Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/7OTJ3Wd4QZoDPKdhnGRgUOr2I4g.roa
File: 7OTJ3Wd4QZoDPKdhnGRgUOr2I4g.roa (raw, json)
Hash identifier: OF5z9+7T0MU+FO7JUOVYxozTTKX7I5woz3dpIUkS0Nc=
Subject key identifier: EC:E4:C9:DD:67:78:41:9A:03:3C:A7:61:9C:64:60:50:EA:F6:23:88
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 01851B319FD6435885A9B3D4FB6A0AD54498
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/7OTJ3Wd4QZoDPKdhnGRgUOr2I4g.roa
Signing time: Fri 16 Dec 2022 13:48:35 +0000
ROA not before: Fri 16 Dec 2022 13:48:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60304
IP address blocks: 185.33.35.0/24 maxlen: 24
185.33.34.0/24 maxlen: 24
185.33.33.0/24 maxlen: 24
185.33.32.0/24 maxlen: 24
2a04:5900::/48 maxlen: 48
2a04:5901:7::/48 maxlen: 48
2a04:5901:22::/48 maxlen: 48
2a04:5901:18::/48 maxlen: 48
2a04:5901:29::/48 maxlen: 48
2a04:5901:e::/48 maxlen: 48
2a04:5901:1f::/48 maxlen: 48
2a04:5901:4::/48 maxlen: 48
2a04:5901:15::/48 maxlen: 48
2a04:5901:b::/48 maxlen: 48
2a04:5901:1::/48 maxlen: 48
2a04:5901:26::/48 maxlen: 48
2a04:5901:17::/48 maxlen: 48
2a04:5901:d::/48 maxlen: 48
2a04:5900:1::/48 maxlen: 48
2a04:5901:3::/48 maxlen: 48
2a04:5901:28::/48 maxlen: 48
2a04:5901:1e::/48 maxlen: 48
2a04:5901:14::/48 maxlen: 48
2a04:5901:25::/48 maxlen: 48
2a04:5901:a::/48 maxlen: 48
2a04:5901:1b::/48 maxlen: 48
2a04:5901:11::/48 maxlen: 48
2a04:5901:27::/48 maxlen: 48
2a04:5901:c::/48 maxlen: 48
2a04:5901:1d::/48 maxlen: 48
2a04:5901:2::/48 maxlen: 48
2a04:5901:13::/48 maxlen: 48
2a04:5901:9::/48 maxlen: 48
2a04:5900::/32 maxlen: 32
2a04:5901:24::/48 maxlen: 48
2a04:5901:1a::/48 maxlen: 48
2a04:5901:10::/48 maxlen: 48
2a04:5901:21::/48 maxlen: 48
2a04:5901:6::/48 maxlen: 48
2a04:5901:1c::/48 maxlen: 48
2a04:5901:12::/48 maxlen: 48
2a04:5901:23::/48 maxlen: 48
2a04:5901:8::/48 maxlen: 48
2a04:5900::/29 maxlen: 29
2a04:5901:19::/48 maxlen: 48
2a04:5901:f::/48 maxlen: 48
2a04:5901:5::/48 maxlen: 48
2a04:5901::/32 maxlen: 32
2a04:5901:20::/48 maxlen: 48
2a04:5901:16::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1b:31:9f:d6:43:58:85:a9:b3:d4:fb:6a:0a:d5:44:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Dec 16 13:48:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ece4c9dd6778419a033ca7619c646050eaf62388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:91:a9:01:eb:bf:85:a1:70:5f:dc:54:2e:
0f:65:bd:61:e3:da:90:54:66:97:24:33:d7:c5:7e:
7b:2a:67:09:76:bc:41:06:e2:5e:99:87:d9:15:0e:
8c:51:d3:50:31:6e:07:4b:59:db:c1:bb:59:a8:7d:
bd:23:f7:c4:8b:e9:83:c3:98:ca:19:74:f7:b0:b0:
80:47:c3:e7:2c:98:2d:a8:76:ee:9c:0a:1e:ae:a6:
3e:cf:e3:78:f8:4b:76:57:fe:e4:98:03:ed:b0:7d:
a7:d7:cf:3a:80:9d:82:2e:63:da:38:45:35:6e:28:
5a:92:0e:dd:d5:3b:2d:43:46:6f:3d:a4:89:8d:36:
bc:72:6d:59:53:92:36:9e:29:0a:28:ef:5c:22:81:
23:1b:8e:13:12:c9:67:f8:59:05:85:9a:e7:4d:f8:
84:6a:c7:f2:d4:27:48:86:15:88:d4:14:6d:f5:15:
41:a7:b4:4a:3e:e3:3f:8d:50:20:33:01:6c:1b:1b:
80:09:c3:dc:41:24:df:55:7c:02:c0:a1:59:d2:5d:
6e:53:5e:3b:85:5d:bb:94:12:99:b1:af:0a:cf:ea:
41:33:7f:3f:e5:cd:88:db:09:fc:87:53:82:a4:89:
96:1f:4a:bb:53:74:ae:be:19:a7:59:2c:49:78:4a:
40:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E4:C9:DD:67:78:41:9A:03:3C:A7:61:9C:64:60:50:EA:F6:23:88
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/7OTJ3Wd4QZoDPKdhnGRgUOr2I4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.32.0/22
IPv6:
2a04:5900::/29
Signature Algorithm: sha256WithRSAEncryption
05:28:1a:b3:5b:9a:18:f6:78:79:7b:8b:53:d7:f6:cb:ca:82:
b2:a2:cf:6f:87:8a:e8:32:df:b3:b3:52:5a:cd:2f:73:4c:45:
78:94:d9:c7:2c:b1:6a:80:9e:ca:99:e7:e5:72:0f:1c:d0:60:
8b:b8:93:f6:ba:f8:17:ae:05:fb:05:54:06:4c:a5:be:69:40:
d2:74:30:25:bc:93:a1:67:78:b4:54:ec:cb:f8:04:36:77:5f:
57:68:73:7d:b9:b1:f4:02:3f:8f:f5:c9:33:7b:ea:fd:50:3c:
9e:c8:f6:b0:16:e5:3c:4f:d9:08:8c:69:79:63:a4:c2:03:93:
93:d9:4f:c7:0f:5b:1d:9a:56:ac:46:2e:26:e8:2f:36:ed:e6:
99:fe:6c:1e:9d:61:c4:e7:8b:8b:e3:f1:0d:fa:48:9c:e2:18:
ab:4c:5e:77:f4:57:d3:e4:7d:98:cd:2a:13:e1:fa:9f:dc:c6:
b9:cf:8a:38:f1:6b:2c:c1:0f:f3:cb:f4:ce:c5:98:56:07:fa:
38:81:13:42:9f:f8:d1:39:30:1e:9a:e4:12:b6:b0:9c:5c:54:
13:fa:4d:d2:ae:b7:f1:39:44:a0:c0:aa:6f:3f:be:50:59:35:
7b:23:0b:66:80:20:7b:6d:9e:e8:3f:7f:fc:9f:40:53:a5:2a:
ca:42:01:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org