Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/qQKkGQyBJeygZLdSrxK74nnb7w0.roa
File: qQKkGQyBJeygZLdSrxK74nnb7w0.roa (raw, json)
Hash identifier: jtOX0wGNLOdLTDBojDvVs4tdRHJvGnGtwynsh2Y4re8=
Subject key identifier: A9:02:A4:19:0C:81:25:EC:A0:64:B7:52:AF:12:BB:E2:79:DB:EF:0D
Certificate issuer: /CN=b409168fdb52e9b7d1a7a5e8f518edfbc2c3f9af
Certificate serial: 02FFFE
Authority key identifier: B4:09:16:8F:DB:52:E9:B7:D1:A7:A5:E8:F5:18:ED:FB:C2:C3:F9:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/qQKkGQyBJeygZLdSrxK74nnb7w0.roa
Signing time: Mon 09 May 2022 20:54:30 +0000
ROA not before: Mon 09 May 2022 20:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41421
IP address blocks: 91.132.112.0/23 maxlen: 23
185.194.212.0/22 maxlen: 24
188.65.40.0/21 maxlen: 21
37.157.200.0/21 maxlen: 21
193.91.4.0/24 maxlen: 24
193.91.12.0/23 maxlen: 23
31.214.137.0/24 maxlen: 24
89.250.192.0/20 maxlen: 20
31.214.138.0/24 maxlen: 24
31.214.140.0/24 maxlen: 24
31.214.145.0/24 maxlen: 24
185.53.132.0/22 maxlen: 24
159.253.240.0/21 maxlen: 21
185.128.156.0/22 maxlen: 22
2a02:4c80::/32 maxlen: 32
2a01:b8e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196606 (0x2fffe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b409168fdb52e9b7d1a7a5e8f518edfbc2c3f9af
Validity
Not Before: May 9 20:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a902a4190c8125eca064b752af12bbe279dbef0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:69:80:4c:1a:b4:58:92:70:3a:d4:1d:ca:dc:
bd:fa:ef:6f:43:4f:28:c2:33:55:8b:6c:7a:e0:c6:
29:ef:ff:67:8e:c5:49:1d:3d:ad:4f:61:5e:dc:8e:
12:8b:d3:21:01:cb:3f:3c:09:7e:fd:de:97:c7:e4:
29:32:f1:92:49:2a:ed:3f:ab:82:50:d8:b9:c8:ea:
0d:b5:dc:83:70:89:22:7f:a8:52:80:a3:c9:c9:ac:
e5:b3:e6:54:24:5f:7d:f3:99:e6:59:70:15:c5:da:
8b:f5:bb:f0:a0:b8:9d:07:b8:38:0f:76:6d:be:8f:
d2:b5:5e:94:47:46:3d:e6:f8:92:17:0a:b3:5c:86:
aa:db:b3:12:1f:38:1a:73:8a:47:49:c0:7b:48:40:
22:8b:b1:e3:34:a3:ef:7d:d5:fa:54:7d:1a:0f:1c:
ba:d6:a9:61:27:71:74:71:6d:e6:6b:6b:39:94:9b:
73:97:77:4f:b0:d1:bf:8a:b8:2a:b0:63:ee:17:e8:
94:2e:bb:d4:a5:72:c6:66:bb:b0:f5:74:28:3f:63:
3c:b9:40:68:d4:58:3a:2e:86:f0:d7:d0:84:ca:e4:
f2:95:9f:9a:f7:84:4e:e8:5a:ee:ae:71:d9:8c:55:
20:28:fa:07:81:d7:f5:7b:7d:9d:49:89:27:36:cb:
21:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:02:A4:19:0C:81:25:EC:A0:64:B7:52:AF:12:BB:E2:79:DB:EF:0D
X509v3 Authority Key Identifier:
keyid:B4:09:16:8F:DB:52:E9:B7:D1:A7:A5:E8:F5:18:ED:FB:C2:C3:F9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/qQKkGQyBJeygZLdSrxK74nnb7w0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/36ba9d-33af-4cf3-a27d-fa718ac9d758/1/tAkWj9tS6bfRp6Xo9Rjt-8LD-a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.137.0-31.214.138.255
31.214.140.0/24
31.214.145.0/24
37.157.200.0/21
89.250.192.0/20
91.132.112.0/23
159.253.240.0/21
185.53.132.0/22
185.128.156.0/22
185.194.212.0/22
188.65.40.0/21
193.91.4.0/24
193.91.12.0/23
IPv6:
2a01:b8e0::/32
2a02:4c80::/32
Signature Algorithm: sha256WithRSAEncryption
5d:85:f2:82:11:f2:d7:42:7f:bc:6e:86:0f:67:b1:0d:94:f5:
dc:06:85:51:ba:f9:95:c2:d9:89:3f:f4:ee:ea:c7:ec:fd:3c:
a5:c9:0e:17:39:ac:04:38:79:5b:0c:a5:a0:e6:cb:da:e0:52:
58:7c:e3:8a:b0:17:44:be:d7:78:4a:8d:6a:53:b1:c1:3e:94:
25:c1:1f:24:fb:95:3c:1e:a9:8a:db:7a:6a:1f:54:9e:8d:eb:
ba:de:de:0a:e4:a5:11:62:93:b2:9a:6d:5b:3b:80:96:43:54:
48:b9:06:b7:48:37:5a:39:83:2f:ac:04:af:09:56:fc:56:dd:
48:58:93:d3:93:26:fb:96:db:01:fc:8c:1e:2c:2d:c9:c2:49:
a9:2e:bd:77:ee:86:f8:4e:d9:12:15:1a:7f:c4:1c:ca:9c:2e:
81:97:5e:f7:e4:fa:8c:8b:fa:7d:3a:75:99:ec:47:a7:97:62:
65:e5:d9:67:1c:43:13:aa:39:4e:85:c4:0e:70:1c:65:b5:c2:
f9:8b:41:ce:1b:a1:39:81:13:7a:2b:c2:75:51:5a:6d:34:fa:
46:59:f4:c4:5d:12:87:7a:f8:93:7b:19:22:6b:15:03:b3:a5:
87:79:0c:9e:bd:3d:50:5e:2f:b2:f4:3c:94:04:26:df:ac:e1:
6e:d4:48:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:01 2024 by rpki-client on console-ams.rpki-client.org