Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/938722-d415-4027-a0b3-a2aa286dc448/1/7BhdLc1EvIayHRyG7s09feIS394.roa
File: 7BhdLc1EvIayHRyG7s09feIS394.roa (raw, json)
Hash identifier: pEzg205h2/GUncq7POrIdbcnbsAzxxLL8qePdPgZXbI=
Subject key identifier: EC:18:5D:2D:CD:44:BC:86:B2:1D:1C:86:EE:CD:3D:7D:E2:12:DF:DE
Certificate issuer: /CN=53052009ba7898d2361ca2ee7d130124f9d25125
Certificate serial: 10DD37C7
Authority key identifier: 53:05:20:09:BA:78:98:D2:36:1C:A2:EE:7D:13:01:24:F9:D2:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UwUgCbp4mNI2HKLufRMBJPnSUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/938722-d415-4027-a0b3-a2aa286dc448/1/7BhdLc1EvIayHRyG7s09feIS394.roa
Signing time: Sat 01 Jan 2022 10:55:13 +0000
ROA not before: Sat 01 Jan 2022 10:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50881
IP address blocks: 185.94.157.0/24 maxlen: 24
185.94.158.0/24 maxlen: 24
185.94.159.0/24 maxlen: 24
185.94.156.0/24 maxlen: 24
91.228.164.0/24 maxlen: 24
91.228.165.0/24 maxlen: 24
91.228.166.0/24 maxlen: 24
91.228.167.0/24 maxlen: 24
2a05:e800::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282933191 (0x10dd37c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53052009ba7898d2361ca2ee7d130124f9d25125
Validity
Not Before: Jan 1 10:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec185d2dcd44bc86b21d1c86eecd3d7de212dfde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:14:fa:a6:35:16:c6:f9:dd:71:f2:7d:4b:3e:
34:1a:f5:f0:f9:00:84:bb:87:7c:1c:f6:98:93:ea:
bd:ad:31:4c:47:25:39:5f:4c:2c:7c:8e:34:77:5d:
f0:cc:1e:db:85:bb:fe:3b:3c:e5:ca:2f:e3:98:9a:
01:57:05:59:82:b3:a3:d2:94:38:67:83:ab:86:f2:
cb:3d:cf:82:07:57:a6:81:ce:88:02:f9:32:5e:ce:
87:31:79:cc:6d:64:d2:af:42:5c:79:fd:04:82:e6:
b6:d2:4d:2e:17:9c:4c:38:c3:60:29:19:51:01:06:
11:69:32:95:72:ff:ff:75:f1:aa:ab:81:f7:ce:e6:
2b:f6:9f:cf:45:4f:ee:25:17:97:6c:9d:d8:21:5c:
9c:6e:6a:79:9b:bc:fe:92:d0:f0:be:9a:dd:4b:31:
25:f1:d6:0e:f0:7a:f9:64:01:2b:72:67:99:d5:b4:
ab:db:ac:24:68:70:9c:bb:a4:b3:e7:a8:2c:75:1c:
60:fd:12:ca:4d:87:d7:82:68:19:81:95:62:2c:58:
62:c6:8a:6a:92:8e:86:7f:cc:1a:01:f9:24:2b:96:
c6:1d:aa:ae:26:a2:d6:89:88:63:53:89:50:b8:06:
2a:3c:3d:1d:0a:d3:0e:14:77:eb:22:2e:c7:b8:fe:
6f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:18:5D:2D:CD:44:BC:86:B2:1D:1C:86:EE:CD:3D:7D:E2:12:DF:DE
X509v3 Authority Key Identifier:
keyid:53:05:20:09:BA:78:98:D2:36:1C:A2:EE:7D:13:01:24:F9:D2:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UwUgCbp4mNI2HKLufRMBJPnSUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/938722-d415-4027-a0b3-a2aa286dc448/1/7BhdLc1EvIayHRyG7s09feIS394.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/938722-d415-4027-a0b3-a2aa286dc448/1/UwUgCbp4mNI2HKLufRMBJPnSUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.164.0/22
185.94.156.0/22
IPv6:
2a05:e800::/29
Signature Algorithm: sha256WithRSAEncryption
a1:b7:70:13:0c:ec:22:99:77:d9:2a:81:db:71:70:99:26:f5:
89:69:b0:7a:d6:55:f7:d4:b5:1b:36:ab:7e:05:ad:1c:f9:93:
e2:74:73:9a:c2:7f:04:5e:87:03:52:94:86:5c:d4:83:25:00:
65:d1:4e:2d:dd:9f:00:57:83:57:a9:45:12:99:5d:e4:1b:66:
73:5b:b7:c8:cc:41:ba:3e:f9:ce:3d:9e:e2:4b:e5:68:f7:92:
72:79:b7:36:fd:41:15:f7:82:35:fa:71:cf:0a:fc:85:cc:8f:
73:b8:b9:27:94:1c:13:b3:94:4b:9a:06:24:8d:6e:98:d2:0d:
6c:89:84:1c:0e:2e:f0:b2:05:f7:4b:28:b2:93:a1:e7:47:0e:
fd:e2:13:33:c9:7c:f6:bd:12:be:24:f4:a9:c4:57:95:57:09:
14:f1:4d:a5:ad:ff:70:14:31:5f:72:43:7e:0d:c3:f0:a9:8d:
88:b9:b5:5d:cc:40:75:53:48:be:9a:42:0a:0b:f5:5f:cd:5b:
3b:f0:5c:14:5f:97:1e:b7:c7:12:9e:e8:14:19:1e:8c:5f:de:
75:ce:bb:19:ab:b4:96:21:4e:a7:da:a1:0f:48:63:08:bc:63:
bd:ef:6d:c6:22:92:6c:24:10:9f:71:4f:97:ba:2a:cd:c6:4b:
d1:e5:2d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-fra.rpki-client.org