Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/4HVfGFDjElG8Qs4lnCg4HHgQ-Lg.roa
File: 4HVfGFDjElG8Qs4lnCg4HHgQ-Lg.roa (raw, json)
Hash identifier: cpqO98pvuLlVTIm4OTanW+9iq+5tlEW/EMuKlHT1cFc=
Subject key identifier: E0:75:5F:18:50:E3:12:51:BC:42:CE:25:9C:28:38:1C:78:10:F8:B8
Certificate issuer: /CN=85b919a3feb0ec966299ff0fae8defcb415e22fe
Certificate serial: 01825809A451FA0187C4FE7C6BED86E2244A
Authority key identifier: 85:B9:19:A3:FE:B0:EC:96:62:99:FF:0F:AE:8D:EF:CB:41:5E:22:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbkZo_6w7JZimf8Pro3vy0FeIv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/4HVfGFDjElG8Qs4lnCg4HHgQ-Lg.roa
Signing time: Mon 01 Aug 2022 06:13:23 +0000
ROA not before: Mon 01 Aug 2022 06:13:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49974
IP address blocks: 185.18.0.0/22 maxlen: 22
37.35.96.0/22 maxlen: 22
37.35.101.0/24 maxlen: 24
37.35.103.0/24 maxlen: 24
37.35.100.0/24 maxlen: 24
37.35.102.0/24 maxlen: 24
213.5.32.0/21 maxlen: 21
45.157.164.0/22 maxlen: 22
2a00:9540::/32 maxlen: 32
2001:67c:238::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:09:a4:51:fa:01:87:c4:fe:7c:6b:ed:86:e2:24:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b919a3feb0ec966299ff0fae8defcb415e22fe
Validity
Not Before: Aug 1 06:13:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0755f1850e31251bc42ce259c28381c7810f8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7c:48:5c:32:46:af:56:48:57:97:3e:59:6a:
b7:97:69:8c:ef:15:bc:df:f4:74:9a:b0:a0:44:ac:
5e:a3:d4:25:52:54:d2:45:d3:86:db:14:38:8f:b6:
15:1c:08:cc:59:df:14:37:40:00:9a:9e:9d:d9:a8:
69:59:cf:28:b3:bb:1e:4b:94:dd:50:ab:a5:93:1e:
42:58:fd:ff:45:5c:bc:2a:8a:53:a1:4b:e8:0a:f2:
3d:da:92:dc:81:e7:48:54:87:e1:57:69:cf:da:a6:
62:ab:d1:16:5d:66:80:39:86:bc:35:10:28:9c:db:
a7:c8:01:70:81:fb:9f:69:c2:10:d9:a2:6e:16:6d:
8f:95:e5:94:56:4f:f2:86:8e:3b:4c:dc:4d:04:32:
de:5b:fa:c0:22:8d:15:72:aa:d8:09:03:5a:1d:d0:
cd:bf:d8:0c:6b:f8:f5:3a:f9:4b:e3:84:58:27:8c:
9a:c0:3e:bd:c9:8e:4c:0e:2c:ed:3b:9e:e3:a9:32:
1b:f4:29:ce:25:e5:c5:82:90:24:ef:9c:33:ff:3b:
5b:41:29:75:07:91:4f:1e:85:db:c5:57:46:29:df:
09:13:64:b4:83:a1:5c:19:25:5a:64:1e:a7:fb:99:
47:ba:de:d3:e9:f4:55:95:fe:ff:f0:b2:3d:a4:1b:
fc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:75:5F:18:50:E3:12:51:BC:42:CE:25:9C:28:38:1C:78:10:F8:B8
X509v3 Authority Key Identifier:
keyid:85:B9:19:A3:FE:B0:EC:96:62:99:FF:0F:AE:8D:EF:CB:41:5E:22:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbkZo_6w7JZimf8Pro3vy0FeIv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/4HVfGFDjElG8Qs4lnCg4HHgQ-Lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/hbkZo_6w7JZimf8Pro3vy0FeIv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.96.0/21
45.157.164.0/22
185.18.0.0/22
213.5.32.0/21
IPv6:
2001:67c:238::/48
2a00:9540::/32
Signature Algorithm: sha256WithRSAEncryption
64:7c:42:e7:90:b6:62:25:12:27:ed:c2:a6:42:95:e0:17:b2:
65:8c:2f:4f:91:45:31:2d:80:f0:bb:cf:d4:02:64:12:fd:ff:
c7:3c:18:9c:a6:13:3c:27:47:47:07:79:30:30:23:f5:91:c1:
53:2c:d5:b2:13:6b:a5:a4:96:b8:38:be:3e:eb:35:8b:eb:77:
74:15:b2:e3:11:40:39:0e:81:3a:4a:cf:fb:70:4b:3a:1f:f2:
f7:64:27:8e:ce:07:49:04:68:25:a1:58:dd:14:5a:ea:8f:72:
25:27:14:c7:ad:4b:71:62:3c:e8:b4:51:9c:b3:a2:87:df:06:
66:cf:33:ac:ce:5d:b7:aa:20:be:8e:f0:ba:e6:79:b9:e6:1a:
c9:ee:0b:2c:e4:7c:12:4b:5c:0c:84:b1:15:be:6c:be:ee:2b:
fb:d5:8b:48:ca:b1:6e:63:9d:9f:36:24:47:92:2c:34:99:be:
3c:ba:27:4f:33:df:31:92:0a:2f:6e:64:26:ec:5d:b8:8b:55:
6d:9a:b0:43:b1:24:64:37:a4:87:ea:9c:0a:0c:3b:84:5a:8b:
20:d1:62:e8:1e:48:24:50:1f:94:5a:c0:e7:e2:1d:19:c6:fc:
17:a7:02:cc:62:e4:8f:e6:f5:db:79:f7:e0:28:8c:19:64:9d:
35:62:ab:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:14 2024 by rpki-client on console-fra.rpki-client.org