Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/2r0AqR2tKFd3OJDDBtAAIorg7Ww.roa
File: 2r0AqR2tKFd3OJDDBtAAIorg7Ww.roa (raw, json)
Hash identifier: AKKzAN6rk4TZ1gd1hwemJ8E80CDrAHyXLSrTEBZ6MyA=
Subject key identifier: DA:BD:00:A9:1D:AD:28:57:77:38:90:C3:06:D0:00:22:8A:E0:ED:6C
Certificate issuer: /CN=c67e2a46e34f491433c8b62f319b902bddfde831
Certificate serial: 03BB557D
Authority key identifier: C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/2r0AqR2tKFd3OJDDBtAAIorg7Ww.roa
Signing time: Sat 01 Jan 2022 06:57:35 +0000
ROA not before: Sat 01 Jan 2022 06:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213371
IP address blocks: 185.209.15.0/24 maxlen: 24
37.49.230.0/24 maxlen: 24
37.49.229.0/24 maxlen: 24
37.49.228.0/24 maxlen: 24
77.247.109.0/24 maxlen: 24
185.53.88.0/24 maxlen: 24
185.53.89.0/24 maxlen: 24
37.49.226.0/24 maxlen: 24
37.49.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62608765 (0x3bb557d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e2a46e34f491433c8b62f319b902bddfde831
Validity
Not Before: Jan 1 06:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dabd00a91dad2857773890c306d000228ae0ed6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f3:c5:64:55:06:d9:48:5b:3a:eb:67:1e:11:
fc:3b:57:ad:ce:83:86:9d:29:26:4c:3c:59:31:71:
df:65:57:d7:2a:7e:93:e3:a6:36:e8:0a:49:6a:b3:
ae:cf:8c:9d:f0:21:e5:b8:2c:d1:5d:c4:df:ef:0c:
cc:74:0b:82:fc:9a:1a:44:e4:22:db:74:38:7c:09:
fa:64:60:18:e5:aa:f1:25:19:7a:f1:61:da:12:1f:
16:02:76:68:e8:99:03:5e:1d:c8:9b:4a:ba:a5:14:
26:a9:55:7e:38:cc:cf:7b:09:de:56:6f:68:bb:d7:
d2:a8:fb:3f:af:de:4f:d1:e9:b3:af:f3:10:d1:76:
8a:55:ad:d1:01:f1:ee:74:32:79:4a:82:d0:58:fd:
7a:2f:d2:4f:53:af:87:65:9e:16:00:aa:b2:b3:b3:
bc:d3:15:bb:4b:d3:fc:da:65:4c:20:a1:08:92:be:
c6:7b:ee:7d:f9:12:86:c2:1e:41:8f:32:ea:c1:b6:
be:0b:07:52:9e:a1:25:b6:82:cd:e6:90:f9:d8:6e:
70:e6:05:4c:6b:98:62:49:11:c9:98:4a:6c:b1:21:
71:24:df:58:3b:d0:53:24:0a:2c:e1:90:01:5b:98:
c2:df:c3:08:95:a9:6a:4d:de:99:18:2b:70:3d:23:
35:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BD:00:A9:1D:AD:28:57:77:38:90:C3:06:D0:00:22:8A:E0:ED:6C
X509v3 Authority Key Identifier:
keyid:C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/2r0AqR2tKFd3OJDDBtAAIorg7Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/xn4qRuNPSRQzyLYvMZuQK9396DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.224.0/24
37.49.226.0/24
37.49.228.0-37.49.230.255
77.247.109.0/24
185.53.88.0/23
185.209.15.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:d5:fb:c9:cd:3d:91:a3:2e:ea:86:c3:57:bc:0c:b3:42:db:
51:b6:cb:bd:b1:9d:94:32:22:29:f3:bb:aa:2e:c5:f3:a7:32:
e5:4f:c8:84:ae:63:f6:d4:81:84:9f:40:81:7a:04:bd:9b:33:
e3:01:d5:f2:da:8c:29:fd:04:ed:63:bd:90:e7:a7:1e:75:94:
a7:8a:e2:45:4e:41:d2:7d:41:2f:86:9b:c3:fb:58:3c:61:5a:
a0:fd:84:d4:83:6e:de:50:9e:7b:4b:f7:41:e0:97:5d:09:3d:
18:ea:b5:97:16:24:38:fd:0c:61:af:15:e3:46:c2:96:57:02:
3f:3d:d4:1d:97:b6:cd:df:97:15:c0:95:46:58:86:7d:0e:b3:
37:3d:bb:70:f6:49:21:94:d1:0b:2f:7b:f9:1c:3c:40:4c:22:
6c:77:98:49:a0:85:da:99:2c:de:26:7d:0d:c7:56:f7:8a:42:
7f:11:fb:1a:b2:ed:4e:2d:5e:a5:e5:cb:8e:f0:76:1b:87:86:
55:14:fe:93:cc:89:92:f6:04:ee:8e:87:c0:dd:82:bb:40:14:
25:17:7e:24:54:d4:86:2c:38:d3:01:ab:3e:dd:64:98:30:10:
5c:72:d5:0a:a3:0f:98:40:19:19:f1:da:97:9e:b6:0d:78:c7:
7c:dd:64:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:50 2024 by rpki-client on console-ams.rpki-client.org