Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/1-_Wct59_qjfj5AaoBjIxZpTblLk.roa
File: 1-_Wct59_qjfj5AaoBjIxZpTblLk.roa (raw, json)
Hash identifier: A4yQaWdLUEHRiKydlb5gsxRhivxaN6UJyvfQVnI0MGg=
Subject key identifier: FB:F5:9C:B7:9F:7F:AA:37:E3:E4:06:A8:06:32:31:66:94:DB:94:B9
Certificate issuer: /CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Certificate serial: 3C4C4775
Authority key identifier: 96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/1-_Wct59_qjfj5AaoBjIxZpTblLk.roa
Signing time: Sat 01 Jan 2022 13:57:37 +0000
ROA not before: Sat 01 Jan 2022 13:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28748
IP address blocks: 195.190.142.0/24 maxlen: 24
37.26.200.0/21 maxlen: 21
185.23.156.0/22 maxlen: 22
192.105.75.0/24 maxlen: 24
193.22.2.0/24 maxlen: 24
134.97.0.0/16 maxlen: 17
2001:650::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1011631989 (0x3c4c4775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Validity
Not Before: Jan 1 13:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbf59cb79f7faa37e3e406a80632316694db94b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:34:36:ed:cd:5f:16:73:97:33:97:ca:55:af:
ba:e4:07:c0:04:41:ae:e0:ec:42:a4:cb:22:37:35:
a5:56:d8:cd:da:40:97:58:df:f2:ec:47:82:7b:57:
cf:7c:b5:64:37:b3:81:33:53:b9:a6:67:e4:88:94:
90:ee:95:85:90:4c:55:a2:80:ef:f7:91:cc:ed:70:
0d:85:49:22:59:3d:4b:35:d4:81:01:93:ca:94:45:
90:a7:97:ee:6b:64:a5:d3:a4:94:4f:79:b6:bb:59:
9f:01:7d:04:a8:c5:f1:a4:2c:ee:ed:fa:bc:ce:f5:
b2:3d:fa:7f:f8:82:b5:7b:c5:04:0d:01:f9:5c:79:
fb:71:a8:0e:08:60:29:9c:0e:74:ee:f1:7c:72:45:
e9:c4:51:5f:19:15:64:ec:d7:05:f0:b7:88:e0:1e:
73:93:f2:c8:b2:dd:26:69:15:28:c2:b9:54:99:a6:
c2:ca:58:70:22:55:17:2e:d9:7b:59:d6:e3:33:d7:
72:6a:a4:43:0e:64:0a:cf:13:d3:f6:08:af:9e:34:
e6:8e:9a:15:40:f6:9e:9a:57:36:8e:17:e1:c3:dd:
b8:cb:d3:c9:64:c6:4c:dd:de:7d:28:be:a4:d0:f7:
5a:bd:48:14:16:38:86:df:f4:da:9e:0b:1f:4b:86:
a4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F5:9C:B7:9F:7F:AA:37:E3:E4:06:A8:06:32:31:66:94:DB:94:B9
X509v3 Authority Key Identifier:
keyid:96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/1-_Wct59_qjfj5AaoBjIxZpTblLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.200.0/21
134.97.0.0/16
185.23.156.0/22
192.105.75.0/24
193.22.2.0/24
195.190.142.0/24
IPv6:
2001:650::/29
Signature Algorithm: sha256WithRSAEncryption
53:08:8a:bf:d5:30:e6:d8:f8:65:43:31:84:f1:87:e1:6d:bd:
39:d0:a4:57:8c:ca:e0:53:49:98:7c:35:7a:f2:d4:2d:4c:32:
99:b3:0d:db:7c:34:fe:c6:75:fc:d3:63:d4:5d:86:1c:fd:b9:
54:13:df:bd:13:f4:f8:a2:a2:e8:b4:e8:ad:c3:1a:db:96:45:
d6:3e:70:bd:04:b0:a3:59:37:7d:57:0b:11:63:49:92:4b:af:
42:56:ee:1d:9d:07:84:a4:f2:f9:93:87:fd:5a:ef:57:ec:c4:
e3:96:a1:64:99:2a:23:c8:48:a5:80:eb:25:a2:cf:38:b8:38:
09:61:64:51:3d:8d:2b:db:73:9b:0e:b6:b6:1c:75:bc:1a:03:
06:90:69:21:ce:7c:05:a9:c9:d6:02:82:04:d3:bf:ef:1b:ff:
c4:d3:7b:f2:89:05:46:bc:65:1e:28:47:db:ae:f4:af:63:c4:
62:ca:67:62:95:0a:7f:05:23:4a:7b:62:41:2c:1e:36:ef:15:
70:33:7b:af:4e:40:e4:9a:9c:c9:11:8b:fd:f5:fa:54:ab:49:
61:19:61:9c:73:a1:84:58:b0:aa:98:27:11:c1:14:75:33:99:
97:2a:1a:d0:cc:d8:38:7a:73:4f:c1:25:1f:c6:ad:6c:d3:ce:
5d:6b:e9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:09 2024 by rpki-client on console-fra.rpki-client.org