Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/iJ5-4y0zHTrB9VpWYLn7ZrdS7eU.roa
File: iJ5-4y0zHTrB9VpWYLn7ZrdS7eU.roa (raw, json)
Hash identifier: QNSmb73BUg/S+uV8hsHWTJBqDB/BhvpRvbVn1cxi+G4=
Subject key identifier: 88:9E:7E:E3:2D:33:1D:3A:C1:F5:5A:56:60:B9:FB:66:B7:52:ED:E5
Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Certificate serial: 1F244DC9
Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/iJ5-4y0zHTrB9VpWYLn7ZrdS7eU.roa
Signing time: Fri 29 Apr 2022 23:41:17 +0000
ROA not before: Fri 29 Apr 2022 23:41:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 185.104.84.0/22 maxlen: 24
146.185.64.0/19 maxlen: 24
94.46.188.0/22 maxlen: 22
31.207.52.0/22 maxlen: 22
31.207.60.0/22 maxlen: 22
185.63.64.0/22 maxlen: 24
2a04:f340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 522472905 (0x1f244dc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Validity
Not Before: Apr 29 23:41:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=889e7ee32d331d3ac1f55a5660b9fb66b752ede5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:07:04:fc:61:dc:6c:3c:39:f0:28:7c:e6:00:
8f:7c:98:65:14:c4:67:d8:01:9d:8c:7c:9f:d1:6e:
56:77:99:47:15:8a:d4:40:3c:29:d8:0c:52:c2:11:
f1:e4:ce:6a:49:e2:d3:eb:56:44:c4:7a:09:50:b5:
81:fd:1d:18:b4:c3:80:27:20:20:88:d5:12:79:71:
0e:f7:4f:0a:6b:24:2d:32:5b:62:28:5c:52:d4:9e:
66:12:f0:5f:57:b6:c7:2c:45:e5:94:d0:d6:c6:41:
15:72:65:f1:62:dd:a0:4f:c9:b8:2e:05:51:ee:b2:
62:0a:11:67:b1:e7:51:fa:50:fc:52:d5:f0:57:d6:
8a:c4:98:bc:e7:1a:31:57:23:3e:6e:1b:d4:f4:74:
01:43:47:3b:cc:3e:65:c6:32:8e:db:12:4a:dd:70:
76:95:70:5e:ff:fd:6a:a5:f0:b7:38:28:e5:67:f9:
20:4c:cf:0f:2e:4d:5d:69:7f:dc:a6:8a:9d:61:5a:
fa:bd:11:f4:cf:11:ba:f4:66:fe:1a:2a:c0:24:1b:
52:e0:c5:37:a2:1b:a0:48:77:7b:92:73:1f:3f:33:
19:58:b9:3e:c7:2b:ae:b0:18:d4:25:dc:8b:5b:38:
39:99:f6:d7:56:c1:86:f6:f6:51:98:a4:25:cb:80:
ca:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9E:7E:E3:2D:33:1D:3A:C1:F5:5A:56:60:B9:FB:66:B7:52:ED:E5
X509v3 Authority Key Identifier:
keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/iJ5-4y0zHTrB9VpWYLn7ZrdS7eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.207.52.0/22
31.207.60.0/22
94.46.188.0/22
146.185.64.0/19
185.63.64.0/22
185.104.84.0/22
IPv6:
2a04:f340::/29
Signature Algorithm: sha256WithRSAEncryption
86:9c:42:f0:11:06:c8:65:3f:10:4d:90:5a:28:0d:1a:11:54:
15:09:9b:9f:72:a8:1c:de:d7:c3:4a:80:dd:27:9c:a4:7e:57:
8d:ee:ad:18:d3:c3:05:1f:0c:51:7a:81:3a:5b:aa:27:8d:fb:
a1:63:35:ac:9c:5e:0b:9f:44:11:bb:e9:b8:49:d3:d5:96:27:
88:07:27:44:20:38:86:c3:bc:09:50:af:df:c7:ae:66:b0:f4:
fa:13:0f:c7:c5:50:a3:10:de:ff:7c:ea:08:2f:78:9b:32:89:
31:0e:0e:15:c7:80:e4:18:9a:b0:cd:fb:cb:d4:ae:08:07:ba:
8d:e9:3d:e1:da:a8:8f:82:dc:7c:41:db:1b:9f:2e:cf:ec:d1:
8d:51:d8:a0:ac:2e:be:7e:d5:ed:e4:b2:45:55:0a:3f:e6:0a:
c4:f0:06:a9:21:0b:dd:a1:2b:ca:e5:fd:c6:75:9f:5f:7b:e9:
05:ea:24:d4:6b:07:b8:0f:1c:49:74:54:5a:6c:2e:c2:56:35:
ea:81:d8:3e:b5:d6:8d:4e:40:90:46:b8:a5:96:72:5d:7f:cf:
de:d9:72:21:3c:76:0e:a0:74:e0:0a:fe:20:1b:8c:4c:6d:18:
26:a8:22:8e:d4:22:f6:bb:41:c5:a6:c4:d1:38:a5:6c:fd:33:
d8:65:5d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:11 2024 by rpki-client on console-fra.rpki-client.org