Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/bvsv8W3b6wxQrbBzvvO9wshq_kc.roa
File: bvsv8W3b6wxQrbBzvvO9wshq_kc.roa (raw, json)
Hash identifier: +CfR5Jjq+V2ihVTkban6bsA2EfRcq7L0gZO8BP01L58=
Subject key identifier: 6E:FB:2F:F1:6D:DB:EB:0C:50:AD:B0:73:BE:F3:BD:C2:C8:6A:FE:47
Certificate issuer: /CN=3ba1782b6afba7c6bcf070b93fed4cc84af41352
Certificate serial: 0CFE2EF9
Authority key identifier: 3B:A1:78:2B:6A:FB:A7:C6:BC:F0:70:B9:3F:ED:4C:C8:4A:F4:13:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O6F4K2r7p8a88HC5P-1MyEr0E1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/bvsv8W3b6wxQrbBzvvO9wshq_kc.roa
Signing time: Sat 01 Jan 2022 06:58:40 +0000
ROA not before: Sat 01 Jan 2022 06:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34879
IP address blocks: 78.41.104.0/23 maxlen: 24
78.41.106.0/24 maxlen: 24
78.41.110.0/23 maxlen: 24
78.41.109.0/24 maxlen: 24
78.41.108.0/24 maxlen: 24
78.41.107.0/24 maxlen: 24
46.235.186.0/24 maxlen: 24
46.235.184.0/23 maxlen: 24
46.235.189.0/24 maxlen: 24
46.235.188.0/24 maxlen: 24
46.235.188.0/23 maxlen: 23
46.235.187.0/24 maxlen: 24
46.235.190.0/23 maxlen: 23
37.220.162.0/23 maxlen: 24
37.220.161.0/24 maxlen: 24
37.220.160.0/24 maxlen: 24
37.220.166.0/24 maxlen: 24
37.220.165.0/24 maxlen: 24
37.220.167.0/24 maxlen: 24
93.93.91.0/24 maxlen: 24
93.93.90.0/24 maxlen: 24
93.93.88.0/23 maxlen: 24
93.93.94.0/24 maxlen: 24
93.93.92.0/23 maxlen: 24
93.93.95.0/24 maxlen: 24
185.17.168.0/23 maxlen: 24
185.17.170.0/23 maxlen: 24
2a03:e040:10::/48 maxlen: 48
2a03:e040::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217984761 (0xcfe2ef9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ba1782b6afba7c6bcf070b93fed4cc84af41352
Validity
Not Before: Jan 1 06:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6efb2ff16ddbeb0c50adb073bef3bdc2c86afe47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5d:9c:78:43:28:21:e4:43:32:86:92:b6:8a:
10:1c:bd:45:d6:c0:a7:d3:ac:bf:a5:76:04:9f:8d:
24:fc:2d:ce:2d:cc:58:b5:59:ff:45:b8:19:1c:20:
88:82:58:4e:6f:65:ee:65:68:1d:8a:85:cd:f0:ca:
a9:17:18:79:19:25:03:5c:47:55:a0:6e:d1:1e:26:
2b:f8:ec:00:79:3b:8a:2b:51:9b:ab:ca:05:ca:4f:
7a:f3:87:98:8f:f6:72:ae:a7:ab:78:58:e7:f9:bf:
8b:cd:70:40:78:d1:53:59:50:dd:47:b1:8d:b0:b5:
27:34:d9:cf:54:3d:ab:a4:71:90:07:f5:84:29:ee:
03:0a:8b:fb:f7:7f:ca:12:fd:75:80:62:92:96:8a:
9e:3c:12:3b:23:4e:82:e8:02:fd:f1:cd:fd:ea:3f:
90:2e:9d:17:04:38:ec:69:93:e4:3f:e7:13:05:c9:
3a:69:00:37:0b:e0:a0:30:ef:da:1a:65:bd:c9:f5:
9c:29:d7:8b:91:21:c3:94:2d:3b:5c:3c:b0:26:30:
03:a0:75:d0:f6:ed:83:33:64:e4:ce:bc:e3:f5:25:
76:18:a0:96:e4:de:71:fe:a9:53:9e:b7:43:3c:84:
67:2d:cd:c9:4c:c8:80:ed:70:7f:f5:e8:c2:67:98:
3a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:FB:2F:F1:6D:DB:EB:0C:50:AD:B0:73:BE:F3:BD:C2:C8:6A:FE:47
X509v3 Authority Key Identifier:
keyid:3B:A1:78:2B:6A:FB:A7:C6:BC:F0:70:B9:3F:ED:4C:C8:4A:F4:13:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O6F4K2r7p8a88HC5P-1MyEr0E1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/bvsv8W3b6wxQrbBzvvO9wshq_kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/ad7ac3-b8ad-42b0-ad2a-ae967d739dd3/1/O6F4K2r7p8a88HC5P-1MyEr0E1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.160.0/22
37.220.165.0-37.220.167.255
46.235.184.0/21
78.41.104.0/21
93.93.88.0/21
185.17.168.0/22
IPv6:
2a03:e040::/48
2a03:e040:10::/48
Signature Algorithm: sha256WithRSAEncryption
8e:4c:f6:f0:ba:ac:da:0a:cc:79:6f:f1:29:24:ad:c1:97:04:
30:e9:3a:45:75:61:eb:4c:27:e7:7f:1f:80:35:17:09:db:c1:
82:bb:65:b6:36:64:77:6d:19:46:d8:5d:eb:e3:4b:47:37:50:
aa:17:4b:b4:d4:24:e9:58:fa:4d:01:3c:6f:1e:2b:1a:7a:27:
b0:e0:96:86:3b:c5:4c:fa:4f:fe:c9:16:c5:2b:ca:de:4c:80:
a9:1c:cc:66:12:bc:05:f6:cf:7a:47:2a:14:5f:a2:87:0c:c0:
d0:96:6d:ab:83:4e:63:84:a6:52:fe:b2:bb:0f:71:a3:d6:23:
32:68:36:5c:4a:71:d7:a4:80:98:4e:a2:69:f4:2c:b3:e5:c3:
d6:6f:1f:ca:94:2b:b8:41:82:ca:a7:be:61:cf:ea:d7:c5:0d:
ce:67:57:a7:ac:b2:a0:66:08:2e:02:17:27:a3:d6:64:e5:88:
48:ba:d8:7a:e9:9c:d4:89:52:ac:43:5e:14:f2:38:d4:43:4b:
37:09:05:60:df:17:00:9e:d3:73:ed:bd:5e:5b:f1:2f:db:fa:
80:e7:62:0d:ef:19:da:e8:f3:81:9c:f7:09:22:75:8f:dd:62:
fc:c9:3c:99:af:fa:3b:1a:7e:43:f6:8f:3b:48:3a:05:51:82:
65:a4:9a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:51 2023 by rpki-client on console-ams.rpki-client.org