Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/eN8GavnAMHq3e6FWVTM8J3onaEg.roa
File: eN8GavnAMHq3e6FWVTM8J3onaEg.roa (raw, json)
Hash identifier: vTTzPREPPr/ugG0Fl7qFARC2ksdo6hpk+pyEYQZ1utQ=
Subject key identifier: 78:DF:06:6A:F9:C0:30:7A:B7:7B:A1:56:55:33:3C:27:7A:27:68:48
Certificate issuer: /CN=cfa968319d72a98a759400338b70fdc678912de6
Certificate serial: 09B20993
Authority key identifier: CF:A9:68:31:9D:72:A9:8A:75:94:00:33:8B:70:FD:C6:78:91:2D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6loMZ1yqYp1lAAzi3D9xniRLeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/eN8GavnAMHq3e6FWVTM8J3onaEg.roa
Signing time: Mon 03 Jan 2022 09:59:37 +0000
ROA not before: Mon 03 Jan 2022 09:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41887
IP address blocks: 94.228.128.0/20 maxlen: 24
94.228.133.226/32 maxlen: 32
195.144.2.0/24 maxlen: 24
94.228.129.181/32 maxlen: 32
178.22.80.0/21 maxlen: 24
62.204.64.0/20 maxlen: 20
62.204.64.0/19 maxlen: 19
62.204.64.0/24 maxlen: 24
185.63.164.0/22 maxlen: 24
62.204.67.0/24 maxlen: 24
62.204.65.0/24 maxlen: 24
62.204.80.0/20 maxlen: 20
62.204.94.0/23 maxlen: 24
62.204.92.0/22 maxlen: 22
62.204.92.0/23 maxlen: 24
2a00:d00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162662803 (0x9b20993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa968319d72a98a759400338b70fdc678912de6
Validity
Not Before: Jan 3 09:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78df066af9c0307ab77ba15655333c277a276848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:fa:9d:78:89:ea:46:ad:1e:7f:ca:6e:02:1e:
9e:73:2e:59:43:27:8c:e0:2b:7e:e9:93:d8:bc:03:
c5:c9:7c:74:e8:f7:fb:61:c6:22:4a:5c:a9:45:1e:
fa:4e:e9:d5:53:57:a4:5d:6e:b5:22:23:d5:8d:bb:
90:34:d3:9b:b5:63:00:43:13:1e:86:aa:4e:e2:2a:
8c:b3:f5:96:c6:f8:bb:69:9d:28:f8:24:22:2f:81:
31:96:34:9f:a0:2d:90:c6:83:7a:4b:d6:07:ba:ea:
00:d9:13:7b:93:b1:88:5e:df:c4:90:6d:64:4b:dd:
69:fe:0a:24:04:54:f1:9d:f2:a2:15:b2:5a:e3:67:
6a:22:5b:74:6f:b7:0d:33:b6:db:bf:62:b7:57:b2:
df:d4:e1:cd:dc:61:fe:03:5a:49:09:49:c5:9d:a0:
f2:3d:1c:96:01:fd:69:1c:58:4e:37:14:33:3a:8e:
4f:95:6d:3a:63:32:9d:05:39:ec:96:eb:37:24:cf:
0d:66:f4:49:b5:06:dd:95:d1:7d:b9:7d:fd:0f:57:
f3:82:6e:8d:50:78:f4:dd:c7:f8:86:6e:fd:46:0d:
c5:b9:10:f9:d6:3f:fc:16:68:56:70:c7:7e:79:94:
20:43:ac:1d:06:82:d3:9e:be:0e:f7:41:0d:b2:17:
de:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:DF:06:6A:F9:C0:30:7A:B7:7B:A1:56:55:33:3C:27:7A:27:68:48
X509v3 Authority Key Identifier:
keyid:CF:A9:68:31:9D:72:A9:8A:75:94:00:33:8B:70:FD:C6:78:91:2D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6loMZ1yqYp1lAAzi3D9xniRLeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/eN8GavnAMHq3e6FWVTM8J3onaEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/z6loMZ1yqYp1lAAzi3D9xniRLeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.64.0/19
94.228.128.0/20
178.22.80.0/21
185.63.164.0/22
195.144.2.0/24
IPv6:
2a00:d00::/29
Signature Algorithm: sha256WithRSAEncryption
7b:97:06:43:1b:a3:2b:98:78:e2:80:20:94:77:42:80:47:0a:
96:d3:f9:7c:b1:08:f0:5d:1f:bc:55:40:22:b3:0b:64:81:60:
e5:3c:9d:51:f3:d1:bb:42:e8:af:f1:fa:76:5c:bc:85:a1:b6:
ef:c9:c1:96:24:95:41:99:d5:0d:70:b0:e1:2e:74:07:35:68:
a4:57:4f:99:74:3d:64:1e:ab:5b:b7:4c:e8:55:6c:8e:52:b4:
62:b5:20:fb:df:6a:f5:fd:22:3b:09:b8:f8:d0:28:7b:fe:d2:
82:f5:1a:d2:3c:70:bf:93:eb:0b:52:62:b4:12:aa:bb:89:c5:
e2:36:71:77:33:37:86:89:8c:ab:bb:70:ce:fb:a3:0d:fa:21:
74:7b:20:6c:ac:bf:ad:51:8c:74:75:ca:02:2f:45:05:55:36:
47:a8:45:23:59:92:ee:48:15:a8:e6:96:f1:f0:44:88:f5:94:
d1:0a:ba:28:a4:8a:ee:67:32:03:cf:4a:54:6e:cf:59:be:e7:
9b:a4:74:22:2f:ca:5f:1f:33:f3:bc:ac:78:97:da:2f:61:2c:
c6:ac:bb:88:65:e1:04:01:ae:31:dd:2f:84:ad:c0:ed:84:6a:
1d:d9:79:e4:0e:dd:98:62:ea:e2:67:24:bf:9c:7c:f8:e1:2b:
fb:e8:ee:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:34 2024 by rpki-client on console-fra.rpki-client.org