Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/jfHBZwt9rR06xdBv4oA-jZkhUhQ.roa
File: jfHBZwt9rR06xdBv4oA-jZkhUhQ.roa (raw, json)
Hash identifier: mQF/mbZOBe7Gk0EvybQC0AlqDPsyl7VF7aMJNDkW/Dc=
Subject key identifier: 8D:F1:C1:67:0B:7D:AD:1D:3A:C5:D0:6F:E2:80:3E:8D:99:21:52:14
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1D5F4052
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/jfHBZwt9rR06xdBv4oA-jZkhUhQ.roa
Signing time: Fri 20 May 2022 11:16:30 +0000
ROA not before: Fri 20 May 2022 11:16:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34744
IP address blocks: 109.197.232.0/22 maxlen: 22
77.36.54.0/24 maxlen: 24
77.36.56.0/24 maxlen: 24
109.197.236.0/22 maxlen: 22
77.36.64.0/19 maxlen: 19
77.36.64.0/24 maxlen: 24
31.133.28.0/22 maxlen: 22
77.36.0.0/18 maxlen: 18
77.36.5.0/24 maxlen: 24
77.36.16.0/21 maxlen: 21
91.246.172.0/22 maxlen: 22
77.232.216.0/22 maxlen: 22
176.111.164.0/22 maxlen: 22
176.115.232.0/22 maxlen: 22
93.120.44.0/23 maxlen: 23
93.120.47.0/24 maxlen: 24
2a01:7d8::/48 maxlen: 48
2a01:7d8:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 492781650 (0x1d5f4052)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 20 11:16:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8df1c1670b7dad1d3ac5d06fe2803e8d99215214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fe:6a:7f:16:f0:a8:5a:3a:17:1a:ff:e2:df:
a4:f8:f8:67:b6:09:b3:81:48:41:39:44:39:d5:fa:
56:a3:10:1d:dc:5c:22:c8:bb:03:6f:b4:6a:41:8e:
5f:5d:8a:39:a3:89:d4:55:5a:8d:db:ea:81:19:d2:
8f:68:3a:1a:f6:bc:f2:be:2f:30:55:d5:2c:30:3f:
8f:11:02:31:b6:07:0d:48:5c:32:9b:f7:26:5f:60:
f5:3c:f9:7e:a2:95:c0:8c:56:5e:39:02:44:86:aa:
b2:f8:bf:7f:e9:38:04:da:c5:6b:c9:f5:f1:de:c1:
12:90:5f:c5:70:91:b9:dd:b7:50:a8:db:c7:f6:14:
6b:27:8e:31:5b:b3:cb:fe:ea:d2:3e:c2:cd:9e:f0:
28:17:f0:ad:38:03:7a:88:58:f0:68:32:2e:b8:c2:
1a:54:31:ee:ae:36:ca:b2:4c:0b:05:f2:de:a9:c4:
22:4d:d7:b3:16:2d:48:21:8d:63:39:11:ed:be:60:
2f:12:05:a7:5b:7f:4d:f3:45:2a:31:2a:5a:b3:9a:
e7:88:79:60:5f:f2:49:ae:85:c6:7a:12:a8:fe:48:
f6:63:41:f1:d6:04:fe:59:4d:34:b6:65:43:7a:3b:
e3:66:53:35:ef:65:0b:78:8d:8c:8f:25:78:c8:0b:
1c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F1:C1:67:0B:7D:AD:1D:3A:C5:D0:6F:E2:80:3E:8D:99:21:52:14
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/jfHBZwt9rR06xdBv4oA-jZkhUhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.28.0/22
77.36.0.0-77.36.95.255
77.232.216.0/22
91.246.172.0/22
93.120.44.0/23
93.120.47.0/24
109.197.232.0/21
176.111.164.0/22
176.115.232.0/22
IPv6:
2a01:7d8::/47
Signature Algorithm: sha256WithRSAEncryption
47:92:4a:2f:9d:d7:4b:c4:8d:3d:04:c1:ea:c3:55:bf:c9:35:
28:f8:a8:54:17:3d:f3:13:3f:06:84:19:de:fa:60:e4:2b:bc:
7f:ca:ee:e3:06:78:b8:69:f3:80:2c:d1:82:da:5e:8a:f1:ab:
eb:8a:d9:a9:a7:1b:ec:65:24:69:db:dc:fa:c1:ce:71:c0:ea:
dd:ca:32:86:f2:cd:bd:32:0d:14:ff:04:c2:32:fb:11:12:1f:
6b:40:ac:d5:41:1d:26:8b:ec:40:14:6e:1d:fd:dc:5c:17:74:
a4:5c:e3:62:53:c5:24:96:7a:0e:86:64:69:87:10:7c:d9:3e:
90:10:be:ca:79:79:5e:45:ad:16:da:55:f7:a4:3d:b4:1c:7a:
85:92:b3:7d:41:14:5a:bc:43:40:62:bc:3b:dd:49:9a:6f:fd:
3f:5d:1e:ba:8a:5e:3d:bd:6b:97:cf:1b:05:ee:65:66:d7:24:
a1:2f:98:9b:fa:df:6e:69:f9:03:db:b6:c5:79:92:ff:9c:d5:
15:3c:1b:01:9f:44:df:88:d8:8f:90:64:e3:cb:b9:85:85:cf:
1d:9d:81:52:eb:10:42:e9:22:f0:b3:f2:43:77:11:a5:fd:45:
be:81:f5:cf:7b:45:92:fb:60:52:3e:44:36:ed:89:c9:5f:0f:
60:56:59:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org