Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/xKS9X91ccJmFlbpiL__MTU_tE_Y.roa
File: xKS9X91ccJmFlbpiL__MTU_tE_Y.roa (raw, json)
Hash identifier: ys1y5UbRe+iVSuRFhGWS/lx+dzahdEIy5cVGenLAvYM=
Subject key identifier: C4:A4:BD:5F:DD:5C:70:99:85:95:BA:62:2F:FF:CC:4D:4F:ED:13:F6
Certificate issuer: /CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Certificate serial: 17ACC648
Authority key identifier: 0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/xKS9X91ccJmFlbpiL__MTU_tE_Y.roa
Signing time: Fri 03 Jun 2022 08:41:28 +0000
ROA not before: Fri 03 Jun 2022 08:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15782
IP address blocks: 89.236.0.0/18 maxlen: 18
94.245.0.0/18 maxlen: 18
81.88.0.0/20 maxlen: 20
81.186.240.0/20 maxlen: 20
85.235.16.0/20 maxlen: 20
213.185.0.0/19 maxlen: 19
217.72.48.0/20 maxlen: 20
2001:7a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397198920 (0x17acc648)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Validity
Not Before: Jun 3 08:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4a4bd5fdd5c70998595ba622fffcc4d4fed13f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:60:56:23:5a:71:99:24:67:5b:2f:1c:7b:68:
8d:fe:e6:b0:2c:36:6d:17:3f:09:f6:60:3a:8f:4c:
b9:46:46:35:2a:6e:6e:89:dc:64:15:5d:ff:5e:47:
5a:ea:a5:0e:47:a3:49:a7:dd:31:99:1d:e1:45:d1:
9d:13:24:4e:29:e0:08:50:ad:b4:05:61:b7:dc:c3:
72:26:ce:fa:ee:8f:6d:df:44:72:42:d6:38:92:94:
2b:f2:5c:0a:cc:bc:54:80:b8:4f:0c:21:1b:b3:88:
24:22:d3:79:7c:c1:32:5b:86:59:d2:8b:f1:d2:64:
93:48:24:b4:a4:fd:05:90:51:40:44:7b:1a:09:fe:
b4:cb:b9:a2:ef:49:43:81:32:2a:6f:6d:4a:8d:95:
f6:01:3e:e1:19:a3:11:05:24:59:15:64:4b:e8:da:
6b:79:13:ad:a0:ae:6e:44:cb:f0:f8:2f:22:31:93:
1c:67:30:63:11:6e:ea:94:8f:e1:e5:85:e6:09:b7:
fa:b2:13:8e:0c:d5:24:0f:d3:e8:e0:c3:f6:e1:6a:
52:8d:08:b9:f0:08:a0:09:10:3e:81:a3:ba:9d:12:
e7:91:3c:1b:14:45:0b:bf:01:85:94:06:57:ff:07:
26:d0:6a:1b:5c:cf:b6:49:ab:97:09:40:e2:94:6e:
c4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A4:BD:5F:DD:5C:70:99:85:95:BA:62:2F:FF:CC:4D:4F:ED:13:F6
X509v3 Authority Key Identifier:
keyid:0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/xKS9X91ccJmFlbpiL__MTU_tE_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.0.0/20
81.186.240.0/20
85.235.16.0/20
89.236.0.0/18
94.245.0.0/18
213.185.0.0/19
217.72.48.0/20
IPv6:
2001:7a0::/32
Signature Algorithm: sha256WithRSAEncryption
02:d7:58:b0:e9:6b:c4:b7:0c:64:7d:dd:30:22:d6:de:10:02:
71:3c:ac:ac:d3:c9:0c:7b:b2:d9:15:31:a7:e1:cb:65:2c:fd:
70:f2:1d:38:d7:91:14:69:65:c0:ce:99:59:ea:f1:cd:9f:cc:
f8:ba:bf:50:f5:7b:5b:94:da:c5:ea:4e:37:12:d9:8e:10:ae:
28:86:e8:82:68:da:cf:a6:2f:d9:36:3b:29:18:9c:4a:8f:0b:
39:7d:3f:02:cb:a4:42:f1:fd:42:e3:94:fc:6e:76:eb:18:4c:
8e:e0:e0:11:cb:7d:4e:c5:f3:9f:9d:f9:af:da:11:13:35:78:
e9:28:27:d1:ab:c9:57:68:52:e1:6e:1b:a5:31:23:26:65:1b:
9b:7d:9f:e1:b2:bd:1e:6d:6c:3b:b3:bc:59:d9:58:1a:14:32:
6f:b6:f3:9b:23:f9:b3:ff:63:a7:7b:a8:ee:e2:a7:dd:d8:37:
1b:85:c1:a6:12:e8:90:0d:64:c8:d2:4a:43:36:71:a3:e3:55:
92:b4:ab:2e:e3:da:58:8c:9e:7f:42:be:9b:7a:cf:43:cd:14:
88:7c:cb:1b:b8:51:98:6a:77:fb:5d:80:72:20:94:57:02:c5:
d6:61:a7:11:36:1f:32:a1:c1:56:d9:d5:b6:3b:78:95:2d:57:
d4:67:92:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:49 2023 by rpki-client on console-ams.rpki-client.org