Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/DM7jb5hElfTLBOaZUgtpRga2bL0.roa
File: DM7jb5hElfTLBOaZUgtpRga2bL0.roa (raw, json)
Hash identifier: klL3Hh7H+QgJcvPvov5XQXraJ2plN6O2o0USezaRuBY=
Subject key identifier: 0C:CE:E3:6F:98:44:95:F4:CB:04:E6:99:52:0B:69:46:06:B6:6C:BD
Certificate issuer: /CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Certificate serial: 0595E6AC
Authority key identifier: 27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/DM7jb5hElfTLBOaZUgtpRga2bL0.roa
Signing time: Sat 01 Jan 2022 03:52:51 +0000
ROA not before: Sat 01 Jan 2022 03:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203
IP address blocks: 213.133.80.0/20 maxlen: 24
164.215.0.0/19 maxlen: 24
65.18.208.0/20 maxlen: 24
91.184.192.0/19 maxlen: 24
185.162.16.0/22 maxlen: 24
185.7.156.0/22 maxlen: 24
64.59.208.0/20 maxlen: 24
185.42.32.0/22 maxlen: 24
213.140.192.0/19 maxlen: 24
69.6.0.0/19 maxlen: 24
69.94.112.0/20 maxlen: 24
139.138.192.0/19 maxlen: 24
85.132.224.0/19 maxlen: 24
216.241.128.0/19 maxlen: 24
80.244.16.0/20 maxlen: 24
212.50.96.0/19 maxlen: 24
46.251.96.0/19 maxlen: 24
109.110.224.0/19 maxlen: 24
66.205.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93709996 (0x595e6ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Validity
Not Before: Jan 1 03:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ccee36f984495f4cb04e699520b694606b66cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a2:59:7a:1e:7a:ad:4a:1f:49:c7:36:f9:86:
84:9a:43:97:9b:10:0c:3d:b4:76:06:11:38:64:e1:
0a:e8:f5:c7:8e:b7:31:05:aa:77:ad:d7:0b:c4:60:
0c:94:17:7d:3d:36:7a:f8:d4:f7:0f:be:e0:08:3c:
ec:ed:d5:ad:6f:ea:5f:0d:87:2b:3b:06:f7:02:58:
cf:d3:a3:81:34:dc:4b:cb:98:8c:29:f1:f2:e5:4d:
79:7f:00:bf:6d:38:3a:68:92:39:48:97:bc:b9:f9:
4c:6e:d0:7b:b6:63:a3:9a:d1:ac:a2:4d:f4:8d:82:
b8:6b:ad:a9:8b:c5:ed:bc:94:46:90:19:ad:c3:b7:
38:44:f6:be:2a:da:35:8a:86:48:e6:5c:88:49:52:
e5:8b:f2:90:61:3d:4c:49:46:c9:b4:c6:39:7f:59:
83:2f:24:3f:f6:89:40:58:12:fc:1c:af:3a:96:b2:
28:2e:52:3d:34:99:ef:25:5c:ca:fb:ff:1e:38:ac:
df:1d:82:70:43:55:99:3d:cc:84:80:21:4c:f6:2f:
9b:64:41:ff:23:7e:5d:6e:1e:af:0f:91:e3:a9:52:
df:41:89:cb:31:05:5b:64:ad:4b:d5:9f:b5:de:9c:
84:01:15:7a:e5:67:d3:0d:e4:7f:74:28:46:31:f1:
e7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CE:E3:6F:98:44:95:F4:CB:04:E6:99:52:0B:69:46:06:B6:6C:BD
X509v3 Authority Key Identifier:
keyid:27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/DM7jb5hElfTLBOaZUgtpRga2bL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/JwKaNvwMyi4KjQRfAi38gxpRcwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.96.0/19
64.59.208.0/20
65.18.208.0/20
66.205.64.0/19
69.6.0.0/19
69.94.112.0/20
80.244.16.0/20
85.132.224.0/19
91.184.192.0/19
109.110.224.0/19
139.138.192.0/19
164.215.0.0/19
185.7.156.0/22
185.42.32.0/22
185.162.16.0/22
212.50.96.0/19
213.133.80.0/20
213.140.192.0/19
216.241.128.0/19
Signature Algorithm: sha256WithRSAEncryption
61:42:44:c1:17:7d:9a:1c:ca:4a:b9:8c:17:33:cc:fb:4c:26:
a2:25:ac:7d:a3:5c:f1:e5:57:77:6d:07:d2:db:78:98:40:32:
35:71:fa:97:f7:b1:8f:83:3d:56:32:ab:46:84:a0:b2:2b:73:
ad:b8:5c:73:f3:7c:5c:2f:e5:d0:58:35:74:6f:e8:41:02:4b:
15:da:05:25:19:d4:dd:d8:b5:17:0e:64:68:c8:23:86:da:b6:
7d:28:99:09:48:34:31:cf:73:35:8a:98:1d:1f:c9:5c:fc:09:
14:d8:38:df:82:7c:13:e0:6d:02:71:57:d9:0e:6e:92:8f:a0:
52:42:38:d5:db:0d:b4:30:84:8f:84:95:cd:ea:5e:30:a7:38:
a1:12:6b:df:e9:db:23:e0:2f:77:ec:f1:1a:ef:71:c8:78:05:
a2:ad:d3:1d:90:87:0d:de:82:70:4d:16:b4:65:95:16:5a:2c:
d9:f9:a5:55:3d:3b:6e:1b:fd:07:47:01:b8:a9:59:f3:08:d0:
dd:88:7e:63:50:c4:fe:6e:2b:c5:61:d8:45:ab:c4:46:fb:19:
2c:d5:0e:3c:21:fe:b8:df:2a:3b:32:3d:0a:7a:a3:7c:42:d3:
1d:14:af:59:80:00:d4:b4:c8:f3:91:dd:7a:1b:40:68:33:21:
33:e4:2a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:56 2024 by rpki-client on console-ams.rpki-client.org