Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/9c_Cil2TW3F7s5_tIAI2jliAYjc.roa
File: 9c_Cil2TW3F7s5_tIAI2jliAYjc.roa (raw, json)
Hash identifier: MKffPeHtpNwM1HMbrSmy3j06t8krt0cwgx862/KtqjQ=
Subject key identifier: F5:CF:C2:8A:5D:93:5B:71:7B:B3:9F:ED:20:02:36:8E:58:80:62:37
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 2C419892
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/9c_Cil2TW3F7s5_tIAI2jliAYjc.roa
Signing time: Wed 02 Mar 2022 12:53:29 +0000
ROA not before: Wed 02 Mar 2022 12:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12975
IP address blocks: 213.244.121.0/24 maxlen: 24
213.244.71.0/24 maxlen: 24
213.244.70.0/23 maxlen: 24
213.244.70.0/24 maxlen: 24
213.244.72.0/21 maxlen: 24
213.244.72.0/24 maxlen: 24
83.244.78.0/24 maxlen: 24
213.244.76.0/24 maxlen: 24
83.244.75.0/24 maxlen: 24
83.244.74.0/24 maxlen: 24
213.244.73.0/24 maxlen: 24
83.244.73.0/24 maxlen: 24
83.244.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 742496402 (0x2c419892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Mar 2 12:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5cfc28a5d935b717bb39fed2002368e58806237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:86:0d:e9:cd:7d:d4:aa:63:99:30:63:53:d8:
50:e0:f5:91:7d:e2:d6:27:e5:4c:9c:93:7b:25:fc:
ed:da:b2:cd:8a:67:bf:f2:ca:64:bb:24:d9:a1:80:
64:b7:4a:a0:b0:bb:6a:3e:4e:f0:39:1b:87:a6:c0:
d5:4f:52:c9:f4:72:94:cd:6c:91:03:12:8a:ae:d3:
74:28:fc:3a:6c:50:00:43:82:54:e2:c0:cd:1a:7c:
bf:6c:36:d9:55:a1:cf:1e:ac:e0:65:51:5f:59:62:
59:87:79:c7:c5:5f:f2:54:f4:05:80:61:dc:79:13:
93:b3:24:ca:89:07:9f:47:19:26:c1:01:4c:e9:e9:
ae:dd:4b:1b:f3:5f:77:cc:17:c6:f1:16:cb:c8:0e:
5c:9c:a1:a9:23:2c:d4:34:b0:e0:f7:98:bf:66:32:
89:18:09:6b:24:e6:ef:fb:30:44:66:42:ac:63:7e:
1d:fd:e8:bc:3d:05:86:b8:f7:d6:eb:17:8e:88:9a:
07:72:d3:3e:59:14:d0:41:59:8f:2d:67:0e:58:56:
28:d6:8b:7c:ff:61:82:ed:ba:8d:46:74:25:4b:85:
7f:68:bd:d7:96:ef:50:ad:cf:df:32:60:54:55:83:
10:d8:ee:2e:f9:66:a2:be:b1:75:bf:eb:36:56:88:
4d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CF:C2:8A:5D:93:5B:71:7B:B3:9F:ED:20:02:36:8E:58:80:62:37
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/9c_Cil2TW3F7s5_tIAI2jliAYjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.244.73.0-83.244.75.255
83.244.78.0/23
213.244.70.0-213.244.79.255
213.244.121.0/24
Signature Algorithm: sha256WithRSAEncryption
00:19:85:5b:65:5b:2f:8b:e7:c1:f7:a8:c6:3d:6f:3c:00:50:
b1:20:ba:1f:d9:31:b1:6a:79:16:57:12:3e:96:52:c3:ec:2b:
4e:ee:28:dc:1a:7d:36:1a:fb:1b:dd:38:21:81:56:31:07:55:
5e:48:4a:04:05:3c:67:8d:43:26:81:59:28:da:18:2d:dd:0e:
d6:ff:d2:6e:29:22:97:fc:f2:76:f9:ca:c0:dd:57:86:cf:5d:
a1:64:8e:69:54:d8:4d:64:21:c1:1d:2f:57:74:a3:27:8d:90:
a6:0b:be:8e:fe:5b:78:43:98:e8:33:50:14:e3:03:71:a0:04:
a9:6e:09:f8:d4:06:57:93:c9:10:3b:e2:28:5d:49:a4:2e:fa:
b1:61:ea:99:d5:f4:95:7d:29:f5:58:e3:d0:41:18:8d:5e:f0:
63:0d:0c:c6:c1:77:6f:e9:f0:7c:af:e8:9e:11:9d:2a:65:df:
0d:4c:1b:dd:2e:5c:f6:9b:ef:f3:f2:58:73:68:bb:b6:79:ee:
8d:83:22:ad:44:24:60:4d:d5:47:11:cd:2f:6a:1b:65:fd:6d:
74:93:83:01:89:b2:ed:e5:8a:f6:0e:8a:6c:ce:1e:0f:6f:be:
1a:b1:c0:68:ff:bf:6e:79:15:d9:ea:5c:eb:73:b3:83:a4:81:
12:ef:94:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:20 2024 by rpki-client on console-fra.rpki-client.org