Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/m00ej-b7AjJXEvxbfnKcHrng98o.roa
File: m00ej-b7AjJXEvxbfnKcHrng98o.roa (raw, json)
Hash identifier: bSdluZ+P8oVdApx0yYQ2Uixt+m+zogJAY0IQIrhoa4c=
Subject key identifier: 9B:4D:1E:8F:E6:FB:02:32:57:12:FC:5B:7E:72:9C:1E:B9:E0:F7:CA
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 39DA7EDD
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/m00ej-b7AjJXEvxbfnKcHrng98o.roa
Signing time: Wed 06 Apr 2022 07:34:08 +0000
ROA not before: Wed 06 Apr 2022 07:34:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34837
IP address blocks: 212.16.64.0/24 maxlen: 24
212.16.65.0/24 maxlen: 24
212.16.67.0/24 maxlen: 24
212.16.75.0/24 maxlen: 24
212.16.82.0/24 maxlen: 24
212.16.83.0/24 maxlen: 24
212.16.91.0/24 maxlen: 24
212.16.90.0/24 maxlen: 24
212.16.88.0/24 maxlen: 24
212.80.1.0/24 maxlen: 24
212.80.3.0/24 maxlen: 24
212.80.5.0/24 maxlen: 24
212.80.11.0/24 maxlen: 24
212.80.16.0/24 maxlen: 24
212.80.28.0/24 maxlen: 24
212.80.30.0/24 maxlen: 24
212.80.31.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 970620637 (0x39da7edd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Apr 6 07:34:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b4d1e8fe6fb02325712fc5b7e729c1eb9e0f7ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4b:8b:47:8b:02:82:2c:e3:37:ba:a6:d6:2f:
2d:35:ba:6e:9a:ed:e0:d4:3e:13:76:45:cd:e0:a2:
7a:b0:85:a1:63:c8:07:99:d6:83:9e:04:e2:c8:4a:
b1:5d:63:94:db:d6:df:a8:52:82:1f:96:ee:19:ce:
7a:33:27:8c:9b:44:f0:f6:c1:15:09:f5:2e:ba:32:
e4:07:9c:79:8a:be:9b:92:e9:73:ce:3b:01:87:9c:
c1:0e:bf:e5:4c:f8:4a:c5:9b:b5:53:5f:89:5a:06:
a9:3c:81:9d:e8:da:99:5d:f5:dc:72:29:8c:1b:f8:
4f:40:52:97:1d:c8:0f:99:3f:50:b1:21:44:a6:6f:
f0:2b:44:27:2c:fa:f6:7b:f3:a3:09:26:e0:da:17:
39:e4:00:81:45:1f:d7:3c:e4:57:c6:6a:a4:e2:f9:
68:86:98:66:57:21:38:f3:49:34:20:b1:99:1d:66:
73:0f:52:cf:0a:e4:71:2e:27:e8:a9:57:97:72:a5:
ea:16:5a:11:7a:23:3a:3a:8f:11:7f:28:6d:97:95:
93:2b:47:25:e1:39:4a:fb:f0:15:24:5e:0f:ec:28:
57:8f:20:47:41:b7:6d:0b:f0:7d:bc:9c:17:4c:3f:
8a:29:8a:10:34:4d:12:de:26:3b:4d:70:d2:6c:81:
3f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4D:1E:8F:E6:FB:02:32:57:12:FC:5B:7E:72:9C:1E:B9:E0:F7:CA
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/m00ej-b7AjJXEvxbfnKcHrng98o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/24
212.16.64.0/23
212.16.67.0/24
212.16.75.0/24
212.16.82.0/23
212.16.88.0/24
212.16.90.0/23
212.80.1.0/24
212.80.3.0/24
212.80.5.0/24
212.80.11.0/24
212.80.16.0/24
212.80.28.0/24
212.80.30.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:8b:21:58:fa:3f:4f:15:1c:a9:91:eb:e0:2a:6d:60:5b:f3:
28:63:da:93:3e:55:52:a8:f0:89:78:07:d3:ab:e8:5f:68:15:
19:97:5d:bb:a5:45:28:b3:8d:6e:b0:95:f7:5e:f8:7c:b1:16:
00:8f:97:16:72:09:6b:37:fe:54:0a:19:d1:2d:90:ce:76:2d:
50:4e:d6:84:fc:1d:3e:c2:4b:43:b3:49:5d:4e:74:af:01:45:
78:95:c2:fa:e9:27:b1:3b:4e:be:14:2b:ae:00:c6:c9:a5:07:
22:91:23:bc:d0:9b:f8:b9:04:56:22:b7:9b:5a:e3:f3:63:64:
18:62:54:e4:d0:37:77:5a:f3:bc:7c:b4:de:7e:17:de:59:4c:
8a:ba:27:c0:d4:e4:f9:be:a4:d1:c0:a4:5e:65:d0:54:b9:77:
67:54:c0:e8:01:e6:c3:96:1a:d4:26:1b:e0:8a:9a:bd:49:c1:
47:8e:5f:14:87:de:38:39:b1:99:45:a7:d2:ee:23:94:39:58:
64:d4:74:b8:59:92:71:23:ce:17:7f:9b:27:46:51:8d:8b:82:
8e:e1:7c:c5:10:49:0a:d8:43:0f:62:b5:70:e9:41:98:35:59:
23:ed:d2:f4:bd:17:b1:78:d3:8f:29:d3:fb:2c:e4:53:52:d7:
de:38:6c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:40 2023 by rpki-client on console-ams.rpki-client.org