Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/566938-e2a8-48b3-816b-27b113cff53b/1/90AP2Kvp3fNClRiOxNXDak5RWww.roa
File: 90AP2Kvp3fNClRiOxNXDak5RWww.roa (raw, json)
Hash identifier: kG+0LJxg+r/eSbuWWt+hwReV1lwesUHbSYLBSbKNXtY=
Subject key identifier: F7:40:0F:D8:AB:E9:DD:F3:42:95:18:8E:C4:D5:C3:6A:4E:51:5B:0C
Certificate issuer: /CN=c1ab247c636ad389bf9f8c5074c8220230e8edcc
Certificate serial: 0A2DD61D
Authority key identifier: C1:AB:24:7C:63:6A:D3:89:BF:9F:8C:50:74:C8:22:02:30:E8:ED:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/waskfGNq04m_n4xQdMgiAjDo7cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/566938-e2a8-48b3-816b-27b113cff53b/1/90AP2Kvp3fNClRiOxNXDak5RWww.roa
Signing time: Sat 01 Jan 2022 08:00:56 +0000
ROA not before: Sat 01 Jan 2022 08:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202520
IP address blocks: 193.110.1.0/24 maxlen: 24
193.110.0.0/22 maxlen: 22
193.110.3.0/24 maxlen: 24
193.110.2.0/24 maxlen: 24
37.203.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170776093 (0xa2dd61d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1ab247c636ad389bf9f8c5074c8220230e8edcc
Validity
Not Before: Jan 1 08:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7400fd8abe9ddf34295188ec4d5c36a4e515b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8a:e7:7a:5b:a1:74:6c:4d:06:25:e6:6a:ca:
5f:2c:ad:ae:21:2b:71:12:ef:5e:26:7f:8e:cf:da:
b5:7b:39:77:3d:61:66:6e:fe:d6:e8:ff:e1:76:be:
fb:d1:fd:02:5b:fd:a0:79:00:57:e4:50:b1:dc:07:
e5:9b:ee:7b:9c:00:12:d7:d0:3b:e3:bc:6a:ae:64:
fa:22:43:42:6a:d1:fa:9a:03:bb:0f:24:55:54:c1:
de:7a:14:78:8c:a6:31:e1:c5:03:c2:0e:64:2f:10:
cb:4d:b4:02:da:1b:49:d7:6a:ea:20:31:77:88:06:
88:3c:5d:4f:47:06:fe:64:b8:d9:41:26:5d:68:3e:
17:2e:79:47:c0:4a:68:62:8f:6a:10:97:85:c0:4b:
d1:30:aa:59:c5:95:23:05:02:ab:05:e7:d5:1a:25:
4b:bb:07:8d:95:f3:9b:81:ec:d8:87:35:c2:1e:3c:
4d:98:be:0c:0b:97:a0:43:fb:0f:6d:6b:98:69:c1:
a5:74:94:d5:4d:6b:b9:33:46:8e:ad:1e:59:7b:8c:
18:44:b4:47:04:f7:27:6a:35:d7:a0:b1:7e:97:92:
f7:9b:0a:0a:83:59:55:95:fe:96:25:32:db:5b:da:
1c:ed:af:8a:09:15:bf:e3:75:d6:2c:3c:e6:35:8d:
fe:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:40:0F:D8:AB:E9:DD:F3:42:95:18:8E:C4:D5:C3:6A:4E:51:5B:0C
X509v3 Authority Key Identifier:
keyid:C1:AB:24:7C:63:6A:D3:89:BF:9F:8C:50:74:C8:22:02:30:E8:ED:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/waskfGNq04m_n4xQdMgiAjDo7cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/566938-e2a8-48b3-816b-27b113cff53b/1/90AP2Kvp3fNClRiOxNXDak5RWww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/566938-e2a8-48b3-816b-27b113cff53b/1/waskfGNq04m_n4xQdMgiAjDo7cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.203.245.0/24
193.110.0.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:9a:1d:74:f5:c0:af:ab:59:a3:3c:21:55:99:f1:11:1e:e6:
0c:20:3a:2a:1a:b8:50:b4:b8:a1:81:c5:1b:8b:94:e1:b2:80:
18:13:37:c0:7f:ed:98:6a:76:62:b2:89:cd:2a:23:71:08:05:
89:f0:37:d5:0f:49:95:f5:af:ea:a4:6f:68:31:60:16:33:5d:
df:b1:82:7f:8a:95:e2:7a:3c:e3:88:24:0b:c7:e3:51:ee:6f:
5e:36:78:84:8d:59:de:e5:29:e7:8a:8b:18:d9:67:8c:dd:aa:
e4:a4:3a:2d:a1:ca:24:f1:7a:40:ea:27:82:f2:21:87:11:19:
1f:ed:49:dc:95:4f:72:ec:69:a4:df:35:2e:5b:66:26:76:40:
dd:b3:2a:23:0d:24:48:f7:07:cd:0d:46:9a:1e:1e:23:f9:c1:
07:df:43:61:84:2c:5e:07:5a:56:76:b0:5f:f3:bb:0e:20:12:
0a:31:d9:01:a1:a7:7f:b9:9b:5e:7b:7d:05:7d:e6:0b:f5:ed:
cf:f2:85:c8:37:e7:3d:00:82:0a:99:63:c8:6e:93:6e:7e:49:
9d:76:12:0c:e4:a5:79:3d:47:10:9a:c9:01:b8:a2:f3:08:85:
9d:ef:de:80:c2:28:e1:f3:b0:17:3f:62:45:8a:7e:97:82:7f:
b0:5b:63:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org