Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ua6QYPn00Qwh3rC82TsGBpZ1TGE.roa
File: Ua6QYPn00Qwh3rC82TsGBpZ1TGE.roa (raw, json)
Hash identifier: RUFpVrlvX+7DVIJbJLesi9mtpJb8Gu/HHn6/wK4nHpw=
Subject key identifier: 51:AE:90:60:F9:F4:D1:0C:21:DE:B0:BC:D9:3B:06:06:96:75:4C:61
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 1CC2E390
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ua6QYPn00Qwh3rC82TsGBpZ1TGE.roa
Signing time: Wed 06 Apr 2022 20:56:00 +0000
ROA not before: Wed 06 Apr 2022 20:56:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60860
IP address blocks: 109.72.112.0/21 maxlen: 21
109.72.122.0/24 maxlen: 24
185.30.200.0/23 maxlen: 23
185.30.202.0/24 maxlen: 24
89.185.0.0/24 maxlen: 24
93.185.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482534288 (0x1cc2e390)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Apr 6 20:56:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51ae9060f9f4d10c21deb0bcd93b060696754c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:e4:df:df:3c:13:6f:f8:cc:27:63:8f:15:
3f:b4:05:49:27:83:c8:da:ee:3f:bb:95:d9:1a:31:
5a:86:d1:c1:d1:3d:be:fe:b3:ee:1a:29:12:2e:0d:
dc:54:c6:74:fc:84:f7:32:28:6e:1b:24:cc:9c:1d:
0d:07:09:a8:75:e3:04:2a:bc:b5:91:b2:6a:2a:09:
85:46:ad:f9:93:cf:d5:61:e6:ba:8a:6e:93:f2:dd:
1e:c7:87:ab:81:23:c4:8d:3b:08:3a:a9:76:17:16:
54:77:6c:49:64:d1:c0:d5:50:64:81:e6:9b:77:19:
6c:6e:19:df:dc:83:35:31:b1:16:9c:6e:ad:a7:47:
27:3f:7b:df:db:5f:4b:f6:ac:7c:f2:0d:e9:65:bd:
1c:4b:f2:28:35:17:7c:8a:aa:ed:78:d4:9d:42:d3:
ba:96:a9:89:6b:2c:66:bc:c7:1d:b0:01:7f:90:43:
62:3a:11:3b:c6:3d:b5:b0:fa:2d:0a:1e:63:25:9e:
28:00:54:a0:e3:03:6c:cf:d9:37:38:78:94:e2:d6:
df:51:b8:8a:3c:6d:07:bf:e2:08:39:26:23:00:27:
56:c5:b7:da:04:bf:00:38:31:2d:58:1d:1e:7c:09:
98:9a:fd:db:00:10:e8:e5:c4:6f:8b:d8:c8:8d:a1:
cf:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AE:90:60:F9:F4:D1:0C:21:DE:B0:BC:D9:3B:06:06:96:75:4C:61
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Ua6QYPn00Qwh3rC82TsGBpZ1TGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/24
93.185.214.0/24
109.72.112.0/21
109.72.122.0/24
185.30.200.0-185.30.202.255
Signature Algorithm: sha256WithRSAEncryption
60:ba:be:cd:e4:aa:d0:4b:b5:79:f8:da:85:91:43:f0:05:d4:
d0:99:1a:24:a1:5e:57:86:44:34:33:33:f3:31:9c:cf:c2:4a:
06:70:ef:1c:d8:e0:55:38:16:12:46:21:52:0e:46:27:53:c4:
3e:87:c0:62:e5:c2:09:39:3d:9e:15:39:3e:55:4e:e9:81:1f:
f5:6f:8d:c9:ea:c7:66:0c:52:a4:67:60:79:6c:93:2e:34:53:
8a:bf:45:bb:0b:b1:e1:59:ff:74:16:0e:73:b5:ce:bb:b2:8c:
0a:48:43:79:ee:40:48:55:e4:1d:c9:9f:26:74:58:00:01:30:
4c:47:69:9c:b4:65:04:29:bd:4d:d1:7e:c0:32:f9:e5:83:6c:
fc:ad:38:35:a4:c4:cb:1a:86:8e:0b:bd:8a:bc:35:b8:70:c9:
a2:31:88:71:f7:d2:ad:bf:90:ed:eb:46:7b:0a:99:26:10:51:
cf:5f:4f:b1:51:bf:15:48:99:d1:16:3f:f2:a1:1a:d8:af:62:
57:de:89:69:a6:e9:a6:a4:a2:dc:8c:fa:ed:ca:02:97:52:4f:
46:f7:0a:9e:f9:ff:92:bd:79:1b:6a:ef:dc:e0:95:da:ad:c6:
66:d5:f7:d7:be:d1:04:c5:f3:ea:5f:64:13:2e:c3:cd:b1:86:
0e:bc:c6:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org