Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4b77e7-347c-49fa-808b-6ed331f31e09/1/k_wSVFzE_rzEIPzbudQfYucRfUQ.roa
File: k_wSVFzE_rzEIPzbudQfYucRfUQ.roa (raw, json)
Hash identifier: QZmwgqV/M+CjxY3tiOBtAQ5MXdU+Z/MOuyuo4NLKczU=
Subject key identifier: 93:FC:12:54:5C:C4:FE:BC:C4:20:FC:DB:B9:D4:1F:62:E7:11:7D:44
Certificate issuer: /CN=b05442c4ffe9c1d761e7c569360ead042438f903
Certificate serial: 04350D63
Authority key identifier: B0:54:42:C4:FF:E9:C1:D7:61:E7:C5:69:36:0E:AD:04:24:38:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFRCxP_pwddh58VpNg6tBCQ4-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4b77e7-347c-49fa-808b-6ed331f31e09/1/k_wSVFzE_rzEIPzbudQfYucRfUQ.roa
Signing time: Sat 01 Jan 2022 06:06:43 +0000
ROA not before: Sat 01 Jan 2022 06:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33808
IP address blocks: 217.170.188.0/22 maxlen: 22
89.31.0.0/21 maxlen: 21
193.110.68.0/22 maxlen: 22
79.171.88.0/21 maxlen: 21
134.101.125.0/24 maxlen: 24
217.170.176.0/21 maxlen: 21
217.170.184.0/22 maxlen: 22
2a00:17f0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70585699 (0x4350d63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05442c4ffe9c1d761e7c569360ead042438f903
Validity
Not Before: Jan 1 06:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93fc12545cc4febcc420fcdbb9d41f62e7117d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0a:41:5a:7d:e8:7b:77:2f:60:41:20:dd:af:
18:cc:ac:98:ae:67:6e:05:3d:90:14:df:55:2c:1d:
47:05:f4:4f:e6:08:68:76:74:35:45:e9:e7:ed:54:
07:65:10:00:b9:3f:28:c3:67:b1:85:a0:ee:71:dc:
0f:e2:8c:57:d2:ca:b8:fb:6f:0c:71:d0:95:12:af:
32:6e:57:80:14:9b:b4:bb:2f:85:38:bb:98:92:6b:
31:fc:03:91:9b:40:9e:91:45:b6:20:ff:90:ac:66:
b3:3f:7e:6b:d8:8e:a2:46:bf:a2:b0:e5:9c:ce:e4:
20:24:32:c1:aa:d3:46:28:32:02:15:cf:6a:95:4d:
a0:e4:40:aa:de:f8:48:b6:c8:28:83:35:cb:98:de:
7e:bd:bb:1d:c5:a7:89:20:72:69:a4:00:55:be:73:
e6:c0:56:1f:8e:56:81:01:23:83:df:3d:1e:77:e4:
96:b6:20:f5:22:36:a7:38:34:c1:69:76:4c:97:b5:
62:50:35:bc:94:a6:6e:b3:52:ac:d4:33:06:d7:43:
98:04:ca:81:e0:91:5c:18:e5:22:14:1c:e7:2f:b4:
3e:b9:2a:80:45:80:48:c0:bb:c0:59:6b:07:af:2a:
6c:55:23:3c:11:26:19:ec:b8:7d:6f:94:fa:74:ee:
1b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FC:12:54:5C:C4:FE:BC:C4:20:FC:DB:B9:D4:1F:62:E7:11:7D:44
X509v3 Authority Key Identifier:
keyid:B0:54:42:C4:FF:E9:C1:D7:61:E7:C5:69:36:0E:AD:04:24:38:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFRCxP_pwddh58VpNg6tBCQ4-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4b77e7-347c-49fa-808b-6ed331f31e09/1/k_wSVFzE_rzEIPzbudQfYucRfUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4b77e7-347c-49fa-808b-6ed331f31e09/1/sFRCxP_pwddh58VpNg6tBCQ4-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.88.0/21
89.31.0.0/21
134.101.125.0/24
193.110.68.0/22
217.170.176.0/20
IPv6:
2a00:17f0::/32
Signature Algorithm: sha256WithRSAEncryption
16:d5:d7:70:f5:f3:56:ab:fe:19:c9:96:6c:d3:00:58:9a:43:
a2:09:d0:e7:2d:d8:8c:a2:46:33:f2:aa:73:1b:de:51:17:b0:
94:96:7d:a6:26:ce:91:42:b7:42:c8:ff:10:69:6f:2c:55:45:
01:1a:bb:ce:91:e6:b4:87:a0:2a:c2:aa:63:50:6a:4c:4c:37:
09:91:5c:19:c0:a1:7b:d3:d8:52:1d:aa:a5:f8:01:dd:ab:4a:
bc:d0:be:e8:fe:52:7b:f3:a8:87:c5:76:19:4d:22:8b:c7:a3:
b2:46:ce:c9:a2:9d:8b:f5:4d:32:d9:1d:e8:f4:3c:c4:fd:d2:
03:50:b9:7d:ca:c7:a7:0b:d1:41:f3:a0:e5:9f:1b:78:cc:ab:
fb:74:82:c1:4e:f2:88:b6:17:50:9d:23:7e:1c:de:c9:f4:72:
42:11:a1:82:d8:29:65:da:1f:41:2d:6c:2c:59:cb:20:e0:58:
25:a4:ef:cd:b1:07:3d:1d:11:61:fb:b9:34:42:fb:e0:6e:d6:
83:e7:b6:10:ac:62:d3:17:66:c7:98:20:a6:20:a0:83:72:58:
32:f6:1c:65:0d:28:b1:03:79:0e:3c:3b:99:2b:3d:8c:de:b4:
83:2c:54:70:47:26:5a:20:d3:eb:1a:c0:d8:90:40:38:1d:8e:
95:86:c0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:45 2024 by rpki-client on console-ams.rpki-client.org