Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/SXxVLkXGkL22z4Pss3QvA8lGBu4.roa
File: SXxVLkXGkL22z4Pss3QvA8lGBu4.roa (raw, json)
Hash identifier: WtJwlG3u6RVaFp8gW+C30TShBVw1r3/DB9V2cr+lKy8=
Subject key identifier: 49:7C:55:2E:45:C6:90:BD:B6:CF:83:EC:B3:74:2F:03:C9:46:06:EE
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 018379454E475675334A2A984B6BBAA44A4A
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/SXxVLkXGkL22z4Pss3QvA8lGBu4.roa
Signing time: Mon 26 Sep 2022 10:08:48 +0000
ROA not before: Mon 26 Sep 2022 10:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34471
IP address blocks: 176.56.64.0/19 maxlen: 24
185.5.84.0/22 maxlen: 24
89.40.84.0/22 maxlen: 24
185.176.104.0/22 maxlen: 24
46.28.160.0/24 maxlen: 24
31.25.176.0/21 maxlen: 24
185.176.107.0/24 maxlen: 24
91.242.148.0/22 maxlen: 24
109.235.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:45:4e:47:56:75:33:4a:2a:98:4b:6b:ba:a4:4a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Sep 26 10:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=497c552e45c690bdb6cf83ecb3742f03c94606ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ff:d7:66:46:e3:36:3e:38:26:c8:86:62:2b:
20:fb:93:5f:13:3f:66:95:5e:ca:04:34:42:ac:ff:
90:50:ae:eb:d7:e0:f1:4c:91:38:09:d2:bb:49:54:
0b:b2:0e:c0:1c:6f:1c:60:29:8a:0c:66:07:78:97:
46:aa:02:dd:72:20:aa:ef:f3:7c:4a:bc:4c:a2:66:
01:1c:9f:fb:c8:c8:b4:4e:7d:68:a7:03:28:ff:f9:
fe:51:d1:e7:06:2e:bf:e0:11:30:f9:61:c3:b2:c7:
45:6d:31:4d:e3:b7:c4:4b:35:7c:9f:7a:f1:29:73:
b2:f2:9c:ce:9f:29:27:c7:05:e0:ee:2f:26:ea:32:
96:18:7d:d6:61:5d:ac:d6:f8:0e:74:ad:b7:9a:ee:
16:2f:f6:50:df:34:71:09:15:36:ab:8c:76:80:b8:
f2:8c:ae:ad:99:49:0d:4b:01:db:21:03:7f:43:34:
8a:b0:6a:fa:7f:a0:bf:73:48:6e:86:50:86:e9:6d:
cb:50:91:4e:c4:5a:32:86:02:1d:e1:14:09:d6:ce:
78:6c:8a:37:a2:11:5c:b3:58:73:01:5f:df:3b:c5:
d4:9b:41:c9:0f:7a:7b:1a:85:4d:70:c2:e2:e8:27:
f7:3d:c8:72:13:81:9e:12:a8:55:c5:23:e2:11:dd:
51:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7C:55:2E:45:C6:90:BD:B6:CF:83:EC:B3:74:2F:03:C9:46:06:EE
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/SXxVLkXGkL22z4Pss3QvA8lGBu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.176.0/21
46.28.160.0/24
89.40.84.0/22
91.242.148.0/22
109.235.16.0/21
176.56.64.0/19
185.5.84.0/22
185.176.104.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:08:72:ff:b6:23:0f:76:48:b0:c0:07:a1:7d:2b:a3:a5:5f:
58:57:d6:15:00:3f:b2:0c:a2:f4:bf:5c:a7:2d:bd:76:c5:a1:
b8:2c:6b:a0:1f:be:7b:88:5f:7e:bd:cf:35:52:cc:12:7c:96:
36:1b:e1:61:79:4e:a5:26:6a:87:1f:9d:14:93:d3:4c:f5:6c:
3e:d7:fc:c3:9a:f0:0a:03:d2:45:f0:98:66:fd:79:30:14:79:
13:22:a6:6d:9a:40:1b:23:34:17:3f:a8:19:d9:b3:1d:be:ed:
05:e5:0b:64:f9:3d:65:c2:fd:30:37:c1:af:9c:0c:78:45:e9:
c6:5a:6f:3e:8e:eb:c0:54:5a:9e:7e:3c:e0:04:f7:5e:05:f2:
f7:ab:5e:26:67:1c:11:c4:89:57:5b:21:24:ef:5b:8b:1e:e3:
1a:56:28:19:02:1c:d0:c4:d9:eb:e5:33:b1:b2:fa:ae:09:20:
07:db:29:dc:32:6e:f5:ee:6f:af:3f:0c:d3:38:c9:31:5a:5e:
49:07:8d:6e:1f:fd:81:6b:9e:e8:4f:a4:17:c6:56:e5:2a:9d:
47:f5:ad:a5:c8:4e:54:d9:ea:0e:9a:45:91:5c:6d:17:26:c5:
80:2a:7d:11:35:0f:b7:d3:e4:08:fd:ad:af:ed:32:f3:8c:17:
ad:3f:3d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:18 2024 by rpki-client on console-fra.rpki-client.org