Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/n3OZ58oa9SNtNZGSbGpRc6DiHRo.roa
File: n3OZ58oa9SNtNZGSbGpRc6DiHRo.roa (raw, json)
Hash identifier: zq6fVZzUE+Qm1PvqotxL19M+SmUCfkFKRfBgTzEUC5U=
Subject key identifier: 9F:73:99:E7:CA:1A:F5:23:6D:35:91:92:6C:6A:51:73:A0:E2:1D:1A
Certificate issuer: /CN=50741158f3ed65bee1bde12f34f895afb0dd50d5
Certificate serial: 119543F8
Authority key identifier: 50:74:11:58:F3:ED:65:BE:E1:BD:E1:2F:34:F8:95:AF:B0:DD:50:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHQRWPPtZb7hveEvNPiVr7DdUNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/n3OZ58oa9SNtNZGSbGpRc6DiHRo.roa
Signing time: Thu 20 Jan 2022 15:08:33 +0000
ROA not before: Thu 20 Jan 2022 15:08:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208905
IP address blocks: 147.235.46.0/23 maxlen: 24
147.235.45.0/24 maxlen: 24
147.235.61.0/24 maxlen: 24
147.235.60.0/23 maxlen: 23
147.235.60.0/22 maxlen: 22
147.235.62.0/24 maxlen: 24
147.235.62.0/23 maxlen: 23
147.235.60.0/24 maxlen: 24
147.235.63.0/24 maxlen: 24
147.235.76.0/22 maxlen: 22
147.235.78.0/23 maxlen: 23
147.235.77.0/24 maxlen: 24
147.235.78.0/24 maxlen: 24
147.235.75.0/24 maxlen: 24
147.235.74.0/23 maxlen: 23
147.235.74.0/24 maxlen: 24
147.235.76.0/24 maxlen: 24
147.235.73.0/24 maxlen: 24
147.235.72.0/23 maxlen: 23
147.235.72.0/24 maxlen: 24
147.235.72.0/22 maxlen: 22
147.235.76.0/23 maxlen: 23
147.235.80.0/24 maxlen: 24
147.235.79.0/24 maxlen: 24
147.235.36.0/24 maxlen: 24
147.235.94.0/23 maxlen: 23
147.235.94.0/24 maxlen: 24
147.235.95.0/24 maxlen: 24
147.235.93.0/24 maxlen: 24
185.130.84.0/22 maxlen: 22
2a06:c702::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294994936 (0x119543f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50741158f3ed65bee1bde12f34f895afb0dd50d5
Validity
Not Before: Jan 20 15:08:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f7399e7ca1af5236d3591926c6a5173a0e21d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:82:67:ab:3f:3f:89:48:8b:40:04:8d:dc:74:
3a:2a:e9:82:99:9e:33:17:76:62:ee:64:5c:c3:9c:
28:6a:4f:69:03:b5:fd:1f:51:b3:de:e1:c1:81:5f:
88:99:5d:3a:2f:73:63:03:d5:39:49:1e:ea:96:83:
10:df:6a:55:b4:7f:22:7f:5b:5d:5e:4b:cb:a6:df:
f3:76:78:60:d1:6a:6d:c5:34:9a:6a:1b:34:79:6e:
85:71:9e:1c:3f:c1:af:e4:e5:6b:35:5e:a7:6c:e4:
ff:2d:cb:47:87:f9:54:f0:02:a6:ff:19:75:60:1f:
bd:55:29:fe:0c:3b:a8:cf:c3:9d:2e:1d:92:7e:5f:
d0:4c:d2:ba:5c:07:4e:4c:86:23:52:9d:05:30:63:
4a:d0:82:02:b8:6e:5f:07:98:ea:e1:9a:ce:3d:e9:
fe:21:70:7c:1c:df:ee:6a:26:36:1a:de:09:19:6e:
9a:92:07:80:46:b0:fb:47:e9:ab:fe:66:d7:30:bd:
6a:ef:34:36:22:b6:8f:70:ae:29:7c:54:69:37:ff:
59:72:d9:81:da:50:a0:d0:59:d1:d1:f8:85:f8:b1:
34:a4:31:b9:48:cf:f8:cc:af:a1:4f:89:ee:71:81:
71:0f:b7:0c:ea:05:51:bd:2a:83:81:b1:2b:fa:62:
03:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:73:99:E7:CA:1A:F5:23:6D:35:91:92:6C:6A:51:73:A0:E2:1D:1A
X509v3 Authority Key Identifier:
keyid:50:74:11:58:F3:ED:65:BE:E1:BD:E1:2F:34:F8:95:AF:B0:DD:50:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHQRWPPtZb7hveEvNPiVr7DdUNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/n3OZ58oa9SNtNZGSbGpRc6DiHRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/UHQRWPPtZb7hveEvNPiVr7DdUNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.235.36.0/24
147.235.45.0-147.235.47.255
147.235.60.0/22
147.235.72.0-147.235.80.255
147.235.93.0-147.235.95.255
185.130.84.0/22
IPv6:
2a06:c702::/48
Signature Algorithm: sha256WithRSAEncryption
57:ea:f8:ff:4c:32:14:ec:ba:fd:a6:e9:21:42:f9:9f:a9:f5:
58:9d:87:d2:b9:f6:95:78:71:5d:00:73:6d:37:c1:9f:20:39:
10:16:f8:d7:d3:d9:70:70:1f:d3:34:48:92:6e:06:79:2f:5a:
2e:b3:b3:53:51:8a:fa:09:8f:c8:76:67:b9:87:a6:0c:c7:c9:
07:3b:cf:95:ae:49:50:8b:e6:ce:53:d5:9a:e2:60:b0:08:e6:
fe:8d:9f:e4:ba:eb:93:5c:12:b0:f5:c9:2b:d5:f4:4d:fe:31:
89:1a:17:45:78:25:77:50:2a:95:06:f0:53:77:03:7b:8d:bc:
1e:4e:8e:71:06:ce:86:23:42:2b:19:b1:8e:50:a3:0d:f9:a0:
b1:2b:01:01:5d:04:d1:55:21:80:2b:9b:1a:09:25:52:2c:07:
d4:e4:38:97:a0:26:2a:60:a0:ad:4f:f4:0a:89:5d:19:5c:ac:
1a:57:69:9e:83:04:f3:d6:88:ea:a0:72:e3:e9:f5:ba:d9:0a:
18:a0:18:9f:a7:a3:13:be:34:c7:fe:44:b5:fe:28:44:b4:4b:
cc:70:a5:22:af:30:61:37:24:0f:c3:44:b8:68:86:a0:27:34:
3f:ba:cc:ed:3d:af:cf:62:a4:cc:d1:6a:30:1a:c4:62:4c:a4:
0d:3b:d1:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:18 2024 by rpki-client on console-fra.rpki-client.org