Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jeggHTvl7KACkI4npWLXjf0OsZw.roa
File: jeggHTvl7KACkI4npWLXjf0OsZw.roa (raw, json)
Hash identifier: 79ajpYZQl0FTJ+j009mYciMkUYTRNTC9loTKa+I+JlU=
Subject key identifier: 8D:E8:20:1D:3B:E5:EC:A0:02:90:8E:27:A5:62:D7:8D:FD:0E:B1:9C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2800525F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jeggHTvl7KACkI4npWLXjf0OsZw.roa
Signing time: Sat 01 Jan 2022 16:09:22 +0000
ROA not before: Sat 01 Jan 2022 16:09:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61390
IP address blocks: 93.171.40.0/22 maxlen: 24
92.38.33.0/24 maxlen: 24
146.158.60.0/22 maxlen: 24
93.171.182.0/23 maxlen: 24
146.120.120.0/22 maxlen: 24
95.46.116.0/22 maxlen: 24
93.170.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671109727 (0x2800525f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8de8201d3be5eca002908e27a562d78dfd0eb19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4a:19:f8:37:9e:fb:4a:77:4f:72:25:15:1a:
10:11:75:0b:74:fe:70:46:34:57:4f:35:88:49:6a:
af:dd:85:8d:73:a7:2c:e5:6e:ae:d7:dd:11:b7:28:
89:a2:96:88:d8:15:ba:16:72:da:41:6c:02:f0:61:
c1:24:75:bf:41:fa:d0:8f:f3:db:58:96:cf:1c:e8:
b0:a2:1c:b3:b8:42:a1:2e:b7:0d:ea:90:76:a1:43:
53:4c:b6:07:6e:5e:31:dd:16:2f:1a:7d:31:f6:45:
02:a7:1f:48:69:c9:85:7f:81:f9:6c:41:02:b3:ed:
cb:17:70:42:79:e2:44:f6:d1:cd:97:70:a2:50:4d:
58:8e:55:25:9a:db:2b:58:d3:a8:a7:70:93:a3:13:
51:f9:b3:4a:ea:fc:ab:19:e5:84:46:22:d1:33:1d:
ff:ae:13:c6:21:f3:c8:3a:16:6b:cb:96:26:00:f5:
e9:e2:af:24:ee:37:f2:96:c9:c5:3a:9b:ba:0a:f5:
ea:71:ee:67:40:60:01:d7:70:ca:24:59:85:b5:ed:
56:c2:4c:2d:37:a4:8c:1f:51:5b:69:53:18:e7:a4:
77:da:b8:47:5c:3f:f8:55:5a:5f:3a:8c:6f:92:03:
e1:0f:67:b4:e9:c6:01:df:44:ff:4a:3b:52:58:be:
ce:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E8:20:1D:3B:E5:EC:A0:02:90:8E:27:A5:62:D7:8D:FD:0E:B1:9C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/jeggHTvl7KACkI4npWLXjf0OsZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.33.0/24
93.170.180.0/22
93.171.40.0/22
93.171.182.0/23
95.46.116.0/22
146.120.120.0/22
146.158.60.0/22
Signature Algorithm: sha256WithRSAEncryption
90:77:1c:7d:9a:26:66:21:4c:07:ec:ff:66:eb:f8:8a:22:24:
88:87:b7:11:be:3d:23:eb:7c:55:e8:2d:a2:64:d7:91:78:fa:
70:0b:11:49:8f:f0:e5:db:fb:99:32:77:04:19:1c:a1:79:a5:
6a:c4:37:ad:73:3e:ee:f5:6a:fc:3b:bf:68:d7:db:1d:3a:78:
4b:cb:c2:61:63:ed:08:69:73:b2:2a:c2:c7:d0:10:85:6e:90:
6c:92:60:c5:c1:f1:d5:17:55:a4:b3:cd:39:cf:88:da:3d:14:
ab:aa:4d:1c:69:78:71:85:70:6d:3c:9e:63:09:59:1f:53:36:
e9:8e:d9:ee:fe:d5:32:cb:e5:6e:4e:ae:c8:de:89:db:c7:58:
9a:47:35:d3:68:67:7f:6d:ab:8a:21:50:af:e0:51:c9:b5:d9:
34:26:f7:bc:ab:b2:9c:9b:9f:12:63:6c:2e:3c:d6:51:d7:51:
d7:54:27:39:25:b8:5e:cc:4a:f5:53:87:e1:b9:01:b3:6c:3c:
0e:97:21:5c:08:88:17:d0:42:4b:5a:59:d6:c2:09:7a:a5:84:
5e:1f:40:b6:eb:15:8d:5b:d6:04:a1:7b:94:f7:94:7b:5c:f0:
8b:99:92:9d:81:81:85:25:95:64:ba:07:f8:00:4d:a0:3c:d9:
6a:d5:6b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org