Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/scl06Ww4OEZVqnFC7eFqJBBpKaU.roa
File: scl06Ww4OEZVqnFC7eFqJBBpKaU.roa (raw, json)
Hash identifier: PdGM8UGU71d12tfzIlhsvW6e/MiQ5lJ2zJzMdj//Z+c=
Subject key identifier: B1:C9:74:E9:6C:38:38:46:55:AA:71:42:ED:E1:6A:24:10:69:29:A5
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 39262559
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/scl06Ww4OEZVqnFC7eFqJBBpKaU.roa
Signing time: Thu 20 Jan 2022 06:48:56 +0000
ROA not before: Thu 20 Jan 2022 06:48:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34837
IP address blocks: 212.16.64.0/24 maxlen: 24
212.16.65.0/24 maxlen: 24
212.16.75.0/24 maxlen: 24
212.16.82.0/24 maxlen: 24
212.16.83.0/24 maxlen: 24
212.16.91.0/24 maxlen: 24
212.16.90.0/24 maxlen: 24
212.16.88.0/24 maxlen: 24
212.80.1.0/24 maxlen: 24
212.80.3.0/24 maxlen: 24
212.80.5.0/24 maxlen: 24
212.80.11.0/24 maxlen: 24
212.80.16.0/24 maxlen: 24
212.80.28.0/24 maxlen: 24
212.80.30.0/24 maxlen: 24
212.80.31.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 958801241 (0x39262559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 20 06:48:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1c974e96c38384655aa7142ede16a24106929a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:12:a7:3b:d8:be:0e:6d:45:8f:c6:e1:98:
c8:3b:a5:ff:91:e8:fb:05:40:67:13:80:7e:ec:fe:
48:fa:b1:f4:ad:0c:09:e1:5a:06:c5:85:ff:75:d0:
80:6f:73:d4:ad:ac:ba:51:57:19:09:7c:1f:8c:82:
c6:50:53:45:18:84:a8:e9:7a:81:07:99:34:11:75:
e8:36:97:27:ff:2d:aa:97:5e:d0:85:73:f1:9c:d2:
b7:9b:0b:47:01:32:1a:6d:f8:c3:c1:ef:a2:b5:3d:
2b:29:ee:b4:73:38:7d:d3:99:f3:67:33:56:e5:75:
a1:b0:9d:f6:3b:1d:58:05:66:b1:29:9d:93:76:83:
aa:47:88:0a:04:2f:2b:b9:84:10:68:ed:32:5a:d9:
3a:d7:6f:99:66:41:ed:0a:00:22:65:38:50:00:f2:
82:74:7c:2d:8a:84:d9:b0:53:70:9a:0a:68:84:93:
61:d2:da:b1:73:b3:98:ff:63:0f:e7:dc:91:24:15:
b0:e2:a2:73:a5:12:0d:ea:6f:a5:41:d0:ea:4f:62:
80:fc:ea:45:bf:18:78:26:ba:fe:96:33:ab:58:c1:
e6:be:1c:d9:c3:7b:da:97:d6:2a:cc:14:04:4d:8c:
71:00:f7:79:74:97:c5:ec:ab:3d:0e:c8:0a:de:f6:
2f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C9:74:E9:6C:38:38:46:55:AA:71:42:ED:E1:6A:24:10:69:29:A5
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/scl06Ww4OEZVqnFC7eFqJBBpKaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/24
212.16.64.0/23
212.16.75.0/24
212.16.82.0/23
212.16.88.0/24
212.16.90.0/23
212.80.1.0/24
212.80.3.0/24
212.80.5.0/24
212.80.11.0/24
212.80.16.0/24
212.80.28.0/24
212.80.30.0/23
Signature Algorithm: sha256WithRSAEncryption
45:58:ea:9c:5f:ab:75:77:f2:84:e9:8f:9a:21:17:36:07:52:
5a:3b:7a:6a:d0:c0:27:d1:88:83:00:ff:2d:47:5a:6d:3c:90:
17:ed:1b:8a:83:7d:55:29:64:93:f4:01:54:1c:49:13:fc:44:
19:48:d0:3a:62:98:8b:25:0b:40:20:22:24:ba:4e:ba:42:d5:
60:45:b7:32:73:c5:9e:77:3f:77:a0:a2:94:ad:e5:4d:75:c4:
ed:5d:00:39:da:e6:a9:19:a9:5d:f8:fc:84:56:28:bb:60:23:
81:38:29:d1:19:f0:43:90:7c:d9:f1:7a:0a:1c:d5:f9:e3:24:
46:e3:03:50:55:25:06:f8:05:21:15:8f:08:f4:d9:61:3c:7d:
c9:43:59:87:0c:bd:1f:ae:46:8d:3a:cd:03:33:bd:cd:3a:49:
0d:5a:6d:50:af:65:53:8c:21:7b:f5:d5:e5:3a:7e:8d:1f:85:
30:e8:56:92:23:56:70:d3:bf:2a:95:3b:1c:57:2b:c4:0d:87:
9d:f0:ed:42:58:7e:1a:a3:97:ed:ea:81:92:47:81:78:7b:58:
68:3e:3a:11:36:5e:35:00:22:d4:2f:4a:a7:95:75:2e:9f:21:
13:9c:e6:d1:8b:0a:41:26:47:7e:63:cb:0f:4c:9a:e8:cf:62:
d4:f4:21:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org