Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/tu69GhZ4QgJGv3MuyxeO9il6Mk8.roa
File: tu69GhZ4QgJGv3MuyxeO9il6Mk8.roa (raw, json)
Hash identifier: b0u2yHncGp9oRkBcyMFA/kinyiRRJGCVB1K/8YsSQeA=
Subject key identifier: B6:EE:BD:1A:16:78:42:02:46:BF:73:2E:CB:17:8E:F6:29:7A:32:4F
Certificate issuer: /CN=624ad4535ac88dd534199f2a726095af71afe44e
Certificate serial: 0713717B
Authority key identifier: 62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/tu69GhZ4QgJGv3MuyxeO9il6Mk8.roa
Signing time: Thu 24 Mar 2022 10:42:06 +0000
ROA not before: Thu 24 Mar 2022 10:42:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197706
IP address blocks: 185.233.124.0/24 maxlen: 24
185.233.125.0/24 maxlen: 24
185.233.127.0/24 maxlen: 24
185.233.126.0/24 maxlen: 24
185.53.100.0/22 maxlen: 24
109.74.31.0/24 maxlen: 24
109.74.29.0/24 maxlen: 24
109.74.30.0/24 maxlen: 24
109.74.28.0/24 maxlen: 24
31.171.152.0/21 maxlen: 21
31.171.152.0/22 maxlen: 22
31.171.159.0/24 maxlen: 24
31.171.158.0/24 maxlen: 24
31.171.156.0/24 maxlen: 24
31.171.157.0/24 maxlen: 24
45.66.252.0/22 maxlen: 22
194.113.80.0/23 maxlen: 23
194.113.94.0/24 maxlen: 24
45.142.24.0/22 maxlen: 22
2a0d:4a40::/29 maxlen: 29
2a04:27c0::/29 maxlen: 29
2a0e:d4c0::/29 maxlen: 29
2a0d:42c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118714747 (0x713717b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624ad4535ac88dd534199f2a726095af71afe44e
Validity
Not Before: Mar 24 10:42:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6eebd1a1678420246bf732ecb178ef6297a324f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ea:62:d1:9e:96:7c:2a:ab:b1:72:14:e1:67:
86:09:05:a8:dc:3c:ee:56:dd:b5:9c:0b:ca:a2:40:
51:61:cd:2e:85:ea:21:1a:1f:92:c9:69:45:9d:6a:
d4:35:dc:cb:ef:fc:09:18:16:af:ae:3b:9d:82:1a:
d5:8b:03:c7:7d:1f:af:16:f8:5f:95:34:3c:5a:88:
85:a5:d8:78:65:50:4c:2a:57:e0:e5:ff:38:d3:e2:
e4:aa:29:a0:f5:3a:4a:3d:6c:43:d5:dd:e2:bc:8c:
84:3f:ef:5b:3d:67:3a:f1:bc:c9:6c:7e:1b:32:71:
27:5f:17:f3:d5:97:4f:4e:60:fc:95:5c:97:d3:f6:
a3:3a:10:ef:79:80:52:04:fa:cc:0d:d7:eb:62:70:
e5:c7:b3:44:6e:2e:c2:0a:7a:ed:8d:7a:f2:47:02:
5b:d9:a5:ac:33:74:19:d5:e4:68:98:2a:70:96:32:
11:e8:91:80:fd:84:a4:43:fc:99:70:61:40:f6:a1:
4b:f4:6a:71:f6:33:b4:40:9f:fc:a9:ed:07:7a:35:
8a:8a:20:55:42:a8:a0:43:5d:46:22:fb:21:4e:3a:
4f:af:7c:fb:03:16:41:db:56:1f:2f:aa:51:42:f2:
62:0a:67:d0:31:a5:ba:0b:96:f3:1f:57:05:c1:ad:
61:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:EE:BD:1A:16:78:42:02:46:BF:73:2E:CB:17:8E:F6:29:7A:32:4F
X509v3 Authority Key Identifier:
keyid:62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/tu69GhZ4QgJGv3MuyxeO9il6Mk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.171.152.0/21
45.66.252.0/22
45.142.24.0/22
109.74.28.0/22
185.53.100.0/22
185.233.124.0/22
194.113.80.0/23
194.113.94.0/24
IPv6:
2a04:27c0::/29
2a0d:42c0::/29
2a0d:4a40::/29
2a0e:d4c0::/29
Signature Algorithm: sha256WithRSAEncryption
28:9d:36:90:1c:33:bb:6d:d1:3a:72:07:8b:53:84:49:56:ed:
35:1a:21:8b:71:9b:9c:06:cd:e3:19:51:40:7e:e3:48:89:f3:
e1:11:cb:9f:ff:2c:8b:ff:67:bf:aa:c1:53:71:6c:45:f7:c0:
70:33:4a:4a:a4:42:15:81:cc:f7:f9:0b:f0:e8:87:57:91:24:
ab:7c:36:7d:14:57:ef:d2:b5:08:56:2c:fe:3f:cc:4b:7a:97:
c3:e8:82:57:fd:5e:7f:c2:a8:e9:d5:e5:88:1a:f2:f7:04:4c:
b4:4b:35:0f:83:7f:83:7e:06:e0:1f:67:57:32:71:aa:25:da:
1b:47:b6:f2:38:19:36:8e:1b:da:71:90:e0:ba:ef:3a:89:22:
b7:23:37:56:27:48:48:69:24:06:21:0f:62:e2:95:45:14:0c:
54:c2:cb:ae:f3:fc:88:03:dc:b9:76:f7:b4:29:69:2b:67:02:
b5:18:ef:7b:63:7f:73:5e:74:fa:c0:64:68:32:86:c8:b8:31:
5e:01:43:93:d8:1a:86:ae:8a:3e:7e:65:9b:5c:99:35:cb:71:
3e:07:7d:9d:0c:ad:2d:94:9b:1e:7d:8b:27:cc:9f:e9:af:4e:
bc:fd:0d:b6:c5:f2:53:dc:00:f3:56:ac:b4:ed:bc:85:6f:ae:
80:a0:25:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:49 2025 by rpki-client