Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/dXiMu1CScEJDUEurPzLfkpzOO4M.roa
File: dXiMu1CScEJDUEurPzLfkpzOO4M.roa (raw, json)
Hash identifier: dOENsampZt2/DiyyMOCWfurFjpXZnktZHS7Cwl+36RA=
Subject key identifier: 75:78:8C:BB:50:92:70:42:43:50:4B:AB:3F:32:DF:92:9C:CE:3B:83
Certificate issuer: /CN=4044fd1980ba01788a353a26fef8954ed7c11f96
Certificate serial: 2B7CBF
Authority key identifier: 40:44:FD:19:80:BA:01:78:8A:35:3A:26:FE:F8:95:4E:D7:C1:1F:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QET9GYC6AXiKNTom_viVTtfBH5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/dXiMu1CScEJDUEurPzLfkpzOO4M.roa
Signing time: Thu 12 May 2022 07:45:02 +0000
ROA not before: Thu 12 May 2022 07:45:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62365
IP address blocks: 139.28.0.0/22 maxlen: 22
185.38.48.0/22 maxlen: 22
155.133.200.0/21 maxlen: 21
155.133.208.0/20 maxlen: 20
141.98.144.0/22 maxlen: 22
185.202.180.0/22 maxlen: 22
80.249.116.0/22 maxlen: 22
2a00:fda0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2849983 (0x2b7cbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4044fd1980ba01788a353a26fef8954ed7c11f96
Validity
Not Before: May 12 07:45:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75788cbb5092704243504bab3f32df929cce3b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:58:83:66:91:1a:fe:a4:1f:94:95:4e:bd:06:
8f:37:6f:07:3b:5e:71:b8:d1:9f:fa:15:9b:1b:87:
b9:bf:45:a6:3d:66:78:88:b9:44:f5:40:75:f1:20:
cb:f0:89:f0:7b:6e:6e:be:9f:3a:88:c2:f1:52:02:
8e:3c:4d:c1:76:0a:0c:56:81:a2:01:ca:9d:19:2b:
45:28:04:ea:be:02:eb:d8:3a:56:e4:d7:03:8d:18:
a3:b5:83:d8:42:2b:df:f1:25:ec:d8:c9:c5:bf:20:
33:52:cf:49:2d:ba:9e:b0:32:d1:1e:32:5f:38:3a:
39:1f:6e:d0:bf:59:22:4e:d8:78:a0:df:43:8c:76:
bf:b6:a0:08:a6:8a:f3:91:2c:00:dd:6d:0c:96:a0:
b6:e2:34:94:f7:c1:b2:57:3b:4f:79:47:10:20:91:
32:5c:74:5a:9b:c9:60:1b:66:7e:4d:c6:ae:ba:00:
95:ad:f3:d0:68:b4:c6:0c:79:ea:8a:a0:e7:6b:76:
de:c3:ff:9b:3c:09:5d:a1:7c:b5:0d:4c:29:1f:fe:
f0:2f:00:c5:e1:ba:d6:38:74:85:ee:d9:8e:1d:9c:
7d:36:18:3b:d7:81:43:f3:f3:09:69:26:4e:8b:a8:
f8:38:33:0d:ec:76:3a:d8:06:06:6b:8f:f7:3c:71:
72:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:78:8C:BB:50:92:70:42:43:50:4B:AB:3F:32:DF:92:9C:CE:3B:83
X509v3 Authority Key Identifier:
keyid:40:44:FD:19:80:BA:01:78:8A:35:3A:26:FE:F8:95:4E:D7:C1:1F:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QET9GYC6AXiKNTom_viVTtfBH5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/dXiMu1CScEJDUEurPzLfkpzOO4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/15b16a-f76b-41a4-88bc-91cf616d2c52/1/QET9GYC6AXiKNTom_viVTtfBH5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.249.116.0/22
139.28.0.0/22
141.98.144.0/22
155.133.200.0-155.133.223.255
185.38.48.0/22
185.202.180.0/22
IPv6:
2a00:fda0::/32
Signature Algorithm: sha256WithRSAEncryption
be:f9:25:5f:18:78:3b:0b:d1:bb:43:f6:78:3e:b7:5d:1b:4e:
4c:09:3b:fb:3b:05:ba:01:b3:3a:50:ea:80:5b:be:d2:07:6e:
75:3a:53:23:93:99:65:df:85:71:a4:65:87:98:ee:c2:50:cf:
1b:95:ed:19:84:6c:1b:60:03:5a:82:72:d1:4f:b9:72:b1:46:
3b:53:7e:ec:f0:7c:e8:9a:b2:25:13:b9:35:da:f0:e6:b5:4e:
e1:f7:af:3c:30:25:b2:1b:6c:89:23:aa:f3:59:f7:78:30:0d:
1c:90:a6:6c:c5:78:82:b3:6f:09:b9:7f:66:27:ec:50:e5:29:
ad:8b:f7:30:56:b0:6e:d8:38:5b:ef:ae:17:5b:7d:8d:1b:1d:
68:77:0a:df:6f:2c:91:b3:82:7f:37:4f:ec:ae:7e:5b:2d:fd:
7f:23:d9:d3:3d:44:7f:de:07:90:9e:49:b9:7c:c9:7f:c6:5e:
8c:08:af:22:43:fa:bd:7c:be:b4:a1:a1:db:94:ed:3c:15:8d:
57:6f:a0:20:88:26:0f:8f:6b:72:0f:26:8b:b6:3e:97:e3:bf:
34:9e:08:a9:48:5f:6e:e3:38:4c:15:82:db:92:7d:6d:da:03:
cd:6d:1f:22:a5:f5:b2:f7:f8:33:b6:a5:89:53:ac:c8:c8:04:
79:e3:d8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:17 2024 by rpki-client on console-fra.rpki-client.org