Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/ssxcfiulgmR8h0q0sSGVbrZ-zaI.roa
File: ssxcfiulgmR8h0q0sSGVbrZ-zaI.roa (raw, json)
Hash identifier: PDk52mOYmUyGUIQ38JB+fCQzQNgJUMuGD0ICKM8hj7g=
Subject key identifier: B2:CC:5C:7E:2B:A5:82:64:7C:87:4A:B4:B1:21:95:6E:B6:7E:CD:A2
Certificate issuer: /CN=a49c4e0cf5c8dbbb6a67cf1da2f31f4162749fdd
Certificate serial: 2FF8D67B
Authority key identifier: A4:9C:4E:0C:F5:C8:DB:BB:6A:67:CF:1D:A2:F3:1F:41:62:74:9F:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJxODPXI27tqZ88dovMfQWJ0n90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/ssxcfiulgmR8h0q0sSGVbrZ-zaI.roa
Signing time: Sat 01 Jan 2022 01:59:37 +0000
ROA not before: Sat 01 Jan 2022 01:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202087
IP address blocks: 185.83.148.0/23 maxlen: 23
185.83.150.0/23 maxlen: 23
94.26.95.0/24 maxlen: 24
94.26.98.0/23 maxlen: 23
94.26.97.0/24 maxlen: 24
94.26.93.0/24 maxlen: 24
94.26.101.0/24 maxlen: 24
94.26.103.0/24 maxlen: 24
94.26.109.0/24 maxlen: 24
104.255.128.0/21 maxlen: 21
192.190.168.0/22 maxlen: 22
185.75.80.0/22 maxlen: 22
153.94.56.0/21 maxlen: 21
185.94.78.0/23 maxlen: 23
185.94.76.0/23 maxlen: 23
94.190.197.0/24 maxlen: 24
94.190.196.0/22 maxlen: 22
94.190.196.0/24 maxlen: 24
94.190.199.0/24 maxlen: 24
94.190.198.0/24 maxlen: 24
45.94.8.0/22 maxlen: 22
185.9.212.0/22 maxlen: 22
45.89.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 804836987 (0x2ff8d67b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a49c4e0cf5c8dbbb6a67cf1da2f31f4162749fdd
Validity
Not Before: Jan 1 01:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2cc5c7e2ba582647c874ab4b121956eb67ecda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a1:61:cf:71:9a:b0:88:a4:c8:01:6d:e2:d5:
39:92:64:d1:70:11:0d:49:ee:17:30:28:80:ae:2d:
33:30:97:52:1e:5b:16:07:da:57:d5:a0:76:8f:43:
11:c4:33:12:03:72:1f:f9:ef:f7:94:1f:dd:87:69:
3e:71:0f:85:df:d2:9d:d6:37:67:91:2d:c0:d8:78:
db:c5:97:15:0a:a8:bc:b0:85:52:e2:27:66:4b:34:
31:24:2b:c4:b8:12:13:11:c9:cd:cd:af:0d:91:3a:
cd:de:11:99:48:69:6e:f6:81:d5:b7:94:05:4c:b9:
c5:13:98:11:20:f9:7e:d8:f9:66:c7:0e:6f:51:87:
6e:77:85:af:8a:7f:9a:e1:24:bf:7f:8d:28:5e:a6:
dc:7b:bf:6f:f2:8f:ca:02:e7:36:2f:a2:9b:23:5f:
8b:6a:d9:27:5e:3a:cc:b9:5b:58:3f:1c:9a:a0:ee:
f7:20:6d:d1:21:b8:89:af:7f:80:fe:e5:77:ed:9e:
a4:40:4c:26:38:2e:60:b0:13:05:3d:33:40:0e:f3:
07:59:3f:90:3d:75:25:da:87:35:2d:ae:e6:f0:55:
04:82:54:c5:4f:a9:c3:85:56:63:a3:11:f8:bd:9f:
ae:a8:8b:6e:23:3a:73:e8:bb:ca:65:29:65:d3:7c:
06:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CC:5C:7E:2B:A5:82:64:7C:87:4A:B4:B1:21:95:6E:B6:7E:CD:A2
X509v3 Authority Key Identifier:
keyid:A4:9C:4E:0C:F5:C8:DB:BB:6A:67:CF:1D:A2:F3:1F:41:62:74:9F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJxODPXI27tqZ88dovMfQWJ0n90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/ssxcfiulgmR8h0q0sSGVbrZ-zaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e19c6-defd-455f-90a3-88ed8d7717a4/1/pJxODPXI27tqZ88dovMfQWJ0n90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.212.0/22
45.94.8.0/22
94.26.93.0/24
94.26.95.0/24
94.26.97.0-94.26.99.255
94.26.101.0/24
94.26.103.0/24
94.26.109.0/24
94.190.196.0/22
104.255.128.0/21
153.94.56.0/21
185.9.212.0/22
185.75.80.0/22
185.83.148.0/22
185.94.76.0/22
192.190.168.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:cb:17:57:3f:a9:f0:44:23:00:62:f4:fd:f9:24:a7:1b:62:
61:65:1c:41:db:e8:34:dd:b3:23:d9:bf:00:30:fc:64:13:77:
d8:8e:ca:83:e4:8d:e0:39:b1:f2:1d:95:79:ca:3a:df:1b:41:
52:1b:5d:bb:60:6d:d6:b5:ac:35:84:bb:a0:de:e2:9b:8b:f0:
5c:82:71:48:19:23:e2:51:5a:b2:de:f9:34:d3:43:4c:1a:d3:
e6:f1:28:91:c8:90:85:15:7d:ce:72:01:22:ca:b7:01:3d:4e:
fd:82:82:5a:09:b2:81:4b:7b:e2:d1:b8:84:0d:e7:84:17:95:
b5:bd:7a:dd:35:0a:0a:20:90:91:47:16:13:36:43:d8:7a:e1:
a3:3e:01:1c:37:6e:6c:3e:70:c2:f4:01:c9:dd:d4:22:31:0d:
72:82:29:51:b6:59:19:61:10:e3:e2:ff:e0:bb:4b:6d:47:ab:
ca:72:77:57:2d:bc:68:21:6a:3e:49:a2:19:d3:f8:7e:1a:fe:
3d:ce:02:85:37:21:ea:07:d9:87:40:d3:82:f2:08:f9:8a:52:
5a:bc:84:df:7c:d1:02:a7:ca:55:06:54:cd:79:10:c8:38:60:
f2:b9:12:e6:60:cb:3e:08:58:a4:78:dd:5d:8c:75:b3:05:f6:
2f:82:c6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:00 2024 by rpki-client on console-fra.rpki-client.org