Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/n3X5-jAoV7TEb9Gd9tZSn9pFzDc.roa
File: n3X5-jAoV7TEb9Gd9tZSn9pFzDc.roa (raw, json)
Hash identifier: BQW9ZI+ga8KN1TUyZPEhI8nQx7spLiB9VRZ2WlIn2bA=
Subject key identifier: 9F:75:F9:FA:30:28:57:B4:C4:6F:D1:9D:F6:D6:52:9F:DA:45:CC:37
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 1A78374D
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/n3X5-jAoV7TEb9Gd9tZSn9pFzDc.roa
Signing time: Fri 13 May 2022 08:14:01 +0000
ROA not before: Fri 13 May 2022 08:14:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60304
IP address blocks: 185.33.35.0/24 maxlen: 24
185.33.34.0/24 maxlen: 24
185.33.33.0/24 maxlen: 24
185.33.32.0/24 maxlen: 24
2a04:5901:7::/48 maxlen: 48
2a04:5901:c::/48 maxlen: 48
2a04:5901:1d::/48 maxlen: 48
2a04:5901:2::/48 maxlen: 48
2a04:5901:22::/48 maxlen: 48
2a04:5901:13::/48 maxlen: 48
2a04:5901:18::/48 maxlen: 48
2a04:5901:9::/48 maxlen: 48
2a04:5901:e::/48 maxlen: 48
2a04:5901:1f::/48 maxlen: 48
2a04:5901:4::/48 maxlen: 48
2a04:5901:24::/48 maxlen: 48
2a04:5901:15::/48 maxlen: 48
2a04:5901:1a::/48 maxlen: 48
2a04:5901:b::/48 maxlen: 48
2a04:5901:10::/48 maxlen: 48
2a04:5901:1::/48 maxlen: 48
2a04:5901:21::/48 maxlen: 48
2a04:5901:6::/48 maxlen: 48
2a04:5901:17::/48 maxlen: 48
2a04:5901:1c::/48 maxlen: 48
2a04:5901:d::/48 maxlen: 48
2a04:5901:12::/48 maxlen: 48
2a04:5901:3::/48 maxlen: 48
2a04:5901:23::/48 maxlen: 48
2a04:5901:8::/48 maxlen: 48
2a04:5900::/29 maxlen: 29
2a04:5901:19::/48 maxlen: 48
2a04:5901:1e::/48 maxlen: 48
2a04:5901:f::/48 maxlen: 48
2a04:5901:14::/48 maxlen: 48
2a04:5901:5::/48 maxlen: 48
2a04:5901:a::/48 maxlen: 48
2a04:5901:1b::/48 maxlen: 48
2a04:5901:20::/48 maxlen: 48
2a04:5901:11::/48 maxlen: 48
2a04:5901:16::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444086093 (0x1a78374d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: May 13 08:14:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f75f9fa302857b4c46fd19df6d6529fda45cc37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7d:3c:62:76:5a:13:00:ca:d9:94:e3:d7:fd:
9a:3c:0c:40:03:9a:ca:57:57:39:4d:ba:ee:b8:71:
da:e9:9e:ce:95:9f:5b:1f:ef:3c:15:4d:9b:bd:9b:
10:84:af:2b:79:fc:25:a5:16:3f:b6:8a:20:4a:4f:
e8:54:9b:14:1b:13:16:46:78:5e:df:a1:4d:d7:a8:
19:59:6b:db:d4:e9:c0:4f:9d:82:b2:02:55:ce:21:
26:d1:b1:28:90:e9:b6:42:e1:ec:1c:22:3a:7a:00:
52:0a:eb:30:04:62:ce:77:30:73:15:42:3b:08:18:
11:88:78:ce:f7:b8:39:38:42:92:58:73:01:a1:0f:
ee:68:63:6a:77:3f:78:b6:16:1e:45:3f:7c:51:67:
3b:ff:e6:f2:27:59:f4:41:65:36:ea:80:73:8b:84:
63:15:2c:96:9f:79:4f:13:50:b4:26:0d:e5:96:dc:
27:57:6b:7b:23:60:1b:51:f0:a9:00:17:87:72:6e:
75:d1:22:fd:4e:4e:d1:b2:2d:24:0d:0f:ec:06:43:
c0:8a:d4:44:76:30:7c:71:b2:fd:bf:95:39:ec:e0:
17:ad:b2:fa:27:7c:05:60:03:e1:61:d5:a2:5c:ab:
f6:6c:64:63:5f:5e:43:58:ed:10:07:b9:2e:36:e6:
7c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:75:F9:FA:30:28:57:B4:C4:6F:D1:9D:F6:D6:52:9F:DA:45:CC:37
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/n3X5-jAoV7TEb9Gd9tZSn9pFzDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.32.0/22
IPv6:
2a04:5900::/29
Signature Algorithm: sha256WithRSAEncryption
2f:8e:e9:71:fd:4f:a9:79:9e:91:80:83:8a:b7:f6:1c:68:33:
ee:c3:7d:59:ee:ba:4c:eb:61:6a:6b:01:3e:8c:48:a3:81:0a:
6d:dc:fe:25:0a:b8:df:f7:42:d8:4c:cc:3e:71:a7:9e:da:48:
83:42:4f:24:64:ca:47:11:71:f5:ab:6c:11:d8:6f:21:e5:63:
d8:f5:e0:c5:ae:b4:de:71:88:86:d3:66:80:c8:5d:5e:12:0d:
d2:19:1d:9a:59:40:40:06:6b:0d:71:d2:de:40:a5:20:6a:1b:
ff:84:c2:15:81:22:ea:5f:05:e8:a2:7e:c3:07:88:36:41:b9:
29:c3:c1:01:33:08:67:72:f1:d1:b6:ea:54:9a:68:92:b9:9f:
e3:77:f0:19:81:f1:f1:8f:df:f4:00:6b:e7:b6:7c:58:99:dc:
96:89:60:6e:19:da:4d:11:6d:49:ba:37:df:54:2f:3e:fa:af:
2c:a4:be:19:8d:e1:0f:93:32:8f:35:7c:20:1c:5e:6a:46:24:
b9:fc:ad:85:86:27:92:78:6c:6e:4b:d2:0d:82:fb:06:41:23:
5a:4e:76:b1:e6:d2:68:23:aa:53:46:a9:0a:95:94:89:a7:b1:
cd:de:9f:e1:f5:eb:02:55:a8:68:c7:a3:fe:48:2c:94:4a:18:
d6:33:f1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org