Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/1d9PRGhuFU9MhrdPXUtF0yFQTyY.roa
File: 1d9PRGhuFU9MhrdPXUtF0yFQTyY.roa (raw, json)
Hash identifier: 7WZC9i24NbbL2x+Ks9n/7ITZzQV7vK4BsQuW1iMF+Is=
Subject key identifier: D5:DF:4F:44:68:6E:15:4F:4C:86:B7:4F:5D:4B:45:D3:21:50:4F:26
Certificate issuer: /CN=624c494f56193b4e9adf3db72e4f01978c587f18
Certificate serial: 050A08C4
Authority key identifier: 62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/1d9PRGhuFU9MhrdPXUtF0yFQTyY.roa
Signing time: Thu 05 May 2022 12:42:02 +0000
ROA not before: Thu 05 May 2022 12:42:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204720
IP address blocks: 185.31.113.0/24 maxlen: 24
91.231.238.0/24 maxlen: 24
91.238.111.0/24 maxlen: 24
151.236.110.0/24 maxlen: 24
151.236.108.0/24 maxlen: 24
151.236.112.0/24 maxlen: 24
151.236.118.0/24 maxlen: 24
151.236.117.0/24 maxlen: 24
151.236.116.0/24 maxlen: 24
151.236.115.0/24 maxlen: 24
151.236.114.0/24 maxlen: 24
151.236.124.0/24 maxlen: 24
151.236.121.0/24 maxlen: 24
151.236.120.0/24 maxlen: 24
151.236.119.0/24 maxlen: 24
151.236.127.0/24 maxlen: 24
151.236.126.0/24 maxlen: 24
151.236.71.0/24 maxlen: 24
151.236.70.0/24 maxlen: 24
151.236.69.0/24 maxlen: 24
151.236.68.0/24 maxlen: 24
151.236.66.0/24 maxlen: 24
151.236.82.0/24 maxlen: 24
151.236.79.0/24 maxlen: 24
151.236.98.0/24 maxlen: 24
151.236.92.0/24 maxlen: 24
151.236.105.0/24 maxlen: 24
151.236.103.0/24 maxlen: 24
151.236.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84543684 (0x50a08c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624c494f56193b4e9adf3db72e4f01978c587f18
Validity
Not Before: May 5 12:42:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5df4f44686e154f4c86b74f5d4b45d321504f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:26:9f:67:17:94:46:18:6c:2d:d8:63:bb:ce:
72:d7:a6:64:f6:a7:c0:14:c2:a3:eb:de:e5:5f:c3:
4f:99:64:0f:1e:e1:41:68:cb:55:fa:bf:a9:e3:16:
57:ec:2e:69:c4:11:12:29:6b:4b:ba:80:8d:99:79:
61:e6:27:c7:3a:96:45:50:3c:4a:20:f0:6a:fc:89:
50:0a:62:8c:fc:75:eb:10:30:39:d2:33:6f:22:9b:
84:47:61:8d:b0:84:25:be:ac:9c:5c:09:99:77:86:
f3:96:30:26:d6:c2:33:7e:2b:f7:5d:11:f7:8d:a1:
3c:26:82:73:a7:66:fc:fc:bc:26:0b:2c:d0:ae:20:
ba:13:c8:5f:e9:e2:98:83:08:b7:0f:6a:98:d4:0e:
45:de:6b:8f:f2:28:37:20:c1:9d:94:e5:ce:be:ba:
14:57:f7:82:87:69:67:f9:dd:cb:ed:c4:28:dc:12:
2b:b6:cc:c0:5f:67:27:63:f8:54:67:e8:69:dd:27:
d0:b2:00:e2:99:03:5c:7c:79:3b:e5:50:21:6d:1a:
62:04:2b:f4:70:5c:39:85:03:6e:71:0f:3f:56:38:
3e:af:14:79:88:5c:33:87:69:8c:22:da:c1:c4:aa:
4c:99:24:44:0c:ba:61:ab:29:a2:14:a9:a9:0e:0d:
ed:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:DF:4F:44:68:6E:15:4F:4C:86:B7:4F:5D:4B:45:D3:21:50:4F:26
X509v3 Authority Key Identifier:
keyid:62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/1d9PRGhuFU9MhrdPXUtF0yFQTyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/YkxJT1YZO06a3z23Lk8Bl4xYfxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.238.0/24
91.238.111.0/24
151.236.66.0/24
151.236.68.0/22
151.236.79.0/24
151.236.82.0/24
151.236.92.0/24
151.236.98.0/24
151.236.101.0/24
151.236.103.0/24
151.236.105.0/24
151.236.108.0/24
151.236.110.0/24
151.236.112.0/24
151.236.114.0-151.236.121.255
151.236.124.0/24
151.236.126.0/23
185.31.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:9b:30:80:cc:b4:9f:df:5a:61:42:3f:bd:cf:5c:5d:20:97:
e9:77:fd:14:4c:3d:cb:06:df:9f:de:9f:ec:56:fa:86:df:12:
f7:2a:af:4e:f4:65:33:a9:68:ed:72:7a:29:0b:be:84:c5:8a:
38:fa:b4:9d:a6:32:3c:56:ed:a0:22:44:87:07:95:b5:70:c1:
9b:71:3d:a7:92:7a:e9:0d:1c:27:27:8e:74:5d:2e:f0:68:61:
75:4f:4a:c6:f7:74:74:64:0a:2d:36:9e:b6:dc:0d:9d:1f:cf:
7d:ca:83:19:08:bf:98:ec:95:e3:33:92:1c:7f:07:30:4c:26:
8d:75:b0:39:4f:5a:cc:ad:15:e6:18:33:ff:5f:f6:2b:0a:17:
a2:3c:15:6a:da:a7:96:c5:c0:1e:7a:c0:ee:75:60:af:f5:fa:
5e:c0:81:90:3e:3f:54:76:77:a8:70:45:8e:d4:c1:cf:1b:f9:
00:0b:a6:dd:ab:33:a6:8c:86:bc:d5:de:c6:05:af:a7:db:6e:
01:a7:ea:60:8d:35:03:9c:65:82:db:ba:0c:fa:81:81:47:27:
cf:98:47:5f:8b:9f:2d:fd:2d:2c:16:da:d3:d3:3e:5f:78:04:
08:4c:98:93:11:03:4a:c0:79:4c:dc:61:9e:da:e3:48:be:d7:
f5:e2:6f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:50 2024 by rpki-client on console-fra.rpki-client.org