Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/T7hlWyLZlF-nHEzIK_GEJUwHouw.roa
File: T7hlWyLZlF-nHEzIK_GEJUwHouw.roa (raw, json)
Hash identifier: bnY+bsF0zUAyOKk3Xpilu5XN7i2ysmK4RjjJUM3+w6Y=
Subject key identifier: 4F:B8:65:5B:22:D9:94:5F:A7:1C:4C:C8:2B:F1:84:25:4C:07:A2:EC
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 20E7CB4E
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/T7hlWyLZlF-nHEzIK_GEJUwHouw.roa
Signing time: Thu 19 May 2022 08:13:16 +0000
ROA not before: Thu 19 May 2022 08:13:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57433
IP address blocks: 185.14.92.0/24 maxlen: 24
185.14.93.0/24 maxlen: 24
94.154.51.0/24 maxlen: 24
94.154.49.0/24 maxlen: 24
94.154.50.0/24 maxlen: 24
94.154.48.0/24 maxlen: 24
94.154.48.0/21 maxlen: 24
94.154.52.0/24 maxlen: 24
94.154.53.0/24 maxlen: 24
94.154.54.0/24 maxlen: 24
94.154.55.0/24 maxlen: 24
43.251.161.0/24 maxlen: 24
43.251.162.0/24 maxlen: 24
43.251.160.0/24 maxlen: 24
43.251.163.0/24 maxlen: 24
176.100.32.0/21 maxlen: 21
176.100.32.0/24 maxlen: 24
176.100.39.0/24 maxlen: 24
37.114.37.0/24 maxlen: 24
37.114.32.0/24 maxlen: 24
37.114.58.0/24 maxlen: 24
2a00:ccc1::/48 maxlen: 48
2a00:ccc0::/32 maxlen: 32
2a00:ccc1:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 552061774 (0x20e7cb4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: May 19 08:13:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fb8655b22d9945fa71c4cc82bf184254c07a2ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:27:de:60:78:76:23:5f:6d:2f:01:10:86:be:
91:e4:ca:3b:51:79:26:35:57:11:7f:6c:8a:ae:b8:
fc:86:fd:e8:c1:24:10:14:c8:7f:96:3d:f1:40:3a:
fd:00:4d:f4:f5:da:6d:b2:a5:75:46:a6:e0:f1:a0:
d2:0a:1e:18:d0:26:e7:9c:bc:7a:50:c3:29:de:a6:
9f:02:1e:6f:e2:be:34:92:6c:2c:86:ab:53:24:a2:
3d:f8:7c:01:21:78:28:9d:bf:9b:74:0f:fe:9d:73:
2f:ed:ca:75:62:0c:01:ab:41:4d:c0:d0:29:37:f4:
6c:9b:68:94:a6:70:44:1c:f6:c8:f0:cd:55:95:ed:
60:3d:7d:90:8d:6c:8a:ef:34:a1:01:7e:87:cb:48:
71:45:ff:61:c0:3c:74:76:5a:ea:e1:44:72:6d:f0:
11:e2:16:41:2e:ad:df:0e:f0:5a:bd:bf:e6:d4:83:
0d:75:67:e2:45:07:12:59:36:55:b5:d2:a5:4b:fc:
bb:6f:eb:40:2f:01:02:ab:72:41:94:71:64:a5:c0:
d2:b0:c1:fe:86:bf:1a:0a:9a:dc:d4:2d:c2:7f:84:
3a:69:62:ba:9b:ea:b7:eb:b9:d2:52:13:48:85:de:
ac:4f:d3:8e:a1:d5:3f:57:40:64:55:5f:ce:26:8c:
b7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B8:65:5B:22:D9:94:5F:A7:1C:4C:C8:2B:F1:84:25:4C:07:A2:EC
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/T7hlWyLZlF-nHEzIK_GEJUwHouw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.32.0/24
37.114.37.0/24
37.114.58.0/24
43.251.160.0/22
94.154.48.0/21
176.100.32.0/21
185.14.92.0/23
IPv6:
2a00:ccc0::-2a00:ccc1:0:ffff:ffff:ffff:ffff:ffff
2a00:ccc1:4::/48
Signature Algorithm: sha256WithRSAEncryption
8a:4c:be:3e:65:ec:31:f0:be:7f:00:25:5c:3d:10:62:6c:49:
44:57:d2:e8:26:bf:88:16:22:1b:6f:67:00:d9:2b:b1:a4:f8:
b9:a7:de:68:ed:91:fd:39:ab:4c:2e:2d:22:22:72:4b:4d:0a:
63:4f:77:25:4c:5f:fd:9d:75:b1:4f:d4:b6:e7:6d:23:2e:9c:
ff:81:c7:25:0a:06:ea:06:ca:7d:9d:55:77:3a:d9:76:62:8c:
eb:4f:96:c8:46:eb:2b:08:be:8f:bc:e2:39:eb:9f:4e:68:68:
1c:3d:f5:3e:d4:d0:99:31:57:f0:a6:a8:2c:b1:fa:af:a9:23:
f5:2c:13:e2:a9:fe:4f:5e:6c:56:83:b1:75:59:29:4d:3c:f9:
8c:b1:d1:78:96:1e:56:fa:80:56:eb:d2:91:5a:1f:50:7a:7e:
a3:03:9e:9e:b4:d1:4d:29:09:a9:94:54:ab:94:5d:26:4d:f7:
3e:0e:b3:88:e1:7d:76:c9:2a:84:c2:84:34:38:5e:8e:94:0b:
89:3f:45:8d:2e:d6:6d:7b:12:ee:92:c1:39:95:65:53:96:03:
5f:8c:2a:02:0c:70:63:3d:5f:06:64:49:e3:2f:90:87:45:d1:
2d:03:98:ac:63:78:bf:38:73:25:6e:a8:e2:39:b1:33:f7:e2:
68:03:c2:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org