Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/EcbQaZLWdvXNqfsziz7J1IQcfVE.roa
File: EcbQaZLWdvXNqfsziz7J1IQcfVE.roa (raw, json)
Hash identifier: QzMwQH47aNwVKRYkb9ST/+45NM9gnwRYM3X+kwj+Nk4=
Subject key identifier: 11:C6:D0:69:92:D6:76:F5:CD:A9:FB:33:8B:3E:C9:D4:84:1C:7D:51
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 37738D17
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/EcbQaZLWdvXNqfsziz7J1IQcfVE.roa
Signing time: Sat 01 Jan 2022 14:03:54 +0000
ROA not before: Sat 01 Jan 2022 14:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22822
IP address blocks: 95.140.224.0/22 maxlen: 22
95.140.224.0/20 maxlen: 24
87.248.192.0/19 maxlen: 24
46.228.144.0/20 maxlen: 24
87.248.210.0/23 maxlen: 23
87.248.212.0/23 maxlen: 23
216.247.120.0/21 maxlen: 24
185.178.52.0/22 maxlen: 22
46.183.88.0/21 maxlen: 24
178.249.104.0/21 maxlen: 21
178.249.105.0/24 maxlen: 24
185.116.100.0/22 maxlen: 22
178.79.203.0/24 maxlen: 24
178.79.214.0/23 maxlen: 23
178.79.228.0/23 maxlen: 23
178.79.230.0/23 maxlen: 23
178.79.232.0/22 maxlen: 22
178.79.236.0/22 maxlen: 22
178.79.240.0/21 maxlen: 21
178.79.248.0/21 maxlen: 21
178.79.196.0/23 maxlen: 23
178.79.192.0/18 maxlen: 24
2a02:3d0:601::/48 maxlen: 48
2a02:3d0:621::/48 maxlen: 48
2a02:3d0::/32 maxlen: 48
2a02:3d0:600::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 930319639 (0x37738d17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Jan 1 14:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11c6d06992d676f5cda9fb338b3ec9d4841c7d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:99:ca:39:ff:63:44:b3:88:c1:bc:23:ab:36:
9d:2b:75:2a:e2:39:45:1b:a0:97:cd:4f:af:47:24:
a7:b6:18:92:fe:f4:61:d8:5e:c7:f7:21:0e:94:86:
bc:bd:93:05:f0:64:f1:37:9e:11:b4:2f:c8:b0:18:
4e:de:09:4a:1d:db:7c:03:7c:32:8b:2e:73:d2:f1:
92:39:99:7c:bb:a8:c8:07:1d:c0:55:57:0a:a9:b3:
f9:0a:c5:2b:f2:b0:07:1c:0b:70:58:5a:61:b5:ad:
3d:6a:4c:e0:5e:9e:d0:88:29:7e:71:ca:b0:46:dd:
25:9f:7c:a6:15:af:72:e5:e9:13:cb:c2:16:68:4b:
f0:a0:60:1b:d0:51:39:a8:b9:cd:dd:02:54:d2:9b:
26:06:0c:e6:53:2c:aa:7e:b8:6c:4c:e1:c2:26:36:
10:81:66:23:d8:01:bb:d2:af:a6:67:5f:81:16:2f:
c1:d9:63:f4:16:2c:0e:cc:a9:b9:65:dc:da:ad:94:
5c:82:27:f4:7c:63:da:cd:c3:14:94:7c:49:87:8e:
74:56:46:6c:0d:1e:bc:4f:5b:62:d0:fb:4d:00:38:
7d:3e:d9:ba:bd:43:3a:08:13:da:f0:42:d7:1e:02:
56:84:2c:93:d2:33:95:a8:e8:f1:d7:74:55:b1:13:
27:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C6:D0:69:92:D6:76:F5:CD:A9:FB:33:8B:3E:C9:D4:84:1C:7D:51
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/EcbQaZLWdvXNqfsziz7J1IQcfVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.88.0/21
46.228.144.0/20
87.248.192.0/19
95.140.224.0/20
178.79.192.0/18
178.249.104.0/21
185.116.100.0/22
185.178.52.0/22
216.247.120.0/21
IPv6:
2a02:3d0::/32
Signature Algorithm: sha256WithRSAEncryption
54:44:a8:43:2d:39:f0:28:f8:f9:f4:0a:45:2b:76:83:1a:12:
f5:35:d5:81:aa:4b:44:61:13:0d:3b:d0:ad:8a:50:4d:1d:50:
4e:e8:2a:a6:30:de:db:74:17:f3:4c:a1:db:53:e7:39:5c:b0:
0f:7c:c1:1c:18:85:80:cd:9a:5a:b7:aa:64:53:c6:3e:50:8e:
05:c1:fe:75:90:1b:41:d3:59:a6:6a:ec:fc:81:d2:99:fa:99:
eb:2e:29:5b:c5:2c:99:59:79:f7:73:18:d2:76:a5:6d:5a:05:
84:ea:48:dc:58:87:ed:c0:b1:70:74:92:62:89:91:5c:c6:a6:
08:f5:d2:3d:53:bb:68:3f:c4:8e:3b:cb:5c:13:f5:04:74:fa:
2c:0a:ec:9a:7b:9e:13:ce:1d:0c:fe:85:1d:2e:27:10:ba:70:
83:69:3b:70:e3:d4:05:25:c9:b9:04:fe:6e:10:b5:f8:fd:85:
2f:bb:51:38:70:aa:94:dc:cf:b8:c3:d6:9b:34:f7:4b:3b:6f:
9b:67:de:83:39:4d:0f:43:f5:67:05:5e:4d:83:ed:ea:b9:be:
4b:b7:b7:c7:b7:ce:39:32:68:78:0f:65:f6:18:83:17:4a:df:
1b:29:f3:20:b1:f4:8e:17:b6:05:10:29:b7:c6:7b:c0:44:cd:
6c:7a:57:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:01 2024 by rpki-client on console-ams.rpki-client.org