Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/XrmUjFWMD8IYzYA8topNja4BlnE.roa
File: XrmUjFWMD8IYzYA8topNja4BlnE.roa (raw, json)
Hash identifier: lTLZLenPu8HCb7sNecKfmEBHn4A0CtKnalDIBvTmHXQ=
Subject key identifier: 5E:B9:94:8C:55:8C:0F:C2:18:CD:80:3C:B6:8A:4D:8D:AE:01:96:71
Certificate issuer: /CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Certificate serial: 01821053497709302F0B5C4C0F3165F7339A
Authority key identifier: A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/XrmUjFWMD8IYzYA8topNja4BlnE.roa
Signing time: Mon 18 Jul 2022 08:01:09 +0000
ROA not before: Mon 18 Jul 2022 08:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44306
IP address blocks: 213.186.25.0/24 maxlen: 24
213.186.26.0/24 maxlen: 24
213.186.27.0/24 maxlen: 24
213.186.28.0/22 maxlen: 24
185.151.132.0/24 maxlen: 24
185.151.133.0/24 maxlen: 24
185.151.134.0/24 maxlen: 24
85.222.164.0/22 maxlen: 24
91.233.36.0/23 maxlen: 24
213.186.0.0/24 maxlen: 24
213.186.1.0/24 maxlen: 24
213.186.0.0/19 maxlen: 19
213.186.0.0/20 maxlen: 20
213.186.4.0/23 maxlen: 23
213.186.9.0/24 maxlen: 24
213.186.16.0/23 maxlen: 23
213.186.23.0/24 maxlen: 24
213.186.18.0/24 maxlen: 24
213.186.19.0/24 maxlen: 24
213.186.22.0/23 maxlen: 23
213.186.22.0/24 maxlen: 24
91.199.77.0/24 maxlen: 24
2a02:2608:fffe::/48 maxlen: 48
2a02:2608:fffe:1::/64 maxlen: 64
2a02:2608::/32 maxlen: 32
2a02:2608:2000::/48 maxlen: 48
2a02:2608:3000::/48 maxlen: 48
2a02:2608:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:10:53:49:77:09:30:2f:0b:5c:4c:0f:31:65:f7:33:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Validity
Not Before: Jul 18 08:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5eb9948c558c0fc218cd803cb68a4d8dae019671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:28:1e:6c:56:76:63:86:6f:ff:94:84:14:20:
25:63:ee:30:e8:22:a0:1f:af:f4:6b:59:0f:1b:e5:
35:96:66:7f:85:e7:47:72:17:28:6a:39:25:9d:7d:
fa:d6:44:d2:d4:d3:96:f8:27:ae:4e:af:c8:18:8e:
bb:47:d5:a9:d5:0f:bc:35:50:f9:45:36:48:e4:e8:
30:95:43:42:2d:5c:bf:a9:35:fa:2d:27:61:cf:c1:
d3:88:4a:b5:73:59:92:d9:d5:95:1b:03:34:15:ff:
91:71:52:50:03:22:fa:6b:a1:eb:2c:13:68:16:b0:
f8:c4:34:bf:b2:87:4d:45:b5:9e:55:ca:42:dd:ff:
db:d0:46:be:9d:79:86:1b:fd:12:61:28:6c:54:9f:
d9:cf:f7:9d:f4:0f:35:3a:80:7c:9c:b5:4c:47:4f:
a7:7d:78:40:fb:0c:f6:a3:19:0a:22:ef:81:63:26:
08:25:88:30:b1:f0:2d:a7:a0:de:4b:5f:85:47:11:
bb:e5:56:ac:de:d4:01:73:2d:f6:97:ce:6c:13:7d:
ac:58:75:1e:d6:86:92:7b:14:5c:df:41:9e:0d:40:
d4:4a:56:3e:ee:41:94:f1:4b:b7:17:3f:0a:56:3c:
e1:5e:1a:d4:d1:d7:6a:57:f1:ca:4b:e5:f6:a4:c7:
68:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B9:94:8C:55:8C:0F:C2:18:CD:80:3C:B6:8A:4D:8D:AE:01:96:71
X509v3 Authority Key Identifier:
keyid:A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/XrmUjFWMD8IYzYA8topNja4BlnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/p9eN4CNOb5lwFZL1NuRfX1WU7sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.222.164.0/22
91.199.77.0/24
91.233.36.0/23
185.151.132.0-185.151.134.255
213.186.0.0/19
IPv6:
2a02:2608::/32
Signature Algorithm: sha256WithRSAEncryption
6a:3d:55:90:81:e9:9f:43:df:05:47:ed:2c:43:38:1e:0c:7a:
5f:3c:c9:84:6c:e5:0f:30:e9:ad:25:3c:0c:3d:c2:95:99:a4:
dd:85:82:b2:d0:b3:ee:a2:42:75:af:f0:e0:0e:b5:23:1d:d4:
77:75:b8:fb:26:2e:5d:44:70:7e:9a:5b:60:a7:83:34:72:47:
da:52:3d:59:76:02:fb:00:79:4c:79:d5:da:4d:7e:93:5d:2b:
97:83:05:3e:0a:16:26:63:99:c6:7e:b5:f1:28:e1:26:17:20:
02:dd:03:e5:9a:22:64:34:0c:7d:19:84:7d:73:b4:8a:6b:7f:
76:c6:8c:16:b7:ed:ea:d9:93:7b:a2:ef:f5:b5:f2:06:f7:89:
dc:13:20:eb:7c:fa:39:08:53:ea:9f:98:26:37:51:c4:ca:a4:
04:1a:6a:78:3d:f2:82:00:a4:ad:26:2f:c0:53:86:94:38:07:
af:f8:32:99:c4:e6:09:68:8c:39:68:0b:26:76:0f:3f:5c:8c:
cb:07:37:61:f6:00:f6:9e:d8:91:bd:b2:20:67:f3:05:69:d5:
26:44:93:d2:7a:97:17:86:57:54:3f:34:39:c7:c0:57:d3:43:
07:c5:7c:87:bd:69:ad:8d:33:3c:42:7c:ab:36:60:31:b5:80:
7a:32:e0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:33 2024 by rpki-client on console-ams.rpki-client.org