Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/7_QTeSnYsGgdPOOCh67Mw2S6BzQ.roa
File: 7_QTeSnYsGgdPOOCh67Mw2S6BzQ.roa (raw, json)
Hash identifier: Td38pXB+Av9ZHJ0gMBS2UnZ8tDlgU3ktNeHsMdKSlXY=
Subject key identifier: EF:F4:13:79:29:D8:B0:68:1D:3C:E3:82:87:AE:CC:C3:64:BA:07:34
Certificate issuer: /CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Certificate serial: 0B938C9E
Authority key identifier: 6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/7_QTeSnYsGgdPOOCh67Mw2S6BzQ.roa
Signing time: Tue 19 Apr 2022 15:19:42 +0000
ROA not before: Tue 19 Apr 2022 15:19:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64476
IP address blocks: 185.253.170.0/24 maxlen: 24
185.253.168.0/22 maxlen: 22
185.253.168.0/24 maxlen: 24
185.253.171.0/24 maxlen: 24
85.190.64.0/20 maxlen: 20
85.190.67.0/24 maxlen: 24
46.247.136.0/23 maxlen: 23
185.161.168.0/22 maxlen: 22
46.247.140.0/24 maxlen: 24
185.231.8.0/22 maxlen: 24
85.190.81.0/24 maxlen: 24
85.190.80.0/22 maxlen: 22
85.190.79.0/24 maxlen: 24
85.190.84.0/24 maxlen: 24
85.190.85.0/24 maxlen: 24
85.190.84.0/22 maxlen: 22
85.190.88.0/21 maxlen: 21
2a0a:e800::/32 maxlen: 32
2a0a:e806::/32 maxlen: 32
2a0a:e805:610::/44 maxlen: 44
2a0a:e805:210::/44 maxlen: 44
2a0a:e804::/32 maxlen: 32
2a0a:e805:300::/40 maxlen: 40
2a0a:e805:400::/40 maxlen: 40
2a0a:e805:100::/40 maxlen: 40
2a0a:e805:500::/40 maxlen: 40
2a0a:e805::/32 maxlen: 32
2a0a:e803::/32 maxlen: 32
2a0a:e807::/32 maxlen: 32
2a0a:e801::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194219166 (0xb938c9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f10d8e1564e40312c9ddf21ba2aa03ba559ead6
Validity
Not Before: Apr 19 15:19:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eff4137929d8b0681d3ce38287aeccc364ba0734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7d:fa:3e:1b:d1:80:0f:f9:5d:62:da:d9:ba:
ed:ba:c2:23:f0:f3:1a:ee:f5:88:e5:ea:bf:88:d1:
68:58:03:99:49:0c:d1:c3:29:f1:76:ec:40:ed:65:
1f:c2:31:71:6b:aa:71:10:99:93:7a:a6:5e:29:d1:
f0:04:69:76:96:c8:da:db:13:8d:87:49:31:c4:8e:
13:bd:fc:39:c3:f9:f2:02:a3:14:d1:80:b8:af:0b:
ab:41:8c:28:d2:ed:58:cb:12:7a:99:b5:ad:f9:f1:
b3:3d:e5:ac:2b:10:77:21:b6:20:36:19:49:a5:ca:
c0:80:c6:b2:d3:46:64:59:0f:86:66:64:1d:b4:dd:
a7:e5:b2:7b:28:cb:e0:88:32:25:aa:71:97:0f:46:
ef:37:af:b7:c8:12:44:f7:b8:82:3d:c6:0d:3a:07:
da:6e:92:79:ef:b4:50:1d:d0:fb:48:9d:f2:fe:3c:
25:15:dc:b7:c0:d9:2f:30:22:e7:f5:cb:59:9f:f0:
9d:4b:31:de:3c:80:e9:e9:c5:e2:1a:9b:b9:cb:2d:
91:40:1a:05:e4:5c:ee:07:7f:e9:b6:8e:67:68:b4:
cd:0f:dc:6e:5d:26:46:94:fb:61:11:9e:4b:48:d6:
bc:01:a4:ee:83:0f:66:e3:93:cb:47:51:ad:1e:29:
53:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F4:13:79:29:D8:B0:68:1D:3C:E3:82:87:AE:CC:C3:64:BA:07:34
X509v3 Authority Key Identifier:
keyid:6F:10:D8:E1:56:4E:40:31:2C:9D:DF:21:BA:2A:A0:3B:A5:59:EA:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxDY4VZOQDEsnd8huiqgO6VZ6tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/7_QTeSnYsGgdPOOCh67Mw2S6BzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/cfda05-190d-4142-bd4f-b6a8f8e80f7b/1/bxDY4VZOQDEsnd8huiqgO6VZ6tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.136.0/23
46.247.140.0/24
85.190.64.0/19
185.161.168.0/22
185.231.8.0/22
185.253.168.0/22
IPv6:
2a0a:e800::/31
2a0a:e803::-2a0a:e807:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
24:4a:3a:5f:1e:b3:c5:f9:53:7a:6e:57:b6:d3:9c:e5:b2:7c:
82:f5:01:22:7a:fe:b3:92:08:21:38:19:ca:33:25:f8:47:da:
33:4e:20:ac:6a:5e:3a:f7:c4:87:91:76:eb:61:89:88:a1:a4:
b1:7d:e5:25:f1:7c:2e:51:13:a8:d1:ee:e4:64:53:0e:2c:e2:
3f:fb:11:40:c0:a9:a1:86:12:1a:b4:af:b6:50:d8:90:5c:8a:
a7:63:b4:37:80:22:0f:e0:13:08:9c:b6:29:da:86:fa:ec:42:
eb:05:9b:25:31:d2:c6:6b:e6:d6:33:8d:c1:3d:26:2a:f0:ad:
d5:b8:ff:e0:c4:bc:79:44:ab:b2:7e:2e:b6:56:25:60:d0:31:
ef:34:a3:f4:cc:95:66:24:62:cc:77:71:a6:ce:d3:9b:e9:8e:
a1:79:85:d0:f3:69:32:f1:af:17:af:dd:03:16:9f:c8:e2:46:
91:64:5e:e2:bd:34:e9:46:30:29:eb:f9:c8:4a:61:33:ba:7c:
43:1c:3d:a1:de:04:49:40:71:90:00:43:24:34:64:b7:d4:e3:
3a:91:c6:c8:62:75:81:fb:e7:fd:06:95:3d:07:83:91:fc:6e:
67:31:74:08:3e:9f:50:2f:2c:30:25:5f:68:ac:39:c8:61:4c:
69:16:23:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:30 2024 by rpki-client on console-ams.rpki-client.org