Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/OU6La0RmYyqIKO3n-FJ9Bwu5ejc.roa
File: OU6La0RmYyqIKO3n-FJ9Bwu5ejc.roa (raw, json)
Hash identifier: dlBq0DHJG0t9gFjB0pnPB3dXhiyo62xUmvI7WWzlsPM=
Subject key identifier: 39:4E:8B:6B:44:66:63:2A:88:28:ED:E7:F8:52:7D:07:0B:B9:7A:37
Certificate issuer: /CN=8d64e43c75bdc511d524f0c85d009cba76956144
Certificate serial: 0BCADD7D
Authority key identifier: 8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/OU6La0RmYyqIKO3n-FJ9Bwu5ejc.roa
Signing time: Sat 01 Jan 2022 15:05:28 +0000
ROA not before: Sat 01 Jan 2022 15:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61349
IP address blocks: 193.178.196.0/24 maxlen: 24
185.29.200.0/22 maxlen: 24
91.205.212.0/22 maxlen: 24
91.199.236.0/24 maxlen: 24
185.173.12.0/22 maxlen: 22
2a04:4340::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197844349 (0xbcadd7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d64e43c75bdc511d524f0c85d009cba76956144
Validity
Not Before: Jan 1 15:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=394e8b6b4466632a8828ede7f8527d070bb97a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d7:01:81:e3:59:43:3c:a6:6c:36:36:b2:c7:
09:05:58:fa:17:ab:e7:f3:37:39:0a:fa:cb:54:e3:
e7:9b:a6:93:17:5f:95:0b:42:4a:b5:72:53:b9:4d:
22:e9:e7:f9:78:54:01:45:62:7d:cd:63:36:f4:f4:
58:ed:96:ab:2f:38:2c:2d:ca:49:17:d3:ab:87:f2:
38:8f:c0:72:23:24:a1:75:f8:4e:4c:16:04:48:96:
c8:68:fc:ae:c1:f4:dc:bf:6c:79:f2:e0:7b:80:97:
6a:9b:24:1b:8b:32:de:a8:6a:31:58:f6:40:37:77:
52:d4:a4:4c:88:bd:86:f0:33:0f:18:49:b8:92:83:
3b:d3:d3:f2:8a:7d:64:45:c3:71:0f:6e:34:8e:45:
ed:ad:c4:64:5c:fc:7b:9a:8e:92:33:c5:f6:61:f1:
5a:98:4d:16:ec:26:3e:6e:e8:09:7f:c8:6c:26:68:
90:b4:b3:8a:74:6e:5d:c9:16:07:a8:ef:28:24:02:
fe:f0:89:22:89:6e:57:ad:59:91:0e:3e:d3:b2:4b:
17:a0:e3:f3:36:8e:6f:3d:2b:6a:80:ff:2e:39:5b:
5b:a0:48:08:9c:b2:b2:b5:f1:46:05:c7:67:af:e0:
26:6d:63:1f:01:c9:3a:2a:05:81:d0:2a:37:39:c6:
d2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:4E:8B:6B:44:66:63:2A:88:28:ED:E7:F8:52:7D:07:0B:B9:7A:37
X509v3 Authority Key Identifier:
keyid:8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/OU6La0RmYyqIKO3n-FJ9Bwu5ejc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/jWTkPHW9xRHVJPDIXQCcunaVYUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.236.0/24
91.205.212.0/22
185.29.200.0/22
185.173.12.0/22
193.178.196.0/24
IPv6:
2a04:4340::/29
Signature Algorithm: sha256WithRSAEncryption
25:47:86:f5:c8:95:22:63:f7:c4:46:3c:75:d1:ee:dc:7f:62:
5b:4d:75:96:6a:08:d2:7f:91:b7:dd:63:41:b9:64:23:1d:27:
3f:ce:ef:f2:99:8d:c3:0a:b4:b8:09:91:44:6f:e3:c9:3e:e0:
6b:99:03:d1:ee:2e:5c:ca:b2:29:cf:bd:e1:3f:b7:aa:44:2d:
af:2b:db:df:04:4c:65:51:fb:2c:a6:47:62:21:49:0f:3c:2f:
14:f9:1b:d5:7e:46:e4:1d:57:0b:e0:04:8f:97:47:9b:3c:70:
7e:2c:53:65:1d:47:e9:d9:3b:22:11:a0:9a:65:5f:b0:f4:db:
b3:36:fa:10:a3:2d:ab:60:c2:22:47:ae:cb:18:e8:72:9e:64:
52:99:cb:c7:c7:cb:09:3a:87:fd:89:ca:24:d1:b0:e4:b8:ec:
58:56:69:ba:db:5d:02:99:3c:e3:05:78:89:89:fd:ad:b4:ff:
9a:53:48:65:5a:34:e9:9a:d6:45:d6:68:a4:24:dd:86:28:09:
61:68:ee:20:0d:45:1b:d8:de:b3:cc:b6:77:92:fe:1a:6d:51:
5a:4e:df:f7:a3:80:51:8a:e6:56:b4:82:07:91:c8:6e:ed:4d:
f5:52:e8:4c:66:15:31:04:fb:1a:33:86:45:52:e8:22:c2:1e:
29:28:37:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:20 2024 by rpki-client on console-ams.rpki-client.org