Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/d75D9TP0Hrrh04bWA88rL9yExxw.roa
File: d75D9TP0Hrrh04bWA88rL9yExxw.roa (raw, json)
Hash identifier: +1uK2XbhU9iAphkS65TyzYWHUsWio3TXWcNuWCVCj6E=
Subject key identifier: 77:BE:43:F5:33:F4:1E:BA:E1:D3:86:D6:03:CF:2B:2F:DC:84:C7:1C
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1380208F
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/d75D9TP0Hrrh04bWA88rL9yExxw.roa
Signing time: Sat 01 Jan 2022 05:56:14 +0000
ROA not before: Sat 01 Jan 2022 05:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51246
IP address blocks: 185.147.49.0/24 maxlen: 24
91.242.103.0/24 maxlen: 24
91.242.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327164047 (0x1380208f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77be43f533f41ebae1d386d603cf2b2fdc84c71c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:79:66:55:a3:a7:a0:2c:68:56:7d:4c:57:8e:
40:35:67:24:ea:2a:20:11:64:9a:64:b8:08:82:4d:
96:7f:7a:46:36:ba:b4:f4:58:7c:95:65:84:45:87:
3f:ff:0a:15:d2:44:39:ec:14:78:af:05:d2:95:5e:
ae:98:43:39:a0:a3:17:6c:f1:50:78:a8:f9:b1:16:
fe:ab:4a:39:7e:84:9c:65:b9:02:65:5b:b0:c6:39:
1f:78:b6:e0:72:11:71:00:1e:b0:05:5c:19:3d:23:
69:e1:f3:9d:d7:0a:ed:ce:71:dc:ce:78:d8:22:a6:
3e:e1:95:01:89:d1:65:09:1b:0b:96:9b:96:b1:06:
fc:ee:76:0f:06:ce:e4:b6:49:88:02:36:b9:c9:83:
3e:b3:88:ab:8f:a6:48:00:cc:32:88:3b:60:66:29:
c8:07:57:01:eb:4a:4b:ac:11:8b:67:de:1d:3b:11:
77:41:92:db:0b:71:c2:95:4d:a9:f7:ba:32:9a:20:
3b:33:79:4b:79:5c:c8:5d:d6:5c:f9:a7:08:bf:a6:
5d:82:d7:21:99:4f:64:fd:05:da:4e:cd:f7:3c:5a:
f8:4b:eb:82:6d:13:16:8f:d2:5b:02:af:56:b2:13:
71:6e:d7:d4:b7:47:7d:ca:69:44:38:84:82:8d:b8:
7b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BE:43:F5:33:F4:1E:BA:E1:D3:86:D6:03:CF:2B:2F:DC:84:C7:1C
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/d75D9TP0Hrrh04bWA88rL9yExxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.74.0/24
91.242.103.0/24
185.147.49.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:db:25:3a:f3:73:35:64:63:ac:fd:2b:42:eb:66:17:12:21:
51:f9:58:84:2c:89:86:26:51:52:65:2b:d3:a3:d0:35:4c:18:
91:53:35:cb:07:14:7c:27:0a:3b:b5:fd:df:84:3a:78:2a:ad:
fd:26:6d:e1:b8:54:78:30:ec:b7:31:d7:6e:7b:45:63:e2:ca:
4a:23:c4:03:fc:d3:49:ca:31:50:15:74:4c:af:9d:c3:cb:f2:
a9:49:6c:28:78:ae:15:b2:b0:30:c5:5b:26:cd:dd:9b:a5:67:
2c:87:dc:ac:a1:96:1a:9f:b2:7d:ac:0b:17:a1:40:63:f7:c8:
bc:6f:b3:f6:fc:6e:28:2a:5a:fb:1e:30:4e:8f:ac:04:12:cf:
0a:ce:f3:ee:91:7a:d7:73:a7:94:eb:cf:9c:90:44:03:91:08:
a0:fe:e9:be:ac:c9:8a:3e:3a:bd:d3:c1:dc:61:ba:7c:45:80:
6b:60:63:57:e9:56:cd:a6:fa:ed:d4:75:25:33:b7:a1:a9:09:
de:03:20:ee:7e:59:47:cf:de:a2:ae:da:7e:28:26:38:7e:e3:
c9:18:4d:be:db:22:be:fa:96:78:b4:fc:53:80:be:9c:8d:82:
4a:41:bc:8d:3e:7b:a1:f7:8e:59:2b:ac:2a:bf:e1:20:26:bb:
e1:e7:aa:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:41 2024 by rpki-client on console-fra.rpki-client.org