Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Dl4LZ2X5fZhA27LcpIxp8JYvc78.roa
File: Dl4LZ2X5fZhA27LcpIxp8JYvc78.roa (raw, json)
Hash identifier: 1Oi9j8CAs070jRrz2UklAPrY+Cth9blIpc254/ciatM=
Subject key identifier: 0E:5E:0B:67:65:F9:7D:98:40:DB:B2:DC:A4:8C:69:F0:96:2F:73:BF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1F230756
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Dl4LZ2X5fZhA27LcpIxp8JYvc78.roa
Signing time: Tue 21 Jun 2022 07:37:44 +0000
ROA not before: Tue 21 Jun 2022 07:37:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 212.87.204.0/24 maxlen: 24
185.216.71.0/24 maxlen: 24
79.110.62.0/24 maxlen: 24
185.218.138.0/24 maxlen: 24
185.225.73.0/24 maxlen: 24
185.246.220.0/24 maxlen: 24
94.154.173.0/24 maxlen: 24
109.206.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 522389334 (0x1f230756)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 21 07:37:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e5e0b6765f97d9840dbb2dca48c69f0962f73bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:18:b6:7e:ef:92:3a:4a:cc:cd:ce:14:46:ad:
23:91:3a:ae:2a:f3:c0:4f:27:d7:f3:48:39:5e:36:
bf:e9:28:60:4f:3d:68:ee:39:bc:c7:3f:3f:87:78:
80:60:78:26:53:71:ed:7a:00:71:d9:d0:ae:56:28:
ec:35:53:d9:e7:0e:79:d4:62:a7:e9:b2:53:59:35:
62:7e:8a:74:55:a7:d7:9e:af:c7:d9:e2:79:9a:30:
32:f0:e2:b2:09:e2:16:34:8f:6b:d9:58:51:82:c9:
99:88:c3:df:4c:b9:51:2b:22:b8:2a:36:70:4c:2e:
b1:1e:81:be:cc:17:a8:ad:a5:b3:28:e4:ec:43:17:
d8:42:b1:cb:7b:f3:13:37:a9:38:00:25:4a:76:f3:
7d:fe:86:b6:6a:93:d9:d6:72:f5:f2:21:7f:a3:4c:
10:83:dd:09:37:6d:7b:0c:22:07:54:be:f4:9e:bc:
cc:a8:9b:6c:73:b1:72:d5:23:df:6a:e7:84:53:21:
90:8c:3c:f1:5f:77:39:d6:f5:09:b3:41:f4:fe:29:
51:97:aa:2d:fe:53:c4:9a:fd:43:63:4f:ba:e3:cf:
f6:ca:38:a1:b3:72:df:6c:5f:e8:11:6e:b9:36:cd:
fe:53:5e:42:11:5f:f6:c4:61:03:47:d9:a0:b3:cd:
b4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5E:0B:67:65:F9:7D:98:40:DB:B2:DC:A4:8C:69:F0:96:2F:73:BF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Dl4LZ2X5fZhA27LcpIxp8JYvc78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.62.0/24
94.154.173.0/24
109.206.240.0/24
185.216.71.0/24
185.218.138.0/24
185.225.73.0/24
185.246.220.0/24
212.87.204.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ac:78:7c:d7:fc:b5:d7:92:a7:7e:5d:d9:69:14:9f:c8:d7:
ed:e0:aa:5a:ca:84:dc:be:d4:3b:35:72:be:c8:7b:dd:e5:07:
fb:68:1c:9b:49:3a:dc:27:58:20:e4:a5:3d:fb:80:ee:0a:03:
f6:2e:0c:a4:27:9c:c5:59:4c:34:e4:69:a0:fe:45:f0:15:88:
c4:13:d1:4b:2a:72:31:fe:8e:e6:a4:92:c6:25:6c:78:c7:3c:
ec:6c:46:2c:5d:41:83:92:d9:d8:bf:c0:f4:94:62:ee:99:99:
e4:7f:43:9b:b2:05:b3:f8:76:92:7d:77:56:42:92:f9:ac:2a:
ad:b5:8f:03:35:7b:8a:6f:12:6b:4b:52:90:97:56:8b:08:3e:
20:7c:fa:21:75:31:85:7a:68:8b:e3:f7:16:3d:f1:69:68:9f:
f8:1b:ec:d4:13:6c:99:b1:3d:e1:25:1e:23:6a:c4:5c:04:b9:
26:78:d8:15:2c:78:e7:73:39:df:74:90:a2:f6:f2:c9:55:ee:
30:12:b6:b4:49:b2:7a:2b:39:14:43:ae:aa:c4:12:cf:ef:c3:
f3:73:f6:91:f7:e3:f1:87:30:06:4e:db:75:8d:5d:fa:91:37:
26:85:35:2e:fb:bf:ae:f4:22:0e:08:e1:ce:8e:a6:31:94:15:
11:83:58:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:33 2023 by rpki-client on console-ams.rpki-client.org