Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/bD0AdHRTpFJv_x3D7OIcXVbJ0MQ.roa
File: bD0AdHRTpFJv_x3D7OIcXVbJ0MQ.roa (raw, json)
Hash identifier: axaQBmFsYcRxPNncgFMe+a69+lRE9vjGF1NV3XBJUS8=
Subject key identifier: 6C:3D:00:74:74:53:A4:52:6F:FF:1D:C3:EC:E2:1C:5D:56:C9:D0:C4
Certificate issuer: /CN=624c494f56193b4e9adf3db72e4f01978c587f18
Certificate serial: 0474846A
Authority key identifier: 62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/bD0AdHRTpFJv_x3D7OIcXVbJ0MQ.roa
Signing time: Sat 05 Mar 2022 12:57:06 +0000
ROA not before: Sat 05 Mar 2022 12:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204720
IP address blocks: 185.31.113.0/24 maxlen: 24
91.231.238.0/24 maxlen: 24
91.238.111.0/24 maxlen: 24
151.236.110.0/24 maxlen: 24
151.236.108.0/24 maxlen: 24
151.236.112.0/24 maxlen: 24
151.236.118.0/24 maxlen: 24
151.236.117.0/24 maxlen: 24
151.236.116.0/24 maxlen: 24
151.236.115.0/24 maxlen: 24
151.236.114.0/24 maxlen: 24
151.236.124.0/24 maxlen: 24
151.236.121.0/24 maxlen: 24
151.236.120.0/24 maxlen: 24
151.236.119.0/24 maxlen: 24
151.236.127.0/24 maxlen: 24
151.236.126.0/24 maxlen: 24
151.236.71.0/24 maxlen: 24
151.236.70.0/24 maxlen: 24
151.236.69.0/24 maxlen: 24
151.236.68.0/24 maxlen: 24
151.236.66.0/24 maxlen: 24
151.236.82.0/24 maxlen: 24
151.236.98.0/24 maxlen: 24
151.236.92.0/24 maxlen: 24
151.236.105.0/24 maxlen: 24
151.236.103.0/24 maxlen: 24
151.236.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74744938 (0x474846a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624c494f56193b4e9adf3db72e4f01978c587f18
Validity
Not Before: Mar 5 12:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c3d00747453a4526fff1dc3ece21c5d56c9d0c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f5:7d:06:04:8a:07:77:a5:eb:f9:ce:05:10:
37:d8:6c:f3:c5:a5:30:ef:61:c7:64:bb:4c:32:26:
41:f9:6c:55:8f:8c:e6:de:80:81:12:e1:6a:fd:f6:
c6:3c:6f:9c:ee:5a:60:f6:6e:fc:34:9a:ea:9c:51:
eb:18:eb:48:7e:93:c4:62:db:c1:7d:1b:97:47:5b:
2e:27:83:1f:7b:33:11:3e:d4:20:2f:07:1c:1b:79:
69:9f:be:33:e4:c9:70:1d:58:5e:dc:a0:5d:4f:b4:
a3:c7:31:75:a3:29:3e:95:5b:74:65:98:50:87:0c:
41:f9:51:e0:18:81:3d:99:45:1e:95:4b:de:d2:a4:
ba:58:cc:24:1e:28:bd:a6:9a:44:98:7a:7f:7f:7b:
54:c6:fe:e2:ce:5b:05:9e:c9:13:9b:44:cf:4c:c7:
bb:a8:9d:e3:f3:7c:5e:38:6c:15:67:e7:4f:ae:7c:
04:03:56:f3:b3:65:05:87:62:71:67:19:66:5d:4d:
4b:d9:5d:01:ab:03:c3:de:f9:0a:f5:20:6e:72:85:
b0:fe:53:0e:b2:ce:68:6e:c2:4e:b6:f2:24:9b:3e:
6e:14:72:f2:2a:fe:61:5f:95:35:c3:76:a4:2d:1e:
ae:c3:44:c7:cd:b4:32:80:71:b2:43:d3:9f:37:44:
b0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3D:00:74:74:53:A4:52:6F:FF:1D:C3:EC:E2:1C:5D:56:C9:D0:C4
X509v3 Authority Key Identifier:
keyid:62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/bD0AdHRTpFJv_x3D7OIcXVbJ0MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/YkxJT1YZO06a3z23Lk8Bl4xYfxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.238.0/24
91.238.111.0/24
151.236.66.0/24
151.236.68.0/22
151.236.82.0/24
151.236.92.0/24
151.236.98.0/24
151.236.101.0/24
151.236.103.0/24
151.236.105.0/24
151.236.108.0/24
151.236.110.0/24
151.236.112.0/24
151.236.114.0-151.236.121.255
151.236.124.0/24
151.236.126.0/23
185.31.113.0/24
Signature Algorithm: sha256WithRSAEncryption
71:e4:48:dc:4b:25:1a:4c:d4:c0:f8:9f:38:c3:45:95:fb:36:
0b:3e:68:5d:ad:f3:1c:cd:4d:54:b4:f8:7e:af:84:94:ff:c9:
e7:94:bc:e7:f2:3a:68:ec:00:61:99:33:a2:cf:b4:e4:65:69:
89:01:df:89:67:15:81:fe:42:8a:ac:75:b2:e7:70:24:1f:12:
15:dd:8f:4e:07:b4:33:a8:65:5f:5f:7d:23:64:a0:1f:02:50:
db:10:29:dd:b5:69:f5:71:d2:27:14:eb:92:15:6e:d9:c9:a1:
bc:8d:7e:fe:25:7f:a2:a4:9c:6f:e1:59:9c:27:a8:f0:38:1b:
b6:a8:05:fa:db:f9:96:46:86:bf:48:9b:50:ba:b8:a0:56:13:
45:76:99:c5:9f:d2:a9:85:83:a2:42:fd:c9:f5:1f:e9:99:82:
c5:bf:b5:cd:00:3f:aa:09:8c:93:37:95:65:a5:af:63:81:e6:
32:8b:b2:2c:ce:74:1b:dd:60:8e:dc:e7:d2:a3:34:42:d0:c0:
ca:50:7d:6c:13:b0:07:20:ca:fd:0f:dc:ff:73:dc:40:e2:bf:
5d:09:9e:c6:62:30:af:be:08:89:87:f1:97:2b:b8:1e:cd:aa:
1b:40:07:bf:d2:8c:91:01:61:34:f9:71:da:17:d2:be:ec:a0:
5a:4d:36:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:50 2024 by rpki-client on console-fra.rpki-client.org