Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/TO5TcjM6WBLBBnZ2mAA7iTFkZJk.roa
File: TO5TcjM6WBLBBnZ2mAA7iTFkZJk.roa (raw, json)
Hash identifier: SdONcK7K6AcxDGHY9+ldCMwTUN69sIZKTnI7TBIc2RI=
Subject key identifier: 4C:EE:53:72:33:3A:58:12:C1:06:76:76:98:00:3B:89:31:64:64:99
Certificate issuer: /CN=7879eb9dd62d51afa5012efa1a9d10c66400c445
Certificate serial: 12E38455
Authority key identifier: 78:79:EB:9D:D6:2D:51:AF:A5:01:2E:FA:1A:9D:10:C6:64:00:C4:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHnrndYtUa-lAS76Gp0QxmQAxEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/TO5TcjM6WBLBBnZ2mAA7iTFkZJk.roa
Signing time: Sat 01 Jan 2022 08:53:37 +0000
ROA not before: Sat 01 Jan 2022 08:53:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20546
IP address blocks: 91.198.250.0/24 maxlen: 24
195.10.208.0/24 maxlen: 24
91.223.20.0/24 maxlen: 24
80.241.56.0/21 maxlen: 24
80.241.60.0/24 maxlen: 24
185.97.172.0/22 maxlen: 24
2001:67c:2050::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316900437 (0x12e38455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7879eb9dd62d51afa5012efa1a9d10c66400c445
Validity
Not Before: Jan 1 08:53:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cee5372333a5812c106767698003b8931646499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8a:d9:94:93:29:45:b8:55:b5:67:d6:bf:1c:
47:ab:2e:1f:61:0f:aa:39:b8:52:5c:b5:2f:53:ba:
45:bf:8d:31:f0:99:f7:f4:de:a6:10:9f:1d:23:1b:
3a:05:63:65:07:e9:1d:16:be:73:28:2b:51:b6:a7:
6d:61:b9:1d:63:ea:e0:47:f3:53:48:2a:56:2f:0c:
ff:cd:52:e5:40:ce:25:42:5f:94:36:33:76:1e:73:
08:5f:d4:db:f5:5a:07:92:f1:35:67:2a:f1:fa:ef:
df:72:ef:e1:d8:36:40:30:8a:db:44:40:0b:d1:88:
ce:ef:61:7e:08:ba:3f:1f:1f:01:2a:54:0f:ba:6d:
5f:4e:dc:f6:e0:65:80:67:14:61:09:b8:0b:24:8c:
3d:da:f8:68:d9:b9:96:64:05:46:3b:fa:8a:e3:45:
ef:49:3c:f1:03:9b:de:c8:7f:92:20:ea:e1:c7:bf:
93:49:72:1a:95:f2:f9:a2:65:2a:23:d2:f2:e1:74:
81:79:7c:5d:9a:d9:5f:cb:72:f1:9f:52:8a:3b:fc:
79:b4:57:f9:a6:e0:aa:68:91:b3:a2:e3:28:7f:ab:
21:17:e6:aa:ff:b1:a4:d2:0b:3b:29:eb:c5:25:75:
d0:b5:a6:39:c0:c8:eb:e7:af:02:9d:54:d8:89:06:
f9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EE:53:72:33:3A:58:12:C1:06:76:76:98:00:3B:89:31:64:64:99
X509v3 Authority Key Identifier:
keyid:78:79:EB:9D:D6:2D:51:AF:A5:01:2E:FA:1A:9D:10:C6:64:00:C4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHnrndYtUa-lAS76Gp0QxmQAxEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/TO5TcjM6WBLBBnZ2mAA7iTFkZJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c58fa-06d5-4d39-8b5d-74acf82af596/1/eHnrndYtUa-lAS76Gp0QxmQAxEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.241.56.0/21
91.198.250.0/24
91.223.20.0/24
185.97.172.0/22
195.10.208.0/24
IPv6:
2001:67c:2050::/48
Signature Algorithm: sha256WithRSAEncryption
c0:d6:86:bf:aa:6b:62:7c:9f:85:0e:cd:f9:5a:30:ad:c4:87:
c8:54:d7:f0:27:8f:e5:6a:15:97:17:cf:63:2e:47:cc:1c:72:
e5:f6:69:f5:59:d8:2e:64:10:3e:31:69:4b:3d:43:c5:46:63:
97:46:0a:26:ce:10:48:2d:ed:68:7b:c9:bb:5b:ba:ce:2b:3b:
dd:ed:45:9f:1e:b4:b2:19:5e:a3:cf:9d:29:96:4e:51:09:02:
cf:2f:3d:80:88:23:97:8d:57:2b:20:6d:e8:14:4a:d9:58:3b:
ac:0f:6e:c9:89:79:c8:e1:9b:f6:35:c6:ae:e5:3f:4d:7d:6f:
f8:ae:46:31:d6:8e:94:1b:cd:b0:a1:1b:d1:3b:7c:44:f3:e7:
07:ad:4c:de:65:1e:90:83:0a:5b:da:aa:44:e9:f7:7d:30:95:
89:0b:cb:ba:94:54:6a:3e:14:6f:50:d8:2b:fc:c9:d0:21:dc:
9d:21:18:e8:76:f2:77:b7:48:01:33:ea:ae:59:cd:e6:04:9d:
d0:c0:41:28:e1:c2:ca:11:6c:86:b6:9a:97:7d:90:34:b6:7d:
93:ba:01:65:e5:f2:c1:c0:7a:7f:0f:07:af:35:28:2f:35:55:
fd:0d:82:1d:53:fa:1e:08:56:4b:78:3b:f6:46:ef:d2:26:ea:
af:aa:29:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-fra.rpki-client.org