Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d8M6Hlgq-b08GFhI3Q3rbNA3IZE.roa
File: d8M6Hlgq-b08GFhI3Q3rbNA3IZE.roa (raw, json)
Hash identifier: sSJoaXRY85/x2HbD1nkfhSwkJfuD6adqrOcHA7I0vXk=
Subject key identifier: 77:C3:3A:1E:58:2A:F9:BD:3C:18:58:48:DD:0D:EB:6C:D0:37:21:91
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28E977FF
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d8M6Hlgq-b08GFhI3Q3rbNA3IZE.roa
Signing time: Thu 17 Feb 2022 09:27:38 +0000
ROA not before: Thu 17 Feb 2022 09:27:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50685
IP address blocks: 93.171.160.0/23 maxlen: 24
146.120.192.0/22 maxlen: 24
93.170.236.0/22 maxlen: 24
146.120.14.0/23 maxlen: 24
146.120.13.0/24 maxlen: 24
95.47.60.0/23 maxlen: 24
2a02:128:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 686389247 (0x28e977ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 17 09:27:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77c33a1e582af9bd3c185848dd0deb6cd0372191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3e:e9:8d:8a:8c:44:f3:70:e0:93:02:d6:6e:
30:a9:ae:23:9e:46:50:cf:6b:94:4e:bd:1e:b6:f5:
b4:7c:51:c9:06:43:47:7b:c1:56:b8:bc:37:3c:9b:
3f:42:0f:45:91:5c:0c:69:5a:56:d4:cd:e0:72:8b:
99:9f:7c:4a:44:b4:6e:08:42:3c:9c:bc:37:53:fc:
0b:03:5f:e4:28:cb:c9:32:79:e0:d7:33:c4:b5:e1:
f6:e7:06:9f:17:a1:21:79:f9:7e:2e:85:fb:c4:00:
0a:c2:88:f5:3c:de:78:96:dc:ca:7d:ab:4b:1f:81:
d5:1a:6d:6d:f2:cd:32:2f:67:52:72:e7:2a:c4:53:
ce:b4:be:8a:05:56:94:25:05:a4:6b:de:8f:99:72:
8f:50:70:6e:bc:3b:d9:97:25:d3:71:c6:0a:7c:c9:
21:b8:19:e1:75:10:3d:cc:bb:45:5d:a2:9a:f5:48:
f2:57:cb:84:a6:58:a0:1b:d6:8a:b9:2d:50:f5:89:
58:8d:02:06:e4:07:8a:94:d0:1e:42:d1:0b:c6:8f:
37:7e:8f:66:47:60:5c:ad:95:9e:8a:8e:3f:77:83:
54:c6:6b:55:59:5b:ef:79:9f:5d:97:a6:32:12:2e:
c1:c5:80:31:c9:37:c9:a0:1b:74:00:af:58:69:23:
c5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C3:3A:1E:58:2A:F9:BD:3C:18:58:48:DD:0D:EB:6C:D0:37:21:91
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/d8M6Hlgq-b08GFhI3Q3rbNA3IZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.236.0/22
93.171.160.0/23
95.47.60.0/23
146.120.13.0-146.120.15.255
146.120.192.0/22
IPv6:
2a02:128:9::/48
Signature Algorithm: sha256WithRSAEncryption
91:ea:ae:c7:81:54:6d:58:df:b9:e0:3c:d7:43:3e:bc:95:d4:
5b:47:00:f4:d8:6e:04:0d:e0:40:e9:d2:3b:7b:e5:f4:35:8f:
91:a3:a1:71:cd:c0:17:18:ba:4e:43:c7:44:4f:f7:e7:06:d6:
71:fe:73:3f:5a:09:8a:7e:45:2d:93:e2:ea:1e:c5:44:4c:53:
33:05:6a:9b:62:7b:fa:80:f9:a3:58:09:81:4c:50:60:72:e6:
9d:13:16:0b:d3:a7:6a:68:34:fb:58:fa:77:2b:eb:2c:22:b9:
1f:5b:75:72:2e:b6:ed:e8:c5:05:16:76:47:1e:f0:8b:0c:36:
89:bc:48:1b:b0:96:f2:0c:d3:bd:8a:d3:14:03:80:8d:70:c0:
f1:4c:6d:f6:77:c0:dc:22:5f:4d:d0:52:e7:1d:cc:68:36:a8:
39:34:ce:4a:c1:fd:b0:0a:6e:f4:d0:23:cc:4c:49:7f:8f:be:
dc:c1:3c:82:5b:fa:49:73:b1:28:71:79:f7:dd:39:7b:f9:61:
4f:4d:cb:75:db:d3:dd:63:98:38:82:88:11:ea:5b:f2:83:0a:
c0:20:ec:29:29:d9:f0:c5:0c:2c:a3:ab:de:73:9b:e2:ae:e0:
c5:d1:45:3e:c4:61:64:a5:f5:b5:a3:38:8f:ef:c2:17:a9:63:
a2:b2:63:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:42 2023 by rpki-client on console-fra.rpki-client.org