Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/RoaQJpx87zmtxZNsl836TmSGmGQ.roa
File: RoaQJpx87zmtxZNsl836TmSGmGQ.roa (raw, json)
Hash identifier: VtYxsOkwdGckNrxxzeU5TXdn2LEkcnIfB+CCHGjeTaU=
Subject key identifier: 46:86:90:26:9C:7C:EF:39:AD:C5:93:6C:97:CD:FA:4E:64:86:98:64
Certificate issuer: /CN=c092d8d5511b19ece456960f23bfa886ee1d570b
Certificate serial: 0184DC48A3B5FF7005C1602941A2CA78DE4B
Authority key identifier: C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/RoaQJpx87zmtxZNsl836TmSGmGQ.roa
Signing time: Sun 04 Dec 2022 08:37:38 +0000
ROA not before: Sun 04 Dec 2022 08:37:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58322
IP address blocks: 91.106.32.0/23 maxlen: 23
91.106.32.0/24 maxlen: 24
91.106.33.0/24 maxlen: 24
91.106.34.0/24 maxlen: 24
91.106.34.0/23 maxlen: 23
91.106.32.0/22 maxlen: 22
91.106.35.0/24 maxlen: 24
91.106.44.0/24 maxlen: 24
91.106.40.0/22 maxlen: 22
91.106.41.0/24 maxlen: 24
91.106.42.0/23 maxlen: 23
91.106.42.0/24 maxlen: 24
91.106.43.0/24 maxlen: 24
91.106.44.0/23 maxlen: 23
91.106.44.0/22 maxlen: 22
91.106.40.0/23 maxlen: 23
91.106.40.0/24 maxlen: 24
91.106.45.0/24 maxlen: 24
91.106.46.0/23 maxlen: 23
91.106.46.0/24 maxlen: 24
91.106.47.0/24 maxlen: 24
91.106.48.0/24 maxlen: 24
91.106.49.0/24 maxlen: 24
91.106.50.0/24 maxlen: 24
91.106.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:dc:48:a3:b5:ff:70:05:c1:60:29:41:a2:ca:78:de:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c092d8d5511b19ece456960f23bfa886ee1d570b
Validity
Not Before: Dec 4 08:37:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=468690269c7cef39adc5936c97cdfa4e64869864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c4:3e:10:7f:b7:9a:89:8b:60:54:ed:7a:34:
ed:c9:4d:85:d3:39:9f:5a:e1:d4:62:38:99:5b:f1:
f3:40:79:41:26:a0:05:b7:24:af:c9:76:06:4e:8c:
87:e2:5d:c4:84:b4:9c:9c:bf:19:b2:4f:0b:dd:b8:
be:10:03:1f:fd:1b:54:07:2d:09:09:2b:fe:96:95:
59:23:b2:55:51:af:86:59:bc:17:09:b3:b0:bc:ba:
fb:e7:02:31:2d:7b:c8:7a:c9:e3:34:1a:c8:1c:f9:
86:f7:8d:0e:5e:89:00:95:ea:10:02:2b:9c:5a:98:
3b:b5:70:58:7f:a1:7f:a7:27:66:40:4c:2d:53:1e:
21:c8:f5:b2:50:e4:1f:cb:5a:75:e6:5b:ab:05:a5:
b7:04:80:0c:e2:4f:df:da:73:06:19:2c:6e:79:2d:
51:13:84:d7:58:27:63:7d:bf:18:1c:e7:c2:09:2d:
e9:78:c0:40:65:04:48:5d:e4:b4:7c:42:83:b8:be:
3a:ca:38:e2:ca:15:e0:81:d2:da:0a:23:65:e4:8e:
b2:e9:1a:cd:b8:95:0a:35:b2:d6:24:cd:5a:14:55:
5d:a7:d3:e1:58:4f:1a:a9:18:19:12:62:b8:44:cd:
5b:db:6a:38:3a:b2:a3:2f:5e:fe:80:a0:f9:ed:6f:
df:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:86:90:26:9C:7C:EF:39:AD:C5:93:6C:97:CD:FA:4E:64:86:98:64
X509v3 Authority Key Identifier:
keyid:C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/RoaQJpx87zmtxZNsl836TmSGmGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.32.0/22
91.106.40.0-91.106.51.255
Signature Algorithm: sha256WithRSAEncryption
57:ee:31:fb:4b:19:20:b0:4d:39:2c:fa:c7:64:33:33:0f:b3:
b7:4a:9d:14:fe:ea:98:84:88:82:90:80:6f:50:db:dc:67:d2:
bf:78:c4:c9:15:70:ce:68:e7:95:d9:f1:15:c8:ee:b4:70:62:
77:aa:43:a6:c6:07:7e:6a:b6:a7:d7:2a:dc:24:56:8f:a0:6a:
38:e2:c2:43:1d:8d:8c:eb:23:f4:3b:1e:3a:06:41:e3:eb:1f:
0a:e1:8e:42:58:d6:9f:ea:71:a6:4f:e7:72:04:0d:fe:7c:b7:
86:b2:d9:d7:c7:ce:0b:a6:76:52:79:bb:16:84:13:1e:1f:0d:
cd:40:4b:18:64:12:9f:06:08:cb:5a:96:80:0d:02:37:f8:94:
37:59:c4:df:c8:36:7d:56:7d:ea:75:3d:ec:0a:b3:d9:16:c6:
d3:30:29:da:73:e6:d3:a6:bd:3d:e4:28:0e:e3:9f:04:37:49:
bf:c1:ef:3b:45:ab:30:58:17:02:7a:a9:7f:b8:78:8d:4f:7b:
f7:d4:cf:55:14:37:70:fc:23:59:53:0a:ef:f6:53:2a:f5:46:
ef:8a:9d:1e:79:13:fc:0f:83:cc:c5:f1:da:b8:1c:7c:75:5d:
98:ae:47:87:8c:52:bc:81:2d:40:97:2f:0e:77:fb:87:49:a7:
1b:cd:87:b1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org