Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/tCxJGIYi9pMjpNMHRAGdPCvg0wo.roa
File: tCxJGIYi9pMjpNMHRAGdPCvg0wo.roa (raw, json)
Hash identifier: aSwiUbxiTdN1u1FUNNl/b2qKKob/VJYPImPRs3cSMno=
Subject key identifier: B4:2C:49:18:86:22:F6:93:23:A4:D3:07:44:01:9D:3C:2B:E0:D3:0A
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 066BDD61
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/tCxJGIYi9pMjpNMHRAGdPCvg0wo.roa
Signing time: Tue 05 Apr 2022 07:54:32 +0000
ROA not before: Tue 05 Apr 2022 07:54:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 91.228.15.0/24 maxlen: 24
91.228.14.0/24 maxlen: 24
91.228.13.0/24 maxlen: 24
91.228.12.0/24 maxlen: 24
94.154.38.0/24 maxlen: 24
94.154.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107732321 (0x66bdd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Apr 5 07:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b42c49188622f69323a4d30744019d3c2be0d30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a7:e3:de:28:02:a8:2f:7b:ea:d4:91:c4:f7:
f5:b9:51:6c:e0:0c:f7:2e:10:f4:0b:24:59:da:d5:
b2:9f:6e:6b:ce:12:c6:f6:0c:ef:eb:fb:88:0b:30:
84:04:e7:86:ed:9c:e5:5c:f6:f7:53:66:a6:a7:72:
ae:bf:09:ba:66:6d:c8:32:60:a8:cd:77:3a:e3:77:
36:c1:3d:d6:a5:d8:25:7c:b3:1a:5f:18:70:70:6c:
0d:28:b7:69:5c:00:a6:2d:6e:b3:50:00:1c:c4:65:
e1:8f:d5:f2:8b:f4:36:fe:40:36:24:6b:51:50:d6:
da:f1:75:5b:ea:3c:55:a1:a0:5f:62:9c:72:aa:87:
f9:6b:7d:73:d8:91:42:32:fb:94:7a:67:fa:88:88:
08:21:2a:37:50:99:b6:d6:2a:22:f0:f2:72:8a:ae:
7e:ef:60:69:42:65:b3:79:98:8d:60:81:eb:d5:f1:
1f:db:98:0e:25:81:ce:49:c7:00:cf:e5:93:21:5d:
21:9b:d6:4a:bf:ab:06:0d:33:d3:ae:3a:84:6b:82:
fe:ae:87:20:9d:78:2a:ef:f2:1d:05:b0:94:37:1b:
33:b5:2d:00:f5:74:6f:e6:b6:eb:be:6d:3a:fc:5a:
21:2f:ea:a4:9e:66:02:1f:1f:25:dd:b6:1f:a9:27:
c6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:2C:49:18:86:22:F6:93:23:A4:D3:07:44:01:9D:3C:2B:E0:D3:0A
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/tCxJGIYi9pMjpNMHRAGdPCvg0wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/22
94.154.36.0/24
94.154.38.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:16:ec:e7:0d:d1:05:e8:6d:52:46:5a:f9:75:d7:13:a8:09:
64:1a:13:51:f0:7f:78:84:65:77:1f:47:eb:d6:c5:b0:3c:e4:
db:8b:06:c2:82:90:9f:b5:7f:26:f9:a0:49:bc:d2:de:fb:d6:
ec:78:2f:62:1d:0d:75:f8:b8:ce:ba:31:21:02:26:3a:0c:e6:
78:8e:4e:6d:52:d6:58:f8:6d:bd:3b:02:9e:71:a2:9e:b3:48:
b3:7f:56:83:22:15:65:58:46:76:dd:8e:40:53:ae:be:78:16:
6b:33:3f:c7:2a:a8:9f:00:56:70:9f:85:6b:d3:12:24:6e:a0:
da:17:b7:bf:8f:0d:15:d2:e4:81:90:07:21:35:c4:36:67:ca:
1d:ef:32:ad:07:b5:56:47:24:03:4e:0c:06:53:88:c7:db:bf:
84:c4:e3:d8:83:9a:87:73:42:24:52:90:38:1f:6f:a7:3c:da:
eb:09:b3:1d:f4:23:15:a3:aa:a0:18:81:eb:41:b4:ad:d2:94:
44:5c:27:96:ab:6f:9a:2d:8f:3e:68:97:2e:09:53:86:27:64:
78:b2:47:3a:00:33:5e:0f:54:25:3e:37:df:2b:83:88:d6:17:
e1:cf:d6:6e:1d:1a:7b:c6:ba:17:d2:cf:52:09:9a:13:e8:79:
ed:44:45:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:26 2024 by rpki-client on console-ams.rpki-client.org