Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/sMl7LscjTVDZmMSPuK33F3K1QOw.roa
File: sMl7LscjTVDZmMSPuK33F3K1QOw.roa (raw, json)
Hash identifier: 54dkAm/Yov52RDFCN7ZQRo8IHOIiSLt+Z6hY6+yTJUw=
Subject key identifier: B0:C9:7B:2E:C7:23:4D:50:D9:98:C4:8F:B8:AD:F7:17:72:B5:40:EC
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01853EC712A3B6E01394AE459ADECE07F0A9
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/sMl7LscjTVDZmMSPuK33F3K1QOw.roa
Signing time: Fri 23 Dec 2022 11:38:31 +0000
ROA not before: Fri 23 Dec 2022 11:38:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57433
IP address blocks: 185.14.92.0/24 maxlen: 24
185.14.93.0/24 maxlen: 24
94.154.51.0/24 maxlen: 24
94.154.49.0/24 maxlen: 24
94.154.50.0/24 maxlen: 24
94.154.48.0/24 maxlen: 24
94.154.48.0/21 maxlen: 24
94.154.52.0/24 maxlen: 24
94.154.53.0/24 maxlen: 24
94.154.54.0/24 maxlen: 24
94.154.55.0/24 maxlen: 24
37.114.32.0/19 maxlen: 24
37.114.37.0/24 maxlen: 24
37.114.32.0/24 maxlen: 24
37.114.58.0/24 maxlen: 24
43.251.161.0/24 maxlen: 24
43.251.162.0/24 maxlen: 24
43.251.160.0/24 maxlen: 24
43.251.163.0/24 maxlen: 24
176.100.32.0/21 maxlen: 21
176.100.32.0/24 maxlen: 24
176.100.39.0/24 maxlen: 24
2a00:ccc1::/48 maxlen: 48
2a00:ccc0::/32 maxlen: 32
2a00:ccc1:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3e:c7:12:a3:b6:e0:13:94:ae:45:9a:de:ce:07:f0:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Dec 23 11:38:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0c97b2ec7234d50d998c48fb8adf71772b540ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fe:25:e2:55:9b:2b:bb:56:5e:8d:31:fe:9e:
95:e6:c4:a3:55:52:60:f6:f1:6f:d7:c5:fa:ac:ea:
02:da:0a:8f:e2:f0:9b:44:f9:87:72:d5:2a:91:54:
7b:3c:23:2c:42:6d:0e:e5:82:85:1f:ab:9b:38:5a:
59:53:2f:30:aa:21:5d:87:5f:2b:0f:38:2a:8e:01:
2b:2f:43:cc:9d:6f:f3:d6:d8:6b:f3:26:e5:c6:66:
b1:a9:d6:1c:27:f6:50:78:49:84:5c:bb:f0:07:cd:
e1:90:bb:9c:25:5e:89:a9:20:96:85:13:34:31:c4:
30:89:d4:29:36:a8:e2:07:58:00:28:ef:95:96:01:
fa:08:6a:f1:8d:c6:59:91:73:b5:0d:00:51:1f:98:
85:5b:3a:e2:a9:76:38:c7:22:64:25:0b:08:db:2e:
3e:5d:fb:c4:a4:85:34:b6:b1:fd:4f:6f:19:b1:6f:
10:4d:ba:bc:2b:39:3f:c8:79:6e:2d:10:22:0f:46:
f7:b6:51:f7:a6:dd:5d:89:96:46:ac:5b:bc:e9:3d:
03:a7:a2:4d:3d:21:75:db:6c:33:d1:e6:f6:66:a4:
7a:ab:69:21:d7:be:0c:f9:8d:43:84:02:93:05:0a:
f0:fc:2b:d2:8d:3b:8e:f5:92:3f:4d:01:f9:b3:07:
42:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C9:7B:2E:C7:23:4D:50:D9:98:C4:8F:B8:AD:F7:17:72:B5:40:EC
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/sMl7LscjTVDZmMSPuK33F3K1QOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.32.0/19
43.251.160.0/22
94.154.48.0/21
176.100.32.0/21
185.14.92.0/23
IPv6:
2a00:ccc0::-2a00:ccc1:0:ffff:ffff:ffff:ffff:ffff
2a00:ccc1:4::/48
Signature Algorithm: sha256WithRSAEncryption
b6:94:7b:ea:34:db:8e:48:fa:ff:ea:98:23:67:29:a1:ab:d6:
9c:b0:1f:95:4b:7b:97:ae:9c:2f:aa:34:e5:43:6f:0b:c1:74:
61:32:38:21:9f:c1:0f:59:f4:1c:3e:1d:e2:b9:b4:4c:bd:3f:
06:ed:19:32:fa:3d:a2:47:43:7b:d0:0d:1a:89:f5:2c:2f:7a:
32:a0:1e:1b:2e:ab:43:2b:91:02:e3:51:d0:f5:e1:b5:6f:cb:
bb:c3:8f:73:d0:b3:08:53:e4:15:1c:e1:13:e7:c9:0c:07:a1:
96:a9:d4:b6:05:d6:61:f4:b8:f3:1d:ad:ef:f1:56:7b:7f:47:
6a:48:12:3e:00:98:34:58:a6:20:40:99:f0:47:b0:46:27:4f:
e8:45:bb:7f:7e:3a:5a:67:c8:5d:0f:69:e6:51:df:02:d5:3b:
d5:dd:ef:6b:ed:ac:32:ea:42:b6:ff:01:35:16:66:7b:99:7e:
a4:de:33:52:91:4a:72:79:f4:c4:39:69:1e:b1:d8:05:43:5e:
6d:a3:32:62:ce:15:a5:6c:1f:40:61:b5:07:fc:c0:dd:af:59:
1b:55:ac:2c:86:91:a8:a9:16:82:18:08:7a:74:8e:51:db:1b:
0e:9c:42:68:a6:ba:6a:a5:04:db:65:45:9e:b3:cd:d0:4d:8a:
28:7b:33:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org