Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/c2wg4Me43hJeB7iUGuTP68pdtZ4.roa
File: c2wg4Me43hJeB7iUGuTP68pdtZ4.roa (raw, json)
Hash identifier: iA/3nuSL6CAYxQbX/FcgG8Ut3+LcMbj87EVj+qM5AhA=
Subject key identifier: 73:6C:20:E0:C7:B8:DE:12:5E:07:B8:94:1A:E4:CF:EB:CA:5D:B5:9E
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 0538442C
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/c2wg4Me43hJeB7iUGuTP68pdtZ4.roa
Signing time: Wed 06 Apr 2022 10:10:00 +0000
ROA not before: Wed 06 Apr 2022 10:10:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47787
IP address blocks: 188.93.192.0/21 maxlen: 24
188.93.198.0/24 maxlen: 24
188.93.199.0/24 maxlen: 24
185.112.251.0/24 maxlen: 24
185.166.144.0/24 maxlen: 24
2a0d:82c0::/29 maxlen: 48
2a11:c00::/29 maxlen: 48
2a0f:8900::/29 maxlen: 29
2a0d:82c7:9::/48 maxlen: 48
2a0f:d300::/29 maxlen: 29
2a0e:5f00::/29 maxlen: 48
2a0b:e740::/29 maxlen: 29
2a0f:7700::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87573548 (0x538442c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Apr 6 10:10:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=736c20e0c7b8de125e07b8941ae4cfebca5db59e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f0:b7:8c:42:10:fe:e9:64:2e:07:5b:dd:d4:
55:48:d0:4d:44:93:e3:52:3f:09:4a:31:5f:25:77:
e4:c0:3b:3c:c0:fb:4e:d4:b8:dd:de:06:0e:81:c7:
55:78:c5:58:13:ce:62:fe:78:dd:16:00:54:50:9d:
66:1e:9f:71:e4:83:14:85:01:9a:2d:92:c7:a4:83:
51:93:12:2f:6a:fb:f6:af:65:75:99:50:ae:ff:14:
e4:80:54:17:2b:09:1e:34:10:2c:94:ce:24:2c:ad:
81:b1:ac:cb:aa:5a:18:e2:46:7e:0d:84:32:32:7a:
cc:c1:40:7d:12:c8:ea:bb:39:c0:af:e8:cc:89:97:
19:dc:90:4a:ba:ce:f7:0a:63:dd:9e:c1:05:2b:9c:
89:82:6e:72:3f:54:b6:c8:c8:3f:5d:78:00:81:b1:
5f:46:c1:9d:35:7a:f6:b3:db:29:ae:52:a6:67:08:
ef:75:54:19:49:ca:f5:53:20:c4:d1:55:6c:13:03:
44:b5:bf:10:51:11:11:25:3f:8d:15:38:a9:99:b0:
95:3c:74:bb:78:fd:13:94:3f:8d:00:a3:eb:ab:7b:
ee:af:a3:7a:3f:60:32:82:a1:10:dd:5b:0f:fe:16:
98:94:b6:20:23:8d:80:dd:d3:8a:fe:cd:34:ef:4d:
4e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:6C:20:E0:C7:B8:DE:12:5E:07:B8:94:1A:E4:CF:EB:CA:5D:B5:9E
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/c2wg4Me43hJeB7iUGuTP68pdtZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.251.0/24
185.166.144.0/24
188.93.192.0/21
IPv6:
2a0b:e740::/29
2a0d:82c0::/29
2a0e:5f00::/29
2a0f:7700::/29
2a0f:8900::/29
2a0f:d300::/29
2a11:c00::/29
Signature Algorithm: sha256WithRSAEncryption
8f:d5:77:5a:94:43:5f:14:a2:d5:af:c8:e6:25:3d:ed:fb:df:
50:4e:28:77:8c:ef:61:69:d5:6f:04:4b:47:e5:38:df:41:49:
e4:4c:8f:70:9a:f6:69:19:4e:ad:ff:07:b8:fa:6b:a9:d7:33:
81:f5:4f:0e:5a:77:01:98:f0:ad:03:fb:56:d3:8e:a7:70:73:
e0:ad:26:ef:a1:27:a5:e1:bb:fa:c7:05:d4:d1:8e:46:e1:c2:
ea:14:a0:11:14:c2:16:f1:45:18:bb:87:f9:4a:2e:ac:45:47:
c4:24:c7:43:58:3e:f7:74:50:90:d0:e2:01:41:eb:94:d2:67:
f1:3d:c8:9c:3f:9c:e9:e7:ed:37:e9:ed:83:5b:f7:bf:1a:7a:
fc:c1:ed:17:e2:48:28:49:31:ed:71:6f:1b:34:94:e8:c6:01:
21:7d:a1:25:70:c9:a1:8d:4a:cd:77:c6:17:ed:b8:d1:bc:1b:
ba:79:62:19:9e:02:ac:b6:84:32:7b:8c:4d:84:68:8a:c6:8c:
4c:10:b1:2a:08:61:fd:b2:b0:4a:ae:6d:d2:7e:d9:a1:00:1a:
cf:2f:45:33:6e:5f:f1:69:5e:79:02:4d:40:6a:15:60:5c:0e:
41:61:93:97:60:1e:a9:4e:ea:aa:15:86:cd:92:76:ba:b3:4f:
50:75:e4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:29 2024 by rpki-client on console-fra.rpki-client.org