Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/6FsmUm2V2ZPrz24fxa8iDQCuG4k.roa
File: 6FsmUm2V2ZPrz24fxa8iDQCuG4k.roa (raw, json)
Hash identifier: 1TjbfPAWFMbrLo7J+5ZxCMupfCbPCf3hD08bcUggXoM=
Subject key identifier: E8:5B:26:52:6D:95:D9:93:EB:CF:6E:1F:C5:AF:22:0D:00:AE:1B:89
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 01851A9E39DAA38BDFECB6D75CCBA3ABD32A
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/6FsmUm2V2ZPrz24fxa8iDQCuG4k.roa
Signing time: Fri 16 Dec 2022 11:07:35 +0000
ROA not before: Fri 16 Dec 2022 11:07:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 185.49.236.0/22 maxlen: 24
109.69.80.0/21 maxlen: 24
185.71.24.0/22 maxlen: 24
195.189.124.0/22 maxlen: 24
45.145.180.0/22 maxlen: 24
185.33.184.0/22 maxlen: 24
185.11.240.0/22 maxlen: 24
195.94.112.0/20 maxlen: 24
94.199.184.0/21 maxlen: 24
151.236.208.0/21 maxlen: 24
185.68.0.0/22 maxlen: 24
94.190.240.0/21 maxlen: 24
93.95.8.0/21 maxlen: 24
185.122.216.0/22 maxlen: 24
31.210.128.0/21 maxlen: 24
185.31.252.0/22 maxlen: 24
37.35.88.0/21 maxlen: 24
87.237.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1a:9e:39:da:a3:8b:df:ec:b6:d7:5c:cb:a3:ab:d3:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Dec 16 11:07:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e85b26526d95d993ebcf6e1fc5af220d00ae1b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f8:1f:e1:af:99:f7:c0:de:34:96:f4:da:c8:
0e:bc:b5:d6:d8:2c:34:0a:46:44:1a:d1:fb:f0:28:
53:6c:89:9e:c2:03:74:d8:27:74:0d:d3:df:78:ab:
7a:cc:16:8c:9e:f7:ba:07:f7:47:1b:79:98:f1:20:
ff:52:47:62:2e:c7:f2:11:78:39:1f:f0:44:bb:a2:
6d:69:8d:82:54:bf:14:a1:02:e8:5c:f1:a1:58:a2:
8d:f6:1b:ae:9e:b6:54:81:9b:14:5b:aa:c9:ad:77:
84:da:85:92:9f:f9:b6:bb:ac:d0:6f:d0:1f:86:98:
62:41:90:65:f0:17:51:d4:88:d8:fd:36:46:59:fa:
a4:a0:06:2f:d5:b9:4f:74:65:66:39:66:f9:87:1e:
2b:c5:16:df:d3:10:dd:f1:ee:e7:ba:a6:ab:9d:e7:
b1:dd:a9:ed:46:69:1c:f8:2c:18:a1:0b:88:02:a5:
a7:0f:90:34:28:22:79:ed:03:89:3a:1d:a0:03:7d:
cd:a2:60:b8:28:11:5e:ed:7b:9d:bf:83:bb:00:07:
63:de:7e:b0:f6:79:c8:b4:05:05:84:98:f2:93:55:
f7:14:a1:53:3f:41:65:31:1d:db:5a:3a:ab:e5:ce:
b7:14:01:cd:d8:47:03:17:74:04:02:27:21:b9:aa:
48:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5B:26:52:6D:95:D9:93:EB:CF:6E:1F:C5:AF:22:0D:00:AE:1B:89
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/6FsmUm2V2ZPrz24fxa8iDQCuG4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.128.0/21
37.35.88.0/21
45.145.180.0/22
87.237.64.0/21
93.95.8.0/21
94.190.240.0/21
94.199.184.0/21
109.69.80.0/21
151.236.208.0/21
185.11.240.0/22
185.31.252.0/22
185.33.184.0/22
185.49.236.0/22
185.68.0.0/22
185.71.24.0/22
185.122.216.0/22
195.94.112.0/20
195.189.124.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:c4:70:16:af:5b:de:d4:80:6a:d5:1e:b5:4e:fb:00:c9:42:
74:7c:7a:0f:fd:9a:db:e7:ac:6d:ad:85:b4:0a:9a:1d:38:5f:
04:89:06:33:61:06:97:fe:e9:1b:a9:a5:1f:59:fd:33:df:2a:
65:4f:f0:1e:c4:90:f6:f9:22:a4:d9:bc:9a:23:66:38:ff:c3:
9e:68:88:c8:4e:39:30:3e:30:2a:1c:40:02:57:4d:0b:18:34:
30:2b:7d:5c:cd:2c:b0:fd:a4:2d:41:a6:d6:c1:f3:97:cd:90:
02:02:53:53:22:1c:d2:60:68:ca:65:27:d7:58:00:a1:22:a8:
fa:ad:ba:3d:21:98:ac:c0:37:bf:c4:3a:48:d9:2a:51:f2:55:
b5:72:bf:f2:f2:f6:69:a5:56:bc:6d:4d:3e:46:32:ed:8f:ee:
cd:7a:e0:e4:20:b7:8c:94:71:ea:0b:6e:b4:25:23:bf:2d:5a:
0d:fe:b4:d0:43:43:46:0b:0f:ad:46:7a:26:5d:65:1f:b6:0c:
99:87:34:53:eb:cc:84:4f:7c:4a:6f:a0:8c:68:1c:c0:0f:cb:
0d:0d:13:7f:2b:d8:c4:b7:7a:70:e4:3d:38:e0:f0:d2:16:84:
c8:e5:85:94:0c:4f:76:b4:59:d6:86:7f:2d:ad:e0:24:ee:ed:
29:89:c3:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:17 2024 by rpki-client on console-fra.rpki-client.org