Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/eS9mXD9ROli8KHoe1EqWPF1poBw.roa
File: eS9mXD9ROli8KHoe1EqWPF1poBw.roa (raw, json)
Hash identifier: M6c9nbZDNOmLGaWRuzmuRPE8WbiXcN+no0hBMx++Ynk=
Subject key identifier: 79:2F:66:5C:3F:51:3A:58:BC:28:7A:1E:D4:4A:96:3C:5D:69:A0:1C
Certificate issuer: /CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Certificate serial: 018281985F4A38EC190E5B51292ED9F405F9
Authority key identifier: 5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/eS9mXD9ROli8KHoe1EqWPF1poBw.roa
Signing time: Tue 09 Aug 2022 07:53:42 +0000
ROA not before: Tue 09 Aug 2022 07:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61400
IP address blocks: 77.220.216.0/21 maxlen: 21
62.76.24.0/22 maxlen: 22
91.107.85.0/24 maxlen: 24
91.107.84.0/24 maxlen: 24
91.107.86.0/23 maxlen: 23
185.126.92.0/22 maxlen: 24
185.62.103.0/24 maxlen: 24
46.21.252.0/22 maxlen: 22
62.76.112.0/22 maxlen: 32
185.111.216.0/23 maxlen: 23
185.111.219.0/24 maxlen: 24
185.111.218.0/24 maxlen: 24
212.8.232.0/22 maxlen: 22
89.248.236.0/24 maxlen: 24
185.40.28.0/22 maxlen: 22
31.200.248.0/21 maxlen: 21
62.76.88.0/22 maxlen: 22
91.227.34.0/23 maxlen: 23
62.76.100.0/22 maxlen: 22
2a03:220::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:98:5f:4a:38:ec:19:0e:5b:51:29:2e:d9:f4:05:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Validity
Not Before: Aug 9 07:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=792f665c3f513a58bc287a1ed44a963c5d69a01c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7a:0c:5f:b3:de:3e:4f:04:0c:fa:c3:a0:47:
2a:be:4e:a3:ad:74:56:5f:7f:49:51:3a:cb:6e:1d:
34:a7:54:c9:d6:62:c4:1d:ee:33:42:e7:90:95:57:
8d:c8:48:2d:5f:9b:c3:82:af:71:9a:d5:0e:51:3b:
0e:53:f0:a2:30:fa:01:2c:8f:b3:30:1d:43:55:f1:
eb:d4:56:e9:09:a8:c3:ca:fa:aa:eb:e4:4c:3a:e8:
f4:13:7b:bf:fd:9c:e0:7f:e0:4d:fe:ba:ff:72:61:
a6:22:08:05:cd:40:0f:40:3a:e9:0d:77:54:59:79:
85:54:9a:1f:4f:ac:bc:e3:ae:ea:68:4a:c9:a2:be:
32:9b:08:d7:4c:d3:17:04:9f:c8:22:5e:eb:b7:6a:
9d:44:f0:cc:b7:e4:5e:e7:c6:c9:5b:68:84:d6:c5:
f3:35:c7:af:12:56:4c:ae:31:20:8d:f1:51:57:24:
89:a0:56:f4:e0:71:7e:89:ea:39:63:f7:62:0b:03:
b7:65:75:24:be:ec:1e:a4:9a:5c:1a:0c:7a:92:43:
27:33:b0:83:fe:ee:be:7a:ef:d1:78:a8:b1:1a:07:
96:e7:cf:3d:f9:97:f6:e6:8a:f0:77:6f:2d:36:ef:
a5:5f:90:51:69:f6:63:62:77:f4:c5:20:96:d9:06:
f0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2F:66:5C:3F:51:3A:58:BC:28:7A:1E:D4:4A:96:3C:5D:69:A0:1C
X509v3 Authority Key Identifier:
keyid:5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/eS9mXD9ROli8KHoe1EqWPF1poBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/XaQypOw7CsTKTk7OwOn01GtJevA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.200.248.0/21
46.21.252.0/22
62.76.24.0/22
62.76.88.0/22
62.76.100.0/22
62.76.112.0/22
77.220.216.0/21
89.248.236.0/24
91.107.84.0/22
91.227.34.0/23
185.40.28.0/22
185.62.103.0/24
185.111.216.0/22
185.126.92.0/22
212.8.232.0/22
IPv6:
2a03:220::/32
Signature Algorithm: sha256WithRSAEncryption
46:e6:27:9f:5c:58:2a:ae:d9:99:f3:d0:6c:bc:cf:fb:a6:43:
7c:7f:4c:6a:a4:71:e9:ae:ca:42:11:03:69:89:0a:0f:4d:c3:
ef:58:f9:19:c3:76:c9:c4:31:10:f0:ed:ff:7b:31:b6:86:84:
eb:51:a1:6d:b1:78:ea:07:d2:aa:b6:d1:07:66:a8:9f:90:69:
be:7f:a1:47:99:fe:5d:2d:69:7a:f6:8a:5d:7d:53:a5:45:52:
b0:7f:2c:fc:81:a6:e4:fe:b8:78:3e:fa:60:8e:7e:a2:c2:2b:
05:32:bb:04:9f:4f:6e:47:57:14:02:8d:ac:13:4f:22:3e:e9:
76:4e:40:ae:07:a9:c6:a4:9a:13:e8:44:db:34:8b:f5:6e:fe:
16:b7:fc:a8:53:e7:95:d6:8b:15:3f:ac:31:0c:f3:8c:6f:b0:
b9:1a:90:ad:bc:4b:34:54:b6:e6:af:7a:16:e7:4e:1e:f3:95:
19:c8:31:47:3a:58:bf:57:e2:2c:93:d8:47:a3:b8:87:86:02:
62:a6:43:8c:5f:e9:55:4c:f0:7e:9e:98:08:ae:e9:6c:be:aa:
f2:c9:48:96:f0:cf:81:39:17:ff:ce:2e:44:71:a1:cf:fd:d7:
f9:f6:e6:15:86:4b:b4:5e:bd:5d:bd:6f:c6:ed:8d:2f:33:8d:
97:0a:85:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:48 2024 by rpki-client on console-ams.rpki-client.org