Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/CwerUnV7z43O2nAXL_PRHO_XKEg.roa
File: CwerUnV7z43O2nAXL_PRHO_XKEg.roa (raw, json)
Hash identifier: F/YatZQAV3SdjFdbxppfqxtgJDezaIMtGCe0/HEWhaA=
Subject key identifier: 0B:07:AB:52:75:7B:CF:8D:CE:DA:70:17:2F:F3:D1:1C:EF:D7:28:48
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 03044A6F
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/CwerUnV7z43O2nAXL_PRHO_XKEg.roa
Signing time: Tue 24 May 2022 15:30:13 +0000
ROA not before: Tue 24 May 2022 15:30:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206273
IP address blocks: 185.198.60.0/23 maxlen: 23
185.198.62.0/23 maxlen: 23
31.130.244.0/22 maxlen: 22
178.212.60.0/22 maxlen: 22
91.218.154.0/23 maxlen: 23
185.191.62.0/23 maxlen: 23
185.191.60.0/23 maxlen: 23
2a0a:15c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50612847 (0x3044a6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: May 24 15:30:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b07ab52757bcf8dceda70172ff3d11cefd72848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1d:9f:c9:6f:cb:5a:20:dd:9d:ed:ae:c1:53:
b4:6f:1b:6b:29:8a:a5:96:22:f3:cb:e1:b0:55:ca:
9a:86:46:31:8e:6e:0d:3f:88:ee:d6:71:ab:38:ff:
1c:e3:ce:08:18:56:a4:16:b1:92:46:3e:2d:66:6f:
0e:a1:be:7c:b9:ce:ae:ca:3a:e1:f3:49:af:c2:db:
eb:e3:67:47:8c:56:f7:61:d6:5c:b1:b1:78:42:c7:
7f:71:5e:88:6e:4b:4b:24:16:b2:bf:98:e6:43:d5:
f6:46:34:f2:00:f8:ad:fc:93:b7:12:e9:5e:c5:1e:
99:43:f0:ac:a0:95:50:db:bb:f3:d2:84:28:60:2c:
1c:ad:c8:31:a8:d2:4f:e8:b9:c3:a5:64:46:24:00:
b3:fa:b9:c7:4a:31:f1:3c:03:a9:14:54:e2:8e:83:
9b:d9:b0:4d:26:72:76:aa:a0:cc:ed:31:81:37:39:
51:55:cb:5c:6f:77:7b:37:41:20:2c:ec:d9:75:f2:
90:f7:b1:57:a7:03:0c:d0:14:8f:45:77:b5:3f:0f:
33:a2:54:59:7d:df:e8:6f:f0:4e:33:eb:23:7b:53:
6b:c5:32:01:0c:dd:49:b8:b3:69:59:e1:0e:57:18:
ad:d9:d3:2e:1d:08:fe:36:82:37:f7:ab:13:c6:ac:
fa:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:07:AB:52:75:7B:CF:8D:CE:DA:70:17:2F:F3:D1:1C:EF:D7:28:48
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/CwerUnV7z43O2nAXL_PRHO_XKEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.244.0/22
91.218.154.0/23
178.212.60.0/22
185.191.60.0/22
185.198.60.0/22
IPv6:
2a0a:15c0::/29
Signature Algorithm: sha256WithRSAEncryption
3a:a7:e5:55:d1:7d:a8:2e:3f:d7:b2:0c:a2:15:f2:14:a6:81:
4f:f3:34:d5:18:c7:31:89:dd:b1:c2:54:cf:61:35:10:d7:3b:
fc:46:2b:7f:b7:c5:2f:cf:37:cf:c6:02:a2:6d:c1:c9:90:2c:
b2:b5:85:81:ad:70:59:7e:f9:10:94:4b:2f:47:54:39:3f:a2:
11:52:46:da:d8:1a:f5:8e:4f:24:cb:78:0c:f6:93:03:41:d9:
81:1a:83:e3:ef:96:7b:aa:82:22:0d:f6:b5:e7:eb:4e:d7:0f:
57:0f:03:68:65:a4:86:1b:20:e5:48:47:ad:8d:d8:1f:21:bc:
24:b6:69:0d:3f:a4:7d:9a:ff:c4:3b:a4:3a:e4:5b:16:5f:ca:
6d:29:8c:70:eb:32:d9:34:02:d2:54:9f:60:3b:7d:b1:46:84:
f2:bd:74:4a:b9:08:f2:4b:71:08:64:5c:20:e5:d6:cf:fa:f1:
7f:a1:f0:28:f4:a8:64:4d:d0:0e:fc:45:7d:6f:88:cb:93:3b:
28:4a:37:ba:30:a8:4a:50:3a:4f:14:88:3c:70:64:ec:ed:11:
bf:72:4d:87:97:0e:6d:64:f4:15:57:f0:f4:e4:0f:05:ee:1f:
28:2e:e2:de:85:a0:c6:e2:61:96:44:68:1f:54:c8:79:7c:04:
68:90:60:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org