Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/xBsib_oOm0vlzXbsiY7trfhKj5g.roa
File: xBsib_oOm0vlzXbsiY7trfhKj5g.roa (raw, json)
Hash identifier: n8tX8Wxba+iinCYFsbhtbUwXLLKTIZqkusPLgvSFDDU=
Subject key identifier: C4:1B:22:6F:FA:0E:9B:4B:E5:CD:76:EC:89:8E:ED:AD:F8:4A:8F:98
Certificate issuer: /CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Certificate serial: 0B53F722
Authority key identifier: A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/xBsib_oOm0vlzXbsiY7trfhKj5g.roa
Signing time: Fri 17 Jun 2022 09:10:44 +0000
ROA not before: Fri 17 Jun 2022 09:10:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44306
IP address blocks: 213.186.25.0/24 maxlen: 24
213.186.26.0/24 maxlen: 24
213.186.27.0/24 maxlen: 24
213.186.28.0/22 maxlen: 24
185.151.132.0/24 maxlen: 24
185.151.133.0/24 maxlen: 24
185.151.134.0/24 maxlen: 24
91.233.36.0/23 maxlen: 24
213.186.0.0/24 maxlen: 24
213.186.1.0/24 maxlen: 24
213.186.0.0/19 maxlen: 19
213.186.0.0/20 maxlen: 20
213.186.4.0/23 maxlen: 23
213.186.9.0/24 maxlen: 24
213.186.16.0/23 maxlen: 23
213.186.23.0/24 maxlen: 24
213.186.18.0/24 maxlen: 24
213.186.19.0/24 maxlen: 24
213.186.22.0/23 maxlen: 23
213.186.22.0/24 maxlen: 24
91.199.77.0/24 maxlen: 24
2a02:2608:fffe::/48 maxlen: 48
2a02:2608:fffe:1::/64 maxlen: 64
2a02:2608::/32 maxlen: 32
2a02:2608:1000::/48 maxlen: 48
2a02:2608:3000::/48 maxlen: 48
2a02:2608:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190052130 (0xb53f722)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Validity
Not Before: Jun 17 09:10:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c41b226ffa0e9b4be5cd76ec898eedadf84a8f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:19:05:0c:8a:5b:f4:85:ad:38:e2:73:0f:c0:
70:fb:e5:35:73:b9:72:88:3f:d4:9e:b2:1a:69:70:
2d:3d:98:e8:fc:ed:49:69:91:1f:5f:6a:06:94:25:
9d:d2:12:0b:01:ad:35:77:bb:40:ed:45:b7:9c:b6:
8b:b0:48:e4:be:5b:44:6c:c2:12:72:75:ff:f3:d9:
07:2f:de:ce:76:95:80:34:50:75:59:d6:09:cb:10:
03:d3:de:2f:a1:cd:ce:a3:64:ff:88:5a:3d:4c:b9:
d8:fc:a4:61:56:d7:b0:73:83:2b:8f:c8:be:e0:6e:
3f:2b:88:d9:fc:3f:b4:aa:cc:1c:9a:ed:ef:6f:c9:
04:c3:8b:13:f7:a6:9a:d4:b6:80:cc:1a:e9:c8:67:
aa:14:a4:de:82:5f:d7:ed:51:dc:5c:d9:31:0b:df:
45:9d:e8:a4:c8:4d:61:e2:dc:91:5f:42:e1:de:66:
da:10:43:31:2d:25:1f:ec:7c:13:63:9c:af:5b:2b:
ea:40:ea:fe:c0:1b:04:60:d4:bd:7e:27:12:e4:a4:
56:c6:05:10:6c:9b:51:11:48:dd:b0:d9:5b:da:71:
bb:05:a1:03:ea:72:a0:e1:2b:be:70:9e:55:7a:a6:
4e:20:f0:f4:80:0e:b4:05:da:28:25:d4:53:26:35:
2e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1B:22:6F:FA:0E:9B:4B:E5:CD:76:EC:89:8E:ED:AD:F8:4A:8F:98
X509v3 Authority Key Identifier:
keyid:A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/xBsib_oOm0vlzXbsiY7trfhKj5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/p9eN4CNOb5lwFZL1NuRfX1WU7sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.77.0/24
91.233.36.0/23
185.151.132.0-185.151.134.255
213.186.0.0/19
IPv6:
2a02:2608::/32
Signature Algorithm: sha256WithRSAEncryption
12:b8:46:0c:08:5c:e3:31:ed:4e:2f:d2:7a:30:39:f0:32:5a:
b6:51:c5:76:5d:70:e8:11:66:34:af:24:5a:13:69:f0:44:1c:
bb:a6:89:b3:e8:16:dd:3d:d3:bd:27:05:0e:e0:5e:d0:7e:f8:
cf:10:a7:e7:bc:1a:05:02:d6:82:1f:9e:b2:a3:53:af:d7:ca:
7f:5f:9d:5f:59:09:7a:95:48:67:af:29:54:f9:ea:18:bf:c4:
ef:4d:93:29:8b:7e:55:b7:96:0c:d7:96:e0:ba:54:75:95:f1:
73:a3:c8:ea:85:3d:a5:75:20:ef:36:16:19:25:70:d3:2c:f9:
d8:51:7d:49:08:7f:fe:d2:b0:01:af:ea:f4:49:94:9e:93:70:
f1:90:1c:24:ba:0a:51:e7:f1:20:c7:9f:3f:b4:1c:91:a4:0d:
75:a3:b1:36:d0:24:3a:d2:5c:60:b4:38:c9:67:0f:d5:09:92:
dc:24:96:33:f0:6d:89:fa:00:50:9f:ae:07:43:87:8a:e3:9b:
f6:ac:5c:08:04:f9:ec:e5:c7:31:1c:c6:b8:f2:7d:72:27:93:
da:ff:37:cf:5b:cd:ff:94:fb:60:05:d0:70:1a:38:1a:50:46:
16:f2:7d:b2:47:be:6c:27:96:8d:89:df:8d:33:6a:76:a8:eb:
58:1b:35:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:11 2023 by rpki-client on console-fra.rpki-client.org