Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/Q29DVpQsWZD0u2TWh0mOaO1Z-eM.roa
File: Q29DVpQsWZD0u2TWh0mOaO1Z-eM.roa (raw, json)
Hash identifier: uDLQ5hmWj17AeE5P5sGlHZFu6+SD7swSrp33TDAJAlQ=
Subject key identifier: 43:6F:43:56:94:2C:59:90:F4:BB:64:D6:87:49:8E:68:ED:59:F9:E3
Certificate issuer: /CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Certificate serial: 018322636949878507F05FFFEBDFBEFC5A8D
Authority key identifier: 5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/Q29DVpQsWZD0u2TWh0mOaO1Z-eM.roa
Signing time: Fri 09 Sep 2022 13:14:43 +0000
ROA not before: Fri 09 Sep 2022 13:14:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61400
IP address blocks: 77.220.216.0/21 maxlen: 24
62.76.24.0/22 maxlen: 24
91.107.85.0/24 maxlen: 24
91.107.84.0/24 maxlen: 24
91.107.86.0/24 maxlen: 24
91.107.86.0/23 maxlen: 24
185.126.92.0/22 maxlen: 24
185.62.103.0/24 maxlen: 24
46.21.252.0/22 maxlen: 24
62.76.112.0/22 maxlen: 24
185.111.216.0/23 maxlen: 24
185.111.219.0/24 maxlen: 24
185.111.218.0/24 maxlen: 24
212.8.232.0/22 maxlen: 24
89.248.236.0/24 maxlen: 24
185.40.28.0/22 maxlen: 24
31.200.248.0/21 maxlen: 24
62.76.88.0/22 maxlen: 24
91.227.34.0/23 maxlen: 24
62.76.100.0/22 maxlen: 24
2a03:220::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:63:69:49:87:85:07:f0:5f:ff:eb:df:be:fc:5a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Validity
Not Before: Sep 9 13:14:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=436f4356942c5990f4bb64d687498e68ed59f9e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:13:38:fc:4d:9b:b6:43:54:9d:1a:d7:f3:35:
85:3b:6a:ba:92:a2:fd:4a:3a:a2:cb:3d:f2:58:c8:
f0:4c:4b:7b:5d:af:47:39:f7:83:50:10:40:c9:97:
25:89:ad:4a:cd:d3:63:06:1e:2e:dd:7e:e1:2d:31:
3b:19:22:9d:c1:1f:f3:83:32:aa:48:c7:45:01:2a:
89:21:15:ad:9e:e0:b7:a6:cd:63:dd:18:ad:5d:8a:
84:43:dc:fe:d5:15:d4:a7:99:f1:92:56:49:09:08:
52:13:72:6c:95:f5:d0:bd:be:3d:75:3d:27:e2:57:
48:96:53:a9:63:c0:e8:9c:48:e0:35:6a:df:5a:85:
6e:26:c6:ff:f6:2a:7f:f4:48:f6:26:cd:d6:4d:be:
8f:a5:3d:cc:5d:a0:8e:fd:93:97:a2:50:a0:97:00:
34:01:29:32:be:64:41:cf:11:ad:63:9a:92:4c:6f:
d4:e2:09:67:28:d6:25:75:6c:7c:88:48:9e:fe:8d:
2f:b6:b2:9a:be:b4:3c:2e:a8:8a:ba:da:af:7d:57:
77:36:51:b0:fe:0b:9e:6e:13:bd:49:09:2c:fb:29:
b6:a1:58:62:c6:c6:2a:06:ec:d9:c1:35:86:16:2e:
1e:fe:98:ee:bc:bc:5d:31:26:56:bd:60:f1:b7:7c:
05:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6F:43:56:94:2C:59:90:F4:BB:64:D6:87:49:8E:68:ED:59:F9:E3
X509v3 Authority Key Identifier:
keyid:5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/Q29DVpQsWZD0u2TWh0mOaO1Z-eM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/XaQypOw7CsTKTk7OwOn01GtJevA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.200.248.0/21
46.21.252.0/22
62.76.24.0/22
62.76.88.0/22
62.76.100.0/22
62.76.112.0/22
77.220.216.0/21
89.248.236.0/24
91.107.84.0/22
91.227.34.0/23
185.40.28.0/22
185.62.103.0/24
185.111.216.0/22
185.126.92.0/22
212.8.232.0/22
IPv6:
2a03:220::/32
Signature Algorithm: sha256WithRSAEncryption
2a:7d:5b:17:d5:a5:a0:d0:3f:c7:0e:30:e8:4a:0e:cc:2c:8c:
03:bc:8b:7a:a6:78:f6:81:21:2d:15:6e:19:b3:39:fd:fb:1e:
83:ba:3d:0a:12:e0:e5:61:03:44:04:b9:71:46:73:5a:ff:eb:
8a:6d:bb:63:19:6f:7a:7a:66:0a:a2:dc:e7:33:22:5b:57:9d:
1d:fc:a5:26:38:b2:90:a1:90:b3:e0:05:56:32:42:75:12:9a:
3d:2d:6c:15:33:1f:4e:38:2f:63:1b:ba:30:dd:c4:d6:ed:8d:
59:ec:98:4e:2e:2d:3a:c9:7d:78:f3:08:cf:12:c5:45:6b:a8:
b0:00:0d:fa:19:c8:af:c9:dc:50:18:5e:b4:53:4b:ff:c0:d9:
ed:7f:30:fa:5d:bb:0b:f7:7e:75:8d:39:d4:3e:46:9f:1f:17:
1e:3c:1d:37:21:0c:52:19:e2:eb:44:b3:f4:f6:50:2b:e4:ce:
7d:c5:b3:79:c5:39:28:0c:55:fe:25:d3:b5:cd:48:65:51:a8:
dc:21:88:8c:26:ec:0c:fe:69:6d:cf:4e:84:47:d7:fe:18:d6:
bc:62:2b:7c:5a:7d:40:db:6e:7f:b8:58:1d:1f:e3:92:b8:15:
2d:19:4e:51:21:3d:52:cd:3a:c7:f7:a9:e5:3e:46:b5:20:91:
8f:6e:8c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:48 2024 by rpki-client on console-ams.rpki-client.org