Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/06A_uA-D0FtSJ6F8UlxBbmlYxro.roa
File: 06A_uA-D0FtSJ6F8UlxBbmlYxro.roa (raw, json)
Hash identifier: htwylhYK9RR23BQSt5NO3GZogGXXWWGL0uVE/9L9ieE=
Subject key identifier: D3:A0:3F:B8:0F:83:D0:5B:52:27:A1:7C:52:5C:41:6E:69:58:C6:BA
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 07DE8C82
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/06A_uA-D0FtSJ6F8UlxBbmlYxro.roa
Signing time: Sat 01 Jan 2022 15:00:56 +0000
ROA not before: Sat 01 Jan 2022 15:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12874
IP address blocks: 89.39.200.0/23 maxlen: 23
188.215.94.0/24 maxlen: 24
193.169.20.0/24 maxlen: 24
94.177.21.0/24 maxlen: 24
37.153.135.0/24 maxlen: 24
89.43.192.0/24 maxlen: 24
86.107.110.0/24 maxlen: 24
185.36.72.0/22 maxlen: 22
89.40.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132025474 (0x7de8c82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Jan 1 15:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3a03fb80f83d05b5227a17c525c416e6958c6ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:49:9e:f2:d8:d0:fa:23:30:d2:5e:26:f6:1d:
a3:0b:2f:18:ec:a6:d5:d4:fb:1d:9d:c4:3c:fb:6e:
ca:d4:c5:42:65:09:a9:47:5a:fb:89:59:d6:4d:b5:
fb:82:d5:0b:78:5a:e0:5a:0a:c4:57:db:10:50:52:
79:81:28:aa:a4:ff:c2:72:40:9d:00:ee:00:39:fa:
64:7c:fb:ea:1c:86:7d:25:ee:59:94:4b:1b:85:42:
38:33:c9:10:a7:6f:40:fa:47:cc:cb:87:f0:37:de:
53:d3:ef:14:a2:54:98:21:9b:c6:bf:d2:55:46:05:
b4:6f:cd:9b:f9:d1:14:ca:39:35:9f:1f:74:02:4b:
c3:5e:c2:c1:93:f3:aa:b9:69:2f:31:62:ae:d3:4a:
c0:a0:32:34:43:72:36:a9:97:0b:4e:5c:1b:0f:9d:
36:fc:5b:e8:e3:09:0b:3e:20:97:47:d8:ad:7b:83:
6d:62:a5:4f:c0:f4:e2:49:9a:86:54:f2:a0:62:27:
49:87:2d:03:b8:f5:02:04:a8:f7:68:5a:2b:77:e9:
91:2f:f2:8b:50:aa:73:3f:8d:4e:08:e7:e2:b7:0d:
d2:95:85:60:cc:93:6d:99:a9:32:9a:ca:62:63:4c:
df:f7:cf:8b:0a:b8:3a:10:ce:11:b6:23:bd:d1:68:
40:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A0:3F:B8:0F:83:D0:5B:52:27:A1:7C:52:5C:41:6E:69:58:C6:BA
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/06A_uA-D0FtSJ6F8UlxBbmlYxro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.135.0/24
86.107.110.0/24
89.39.200.0/23
89.40.142.0/23
89.43.192.0/24
94.177.21.0/24
185.36.72.0/22
188.215.94.0/24
193.169.20.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b6:42:27:75:11:c0:b3:b5:cd:b3:f5:d1:32:96:dd:a5:b4:
39:7f:2c:da:ec:d0:45:a6:81:4c:77:d9:97:13:42:6f:74:fa:
11:27:3e:52:19:8f:06:66:52:32:49:53:5e:26:8e:9a:42:9f:
58:8c:f6:2c:c3:48:70:0d:29:ff:74:ec:20:15:54:f7:1c:2c:
74:ab:1d:e9:21:8d:18:66:19:97:04:9e:01:f1:c8:8c:92:de:
94:2e:ac:46:02:0d:11:fe:5b:24:a1:87:a0:ea:52:ff:2c:4f:
20:f9:76:6b:f7:5c:75:5a:bb:16:8c:44:68:d4:d4:e6:e4:78:
1b:27:93:10:bc:98:4a:1c:5b:7c:ce:a7:98:de:29:d7:f8:40:
90:80:d8:24:04:7b:d5:c5:7f:ab:2f:be:a7:44:1c:60:f3:e7:
f1:98:1a:69:b3:e5:08:13:65:55:3a:8f:2e:af:6d:0c:3e:d8:
c9:d0:97:e8:07:6f:dc:39:9b:14:74:72:02:f0:94:1e:39:b4:
18:3a:91:c7:56:92:4f:a1:a9:cd:6b:90:0f:e4:23:75:1a:3b:
67:2b:86:0e:86:bf:75:3a:8e:37:a1:28:60:63:4c:d0:b0:18:
32:5e:40:bf:5c:a0:ab:55:2a:0c:f9:61:d1:fc:f3:e9:fe:cd:
e1:86:1a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:18 2025 by rpki-client