Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/7iSBNx2pndYFEa7EOFal7OXx8yM.roa
File: 7iSBNx2pndYFEa7EOFal7OXx8yM.roa (raw, json)
Hash identifier: Xo+4bQMF1VySVbHRcjDPA4vNgI6SxtjKILHTsRYrUCk=
Subject key identifier: EE:24:81:37:1D:A9:9D:D6:05:11:AE:C4:38:56:A5:EC:E5:F1:F3:23
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 37F288E1
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/7iSBNx2pndYFEa7EOFal7OXx8yM.roa
Signing time: Tue 29 Mar 2022 07:55:35 +0000
ROA not before: Tue 29 Mar 2022 07:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48854
IP address blocks: 185.134.28.0/22 maxlen: 22
195.178.14.0/23 maxlen: 23
185.21.40.0/22 maxlen: 22
212.97.132.0/22 maxlen: 22
212.97.140.0/22 maxlen: 22
94.143.8.0/21 maxlen: 21
93.191.152.0/21 maxlen: 21
93.191.152.0/22 maxlen: 22
217.61.236.0/22 maxlen: 22
93.191.156.0/24 maxlen: 24
93.191.158.0/24 maxlen: 24
93.191.157.0/24 maxlen: 24
89.188.72.0/21 maxlen: 21
185.25.141.0/24 maxlen: 24
94.231.96.0/20 maxlen: 20
94.231.103.0/24 maxlen: 24
185.223.24.0/22 maxlen: 22
185.221.36.0/22 maxlen: 22
212.237.248.0/23 maxlen: 23
194.150.112.0/22 maxlen: 22
185.20.204.0/22 maxlen: 22
185.20.206.0/23 maxlen: 23
2a06:eac0::/29 maxlen: 48
2a02:2338::/32 maxlen: 48
2a02:2339:4000::/34 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938641633 (0x37f288e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Mar 29 07:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee2481371da99dd60511aec43856a5ece5f1f323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:27:1a:86:a9:79:b1:44:27:f7:ce:db:5d:a4:
fb:03:bc:02:5f:ac:00:86:7d:8e:93:54:6f:a6:67:
d7:5d:d3:c9:15:22:dc:52:0b:3d:f7:15:37:9b:88:
a3:2a:94:13:c6:5e:71:8a:40:38:2b:cc:e6:2e:04:
a8:ff:2e:f8:9b:0e:ca:93:8c:d0:64:9a:15:cb:35:
9b:f8:31:68:63:9c:5e:ab:48:1b:f6:2c:88:03:a4:
20:9e:86:d5:35:0d:b1:89:c6:d2:b1:fc:89:70:07:
c9:09:8b:58:c9:1b:c8:4c:99:bd:4b:54:3c:1b:83:
ea:28:d9:7c:74:b6:e5:4f:cd:71:c8:65:52:58:08:
94:44:a2:77:67:6d:bb:b3:17:c3:e4:1f:36:32:2e:
f5:d8:51:d2:29:a8:34:6e:a1:50:00:0e:87:f3:89:
a3:8c:36:0d:4f:58:46:1c:75:22:82:7a:b2:b6:84:
ce:4a:27:d8:21:b4:c0:ad:39:a9:e9:05:cd:23:3f:
86:cc:87:fc:28:d1:78:c5:1f:38:87:c4:4e:f5:27:
4c:d5:f9:a8:37:19:b2:bb:72:5d:fc:1e:1d:aa:5a:
61:27:44:fe:5c:6c:79:86:dd:82:7d:15:1c:3b:cd:
c2:e6:f5:7c:5b:2c:9d:7c:92:a9:46:e1:6c:2f:de:
9c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:24:81:37:1D:A9:9D:D6:05:11:AE:C4:38:56:A5:EC:E5:F1:F3:23
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/7iSBNx2pndYFEa7EOFal7OXx8yM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.188.72.0/21
93.191.152.0/21
94.143.8.0/21
94.231.96.0/20
185.20.204.0/22
185.21.40.0/22
185.25.141.0/24
185.134.28.0/22
185.221.36.0/22
185.223.24.0/22
194.150.112.0/22
195.178.14.0/23
212.97.132.0/22
212.97.140.0/22
212.237.248.0/23
217.61.236.0/22
IPv6:
2a02:2338::/32
2a02:2339:4000::/34
2a06:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
a3:63:de:d9:36:f3:98:32:a9:71:50:0a:25:36:57:f4:75:64:
f8:6c:9b:e0:cc:df:16:87:ae:27:c6:7e:c6:5e:fd:79:12:ac:
01:82:ec:65:16:59:70:67:94:62:af:4f:8c:0e:8f:dd:8f:56:
0b:ac:e6:ce:f8:7c:b7:03:4c:f6:90:85:0d:23:c6:b2:44:ad:
9f:22:47:20:ea:e2:b9:73:33:2d:53:65:34:78:76:33:2d:53:
50:99:3a:68:ee:61:be:b4:61:be:2e:c3:62:15:66:12:39:1d:
3a:ed:c1:ed:c3:a2:d1:63:ba:a4:4f:6d:53:c7:38:3c:a6:18:
92:34:5a:54:16:36:7b:d1:e6:27:77:b8:6a:fe:79:af:ac:f7:
31:ae:15:21:61:be:82:b3:d9:38:84:db:da:a0:6d:fc:da:81:
5c:06:36:65:7f:1c:b3:04:59:d4:3e:8b:69:45:dd:58:1c:18:
ad:ea:7b:7e:18:16:69:3f:f0:aa:81:22:7c:07:05:5e:d4:83:
c7:5a:05:c5:8c:99:4b:a5:3a:ee:1b:28:e9:14:9c:0f:21:df:
92:05:75:2d:81:db:3e:2b:17:2e:ed:68:99:3b:04:00:22:26:
e1:81:12:6e:c5:af:75:9b:3f:83:e4:20:e7:1c:6a:63:ae:9a:
f7:87:12:13
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:51 2024 by rpki-client on console-ams.rpki-client.org