Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/LaXcb-E8QJJ3wcM6CTYrGfvksgw.roa
File: LaXcb-E8QJJ3wcM6CTYrGfvksgw.roa (raw, json)
Hash identifier: +xrzAQZXBrooEJvvSHSH0p523964YCbT0VlgRLklsOU=
Subject key identifier: 2D:A5:DC:6F:E1:3C:40:92:77:C1:C3:3A:09:36:2B:19:FB:E4:B2:0C
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1BA1DED5
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/LaXcb-E8QJJ3wcM6CTYrGfvksgw.roa
Signing time: Sat 01 Jan 2022 05:03:43 +0000
ROA not before: Sat 01 Jan 2022 05:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50835
IP address blocks: 91.193.30.0/23 maxlen: 23
81.161.48.0/22 maxlen: 22
194.33.64.0/23 maxlen: 23
91.246.192.0/22 maxlen: 24
176.113.180.0/22 maxlen: 22
91.246.203.0/24 maxlen: 24
176.110.112.0/23 maxlen: 23
91.246.217.0/24 maxlen: 24
81.161.8.0/22 maxlen: 22
192.162.184.0/23 maxlen: 23
37.97.120.0/24 maxlen: 24
37.97.121.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
91.237.92.0/24 maxlen: 24
194.33.66.0/23 maxlen: 23
176.115.236.0/22 maxlen: 24
193.36.203.0/24 maxlen: 24
109.207.129.0/24 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
91.229.18.0/23 maxlen: 23
91.200.132.0/24 maxlen: 24
91.200.134.0/23 maxlen: 23
91.238.39.0/24 maxlen: 24
176.116.236.0/24 maxlen: 24
91.239.220.0/22 maxlen: 22
91.224.212.0/24 maxlen: 24
93.120.8.0/23 maxlen: 23
91.232.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463593173 (0x1ba1ded5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 1 05:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2da5dc6fe13c409277c1c33a09362b19fbe4b20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c8:20:7f:5e:7b:92:c4:16:4f:85:e9:19:40:
9d:50:ee:5b:27:5f:9d:7b:4f:6f:2b:3c:59:2b:29:
e0:13:a1:20:5a:a0:aa:2c:5c:ad:be:c6:0e:e6:f1:
a4:c1:73:06:39:d8:e7:30:55:30:c2:5e:a9:af:60:
f7:4d:12:5f:d3:a2:37:ae:29:aa:6e:1e:88:0c:f5:
7f:a2:f1:94:db:7a:5f:b2:6d:d5:1a:72:0e:4e:21:
7b:88:68:1f:96:22:da:de:fb:06:88:b5:37:17:51:
ef:ce:bf:0c:0e:ea:26:c0:02:09:fa:f2:a8:5a:44:
64:2a:87:7d:b2:0d:52:fa:1c:8a:bb:59:9d:9e:ce:
63:26:7e:09:6e:90:19:aa:1c:62:56:7a:4f:1d:48:
dd:df:fa:e8:8e:27:5a:30:fe:2f:64:74:24:07:5c:
34:3a:52:24:e3:9e:30:70:92:ea:4a:f3:06:61:58:
48:be:1c:34:cf:09:fe:22:c5:68:fc:3a:f0:b9:ca:
27:a9:1d:b7:eb:e4:85:71:5b:c3:d5:fe:40:96:de:
a3:93:1f:15:2f:72:43:92:fa:f2:51:84:78:4b:72:
c9:6c:13:7e:68:de:29:8d:59:69:77:ae:65:f4:14:
bb:74:45:a7:a8:ed:d9:a2:37:28:82:7f:09:f2:97:
04:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A5:DC:6F:E1:3C:40:92:77:C1:C3:3A:09:36:2B:19:FB:E4:B2:0C
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/LaXcb-E8QJJ3wcM6CTYrGfvksgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.132.0/24
91.200.134.0/23
91.224.212.0/24
91.229.18.0/23
91.232.56.0/23
91.232.226.0/24
91.237.92.0/24
91.238.39.0/24
91.239.220.0/22
91.246.192.0/22
91.246.203.0/24
91.246.217.0/24
93.120.8.0/23
109.207.129.0-109.207.130.255
109.207.132.0/24
176.110.112.0/23
176.113.180.0/22
176.115.236.0/22
176.116.236.0/24
192.162.184.0/23
193.36.203.0/24
194.33.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:a2:74:c4:09:f6:ae:63:1e:b2:7a:b6:f7:ba:43:92:19:8d:
68:86:16:1a:04:65:9d:1b:83:17:2c:f6:e2:5a:98:56:14:ef:
0e:d0:05:c3:8a:96:3a:ac:fe:6a:63:bf:f3:a0:9b:11:54:14:
52:82:2d:a5:85:de:78:32:48:61:7b:a4:1d:b1:74:6f:59:2e:
bb:95:e7:fc:e2:77:ab:fd:73:94:d7:c7:78:e5:e7:13:2f:6b:
7e:a4:cb:d2:4a:81:2c:f1:0f:74:90:73:eb:7f:9e:62:1a:d3:
da:4c:1f:95:0a:2d:90:5c:00:74:0f:2b:46:92:b9:66:38:e7:
9a:dc:a9:70:de:82:eb:31:a8:bd:45:ca:f1:3a:59:6e:9c:68:
7a:ec:44:ef:9a:37:60:be:49:5b:c9:5c:28:04:4e:15:bc:dd:
db:0a:3e:c2:34:9f:43:56:db:ac:6a:6d:93:fd:e7:89:4c:25:
f4:f2:52:36:eb:cd:a6:e2:b1:64:9f:11:20:09:6a:bc:de:e7:
fe:0f:73:72:b8:21:81:ba:78:a7:10:31:48:22:8b:0f:e9:6c:
1c:d4:44:84:15:8a:1b:cd:6e:56:96:77:60:fa:2d:0d:24:97:
ab:30:05:63:34:c0:4c:67:5e:4e:f6:09:17:44:5e:0c:b9:fc:
3c:01:6b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org