Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/bwXpW3qehdMiVbP-1bnSACCBkwY.roa
File: bwXpW3qehdMiVbP-1bnSACCBkwY.roa (raw, json)
Hash identifier: hPlBsRhNPsAvSs0k3f8bfMu8hIW6YN2HTFab4lFuYRA=
Subject key identifier: 6F:05:E9:5B:7A:9E:85:D3:22:55:B3:FE:D5:B9:D2:00:20:81:93:06
Certificate issuer: /CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Certificate serial: 0183A1C3C6E4530298D8A5908A62B1B1A775
Authority key identifier: F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/bwXpW3qehdMiVbP-1bnSACCBkwY.roa
Signing time: Tue 04 Oct 2022 06:51:45 +0000
ROA not before: Tue 04 Oct 2022 06:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31169
IP address blocks: 79.170.80.0/21 maxlen: 21
193.247.202.0/24 maxlen: 24
89.34.22.0/23 maxlen: 23
194.104.112.0/24 maxlen: 24
45.134.208.0/22 maxlen: 22
194.104.126.0/24 maxlen: 24
217.17.208.0/20 maxlen: 20
193.247.183.0/24 maxlen: 24
193.247.181.0/24 maxlen: 24
89.45.165.0/24 maxlen: 24
193.247.192.0/24 maxlen: 24
92.114.96.0/23 maxlen: 23
185.28.128.0/22 maxlen: 22
194.104.97.0/24 maxlen: 24
194.104.98.0/24 maxlen: 24
84.247.63.0/24 maxlen: 24
91.126.0.0/20 maxlen: 20
195.88.32.0/23 maxlen: 23
2a04:2740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a1:c3:c6:e4:53:02:98:d8:a5:90:8a:62:b1:b1:a7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Validity
Not Before: Oct 4 06:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f05e95b7a9e85d32255b3fed5b9d20020819306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:f6:b9:ec:7b:33:7f:77:bc:36:2e:ee:fd:
c1:83:04:a6:9b:6a:55:8b:ec:09:54:cd:df:3f:74:
d4:32:6f:92:b4:e5:a9:f5:5b:b1:f0:01:fb:c8:d2:
16:c8:40:87:f9:0d:8b:7b:df:da:02:96:d5:48:72:
58:2b:2d:70:6f:2b:43:c9:a1:f8:ba:be:0c:04:dd:
ef:4e:89:6a:47:67:9d:7e:d9:a1:b2:22:f9:a2:7a:
2a:7d:96:16:bc:d2:1b:39:6a:6c:80:e2:9e:8d:b9:
a4:fb:e3:a2:a0:c0:fb:78:3e:ad:92:8d:8b:cb:b1:
67:c3:a8:1e:4b:04:29:52:97:3e:b5:68:32:ae:47:
2a:b5:54:67:b7:3a:63:3c:3c:4f:ae:49:59:57:a2:
f0:30:4f:8f:42:e7:d7:39:67:8c:a8:98:dd:8e:69:
dc:6f:ed:91:7d:11:51:56:b7:3d:d5:57:6b:39:0b:
32:ac:d4:10:5b:8d:71:89:3b:21:60:40:85:33:c2:
a7:5e:6b:23:9a:14:b3:bf:84:80:ae:1d:93:7d:2f:
4e:d6:28:93:5e:fe:d9:04:47:ab:09:18:95:02:69:
ab:dc:09:c0:49:bb:54:b1:c1:57:eb:f5:80:22:c8:
a9:c0:de:c3:e3:6b:03:9d:bb:d6:46:e9:eb:22:45:
63:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:05:E9:5B:7A:9E:85:D3:22:55:B3:FE:D5:B9:D2:00:20:81:93:06
X509v3 Authority Key Identifier:
keyid:F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/bwXpW3qehdMiVbP-1bnSACCBkwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/1-PvIQVghSG6P4IYLW-w-koO4A4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.208.0/22
79.170.80.0/21
84.247.63.0/24
89.34.22.0/23
89.45.165.0/24
91.126.0.0/20
92.114.96.0/23
185.28.128.0/22
193.247.181.0/24
193.247.183.0/24
193.247.192.0/24
193.247.202.0/24
194.104.97.0-194.104.98.255
194.104.112.0/24
194.104.126.0/24
195.88.32.0/23
217.17.208.0/20
IPv6:
2a04:2740::/29
Signature Algorithm: sha256WithRSAEncryption
91:b1:d4:38:76:a5:f4:6d:be:04:89:0d:38:68:f6:d2:1c:8b:
15:d6:ac:2e:bf:c4:1d:14:ab:91:f4:b6:65:64:7a:91:22:c0:
bf:1d:10:d2:d9:e2:5e:fe:59:94:59:ee:4c:ad:a2:30:ac:98:
47:cc:1d:5b:12:3b:7c:36:5c:0c:33:33:eb:c6:42:5e:3e:92:
27:ad:c8:79:8c:f7:38:fa:84:f9:6c:8b:a8:08:1e:2c:b5:34:
6d:d2:a7:b1:4b:6d:68:da:5b:f7:28:38:dc:71:20:5e:15:e6:
08:80:40:ed:1a:ae:42:bc:26:b4:fc:2a:0d:54:8a:a7:86:e9:
3a:11:0c:12:3d:67:78:29:ed:51:cb:de:91:65:14:bf:fc:12:
d0:f8:cb:55:58:3e:d6:2f:9b:42:86:50:44:b7:ee:a9:c8:44:
d5:83:d1:57:6e:c3:06:9b:84:39:60:79:80:ea:f2:08:2b:b1:
46:34:4d:00:05:5e:c6:54:5a:8f:c1:4b:ce:20:56:51:70:ce:
7c:db:4b:23:54:96:a4:4c:93:89:30:77:05:f3:cb:56:6a:42:
7a:b9:98:63:47:82:6f:47:98:c5:cf:8e:83:a8:33:18:8c:38:
5c:62:79:f1:41:30:5a:88:91:3e:3a:5a:b4:45:c0:d1:a3:6b:
3a:5b:f8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:27 2023 by rpki-client on console-fra.rpki-client.org