Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/777c0a-ca44-43ec-ab79-5e0afec136b1/1/1-n_9z3jeJ1JCGvzowz7Uquvht8Y.roa
File: 1-n_9z3jeJ1JCGvzowz7Uquvht8Y.roa (raw, json)
Hash identifier: nwwD0tes3mrpJZMw/bw3ooFKKkTqYY2F0PbN+U2Uk8s=
Subject key identifier: FA:7F:FD:CF:78:DE:27:52:42:1A:FC:E8:C3:3E:D4:AA:EB:E1:B7:C6
Certificate issuer: /CN=0cce8832d02949801f1198e9d13bb18ed5832d0c
Certificate serial: 0182A7263434C0511FB01667D2C5E7A9C728
Authority key identifier: 0C:CE:88:32:D0:29:49:80:1F:11:98:E9:D1:3B:B1:8E:D5:83:2D:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DM6IMtApSYAfEZjp0TuxjtWDLQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/777c0a-ca44-43ec-ab79-5e0afec136b1/1/1-n_9z3jeJ1JCGvzowz7Uquvht8Y.roa
Signing time: Tue 16 Aug 2022 14:54:35 +0000
ROA not before: Tue 16 Aug 2022 14:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198641
IP address blocks: 185.58.230.0/24 maxlen: 24
185.58.231.0/24 maxlen: 24
185.58.228.0/24 maxlen: 24
185.58.229.0/24 maxlen: 24
37.205.40.0/24 maxlen: 24
37.205.40.0/22 maxlen: 22
37.205.44.0/24 maxlen: 24
37.205.40.0/21 maxlen: 21
37.205.42.0/24 maxlen: 24
37.205.46.0/24 maxlen: 24
37.205.45.0/24 maxlen: 24
2a02:4220::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a7:26:34:34:c0:51:1f:b0:16:67:d2:c5:e7:a9:c7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cce8832d02949801f1198e9d13bb18ed5832d0c
Validity
Not Before: Aug 16 14:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa7ffdcf78de2752421afce8c33ed4aaebe1b7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d7:03:5e:2c:05:a3:d5:68:8e:9f:06:78:f8:
a6:06:0f:c4:37:8d:fa:2d:2c:40:3d:cc:f6:75:9f:
70:27:07:da:05:c6:6a:c5:0c:da:e2:bc:8e:5a:57:
77:99:63:0a:3c:9c:d3:4f:e1:75:85:05:a7:e6:1f:
37:4a:c3:3a:d5:cf:3f:d6:1a:38:60:dc:c8:51:54:
fc:40:71:7b:02:37:77:dc:3a:70:0b:53:33:f6:d7:
89:39:5a:99:c7:77:0d:b4:f0:0f:29:83:d7:01:e5:
5e:76:c5:b5:f2:b0:cd:fd:c2:fc:84:c5:b7:de:c3:
4a:3e:36:8b:63:c9:b1:81:09:46:c1:9a:09:2e:36:
eb:3e:ff:de:c3:56:11:0f:e4:4f:4f:a8:c3:61:9c:
7e:01:f4:3d:35:50:2d:db:f1:7a:5d:cc:5e:e9:73:
df:37:b3:c4:fd:90:c5:12:89:3c:ca:6a:2f:40:88:
98:64:7a:ea:bc:09:c1:45:c7:1a:cc:ba:8f:54:c1:
0e:b2:b0:9c:51:a5:65:93:f3:40:2f:1b:07:47:ad:
62:c5:84:7d:4c:f5:97:40:84:46:f6:7c:2f:03:0f:
38:72:53:15:ee:b9:20:b0:d7:23:3e:b1:44:4f:5a:
22:aa:89:69:79:e2:c1:c0:33:aa:5f:3e:d7:da:9e:
2c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7F:FD:CF:78:DE:27:52:42:1A:FC:E8:C3:3E:D4:AA:EB:E1:B7:C6
X509v3 Authority Key Identifier:
keyid:0C:CE:88:32:D0:29:49:80:1F:11:98:E9:D1:3B:B1:8E:D5:83:2D:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DM6IMtApSYAfEZjp0TuxjtWDLQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/777c0a-ca44-43ec-ab79-5e0afec136b1/1/1-n_9z3jeJ1JCGvzowz7Uquvht8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/777c0a-ca44-43ec-ab79-5e0afec136b1/1/DM6IMtApSYAfEZjp0TuxjtWDLQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.205.40.0/21
185.58.228.0/22
IPv6:
2a02:4220::/32
Signature Algorithm: sha256WithRSAEncryption
29:a0:3d:5a:18:9f:15:ac:19:4c:59:6a:71:c0:85:2a:9a:ba:
1b:8b:54:44:69:ad:a5:7e:df:c4:58:34:16:be:e4:b9:b2:4f:
d8:10:fc:00:66:c7:82:7f:f1:56:ec:b2:96:e8:88:ba:93:7a:
79:54:c6:a9:11:f2:59:85:cb:7e:3a:a9:d2:12:39:ad:72:82:
f5:8c:47:61:c1:ea:14:e6:d9:56:93:43:48:d3:be:8e:80:c5:
5d:dc:e3:b7:0b:c6:0f:f3:84:38:f2:b2:37:8b:b6:3c:68:85:
5a:0f:48:6f:17:3a:ea:d3:7b:74:1d:f4:6f:41:50:76:c4:02:
9a:98:d8:4a:01:66:3c:05:0c:5d:67:c9:77:10:69:90:9b:d6:
f6:1a:77:9f:d4:01:36:6a:63:93:f2:07:e4:a4:97:22:17:a0:
b6:cd:b5:8e:11:02:e4:aa:59:f1:b2:a2:79:04:c3:90:97:d5:
5a:b9:45:86:5d:f2:8f:98:d5:8c:f9:42:d2:9e:d5:ce:33:22:
7b:93:a2:e6:46:44:87:e7:39:0d:9d:9b:82:fa:02:dc:5e:82:
62:b5:b9:bc:6e:e8:6f:b0:dd:a4:75:2f:e5:6c:76:f9:45:9c:
54:c8:df:8d:2d:da:be:3a:e4:be:96:2f:bb:9a:2d:9b:99:6d:
65:26:2e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:08 2024 by rpki-client on console-fra.rpki-client.org