:20:be:64:64:9d:17:16:
fa:7f:46:f9:d5:81:42:be:6f:b6:b2:f7:6c:76:41:
71:27:38:45:3f:09:e5:cb:9c:08:60:6b:6b:7f:c5:
38:f4:f5:94:7f:69:99:4f:4c:34:e0:f1:9f:ec:fb:
43:a8:d4:d3:92:66:97:43:75:1e:8e:fb:0e:5a:6b:
f6:8b:c6:98:65:2f:84:a4:b6:c8:62:fd:d8:fa:4d:
38:22:6c:ea:a6:f6:9e:11:bd:a9:58:d2:07:4e:94:
68:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:46:F1:47:35:68:09:A6:37:AF:6A:D4:32:6D:7A:0E:84:0E:BE:F2
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/B0bxRzVoCaY3r2rUMm16DoQOvvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.128.0-81.22.139.255
89.185.0.0/22
93.185.214.0/24
109.72.122.0/23
185.30.200.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:45:51:be:d3:8e:0d:ce:3c:c8:97:b1:da:f3:4f:5f:51:b4:
76:5f:28:56:9f:3b:a1:06:82:f9:a4:f9:de:6d:22:b3:61:b7:
9f:66:e2:d3:20:09:94:f4:c2:4f:23:94:18:98:42:a3:bb:ba:
6a:0b:36:28:aa:f5:49:e7:e7:13:17:54:5e:07:01:61:8b:98:
92:81:29:3b:ab:18:90:2e:0c:09:fc:f5:e7:58:32:c5:48:4d:
27:8d:77:42:d4:c1:45:fe:a8:5e:fa:55:f4:47:f1:b3:ea:43:
6e:34:dc:57:05:1b:e5:5e:0a:31:16:fc:40:95:c7:4c:a9:15:
92:87:2c:e6:e6:56:19:45:3e:ef:f0:99:96:46:8e:64:46:4c:
3e:9f:72:75:82:3b:a2:5e:9f:df:2b:f9:b1:9a:5c:26:56:cb:
19:3e:6b:8c:1e:f7:28:22:aa:4d:e9:bb:fa:3b:2a:49:53:73:
18:0a:8f:f8:a3:34:51:f4:a8:d2:46:77:62:fb:0e:9d:87:9a:
e2:e7:c5:8b:8c:7a:dc:fb:74:2a:73:e6:30:c1:4e:fc:e8:58:
89:63:d4:3b:3b:c5:24:92:98:8e:41:41:52:c5:52:83:78:bd:
6d:79:ba:f1:d7:dd:a5:14:3d:34:25:f7:71:2c:66:58:d2:67:
c0:b8:e8:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org