Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/rpdvU_qMjgaWI1DTaYECy16Rcng.roa
File: rpdvU_qMjgaWI1DTaYECy16Rcng.roa (raw, json)
Hash identifier: 6FgNEn6oQuA9/2eiXVhrI6bTeW8MjefWbV1WHgED1yI=
Subject key identifier: AE:97:6F:53:FA:8C:8E:06:96:23:50:D3:69:81:02:CB:5E:91:72:78
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 1AB590E9
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/rpdvU_qMjgaWI1DTaYECy16Rcng.roa
Signing time: Sat 01 Jan 2022 06:03:42 +0000
ROA not before: Sat 01 Jan 2022 06:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 46.31.78.0/24 maxlen: 24
46.31.76.0/24 maxlen: 24
185.73.203.0/24 maxlen: 24
185.73.201.0/24 maxlen: 24
185.73.200.0/24 maxlen: 24
185.73.202.0/24 maxlen: 32
185.17.112.0/24 maxlen: 24
185.17.113.0/24 maxlen: 32
185.17.115.0/24 maxlen: 24
185.17.114.0/24 maxlen: 24
2a05:4640::/29 maxlen: 48
2a04:7c0:1::/48 maxlen: 48
2a04:7c0::/29 maxlen: 48
2a04:7c0::/33 maxlen: 48
2a04:7c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448106729 (0x1ab590e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Jan 1 06:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae976f53fa8c8e06962350d3698102cb5e917278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c8:bf:92:4f:66:75:94:9e:f2:26:63:d5:8f:
44:b4:35:9e:d9:43:ed:93:6a:c3:69:a5:cc:1f:2a:
fd:6b:a4:71:05:dd:ed:78:eb:26:a4:88:a8:1d:d6:
ad:e8:41:14:ce:c4:99:4f:a5:67:72:86:09:00:35:
e9:16:89:d5:21:d4:b1:23:89:bf:10:a1:ab:b7:fb:
ca:1c:e9:45:54:89:9e:c5:a9:2f:16:5d:2c:17:56:
91:d1:b9:e4:fe:48:b0:69:2d:3f:45:e5:a0:3e:a1:
26:76:93:1f:7f:89:44:63:ee:3a:2f:28:ad:e5:4e:
4d:66:e5:d4:ba:79:15:a7:ac:7d:eb:93:36:82:0d:
78:ac:2d:e6:76:05:a2:6b:f8:9e:7d:2e:43:32:68:
80:b8:ee:fb:c9:25:75:56:04:14:0c:84:96:49:45:
f1:3a:c8:54:07:a3:35:b1:17:ab:31:2b:a9:48:fd:
15:d1:89:5a:33:51:f8:38:a8:af:ce:38:5b:e1:d2:
47:03:88:f1:27:31:fe:27:74:68:19:84:61:32:c5:
e8:ba:84:97:81:e6:6b:7e:29:eb:19:9f:29:05:54:
22:79:a0:7a:6a:6a:73:98:fc:de:24:93:ba:2c:42:
28:33:8d:b5:e5:03:a8:54:e7:7a:66:52:f7:d1:7b:
ac:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:97:6F:53:FA:8C:8E:06:96:23:50:D3:69:81:02:CB:5E:91:72:78
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/rpdvU_qMjgaWI1DTaYECy16Rcng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.76.0/24
46.31.78.0/24
185.17.112.0/22
185.73.200.0/22
IPv6:
2a04:7c0::/29
2a05:4640::/29
Signature Algorithm: sha256WithRSAEncryption
16:35:5e:52:bc:13:f3:b7:f7:03:bb:07:ba:e4:7f:f8:b7:0b:
b0:fd:73:c1:6e:ca:3f:42:b1:6d:23:3d:6f:e3:dd:ad:be:b6:
b9:e1:6a:54:d4:14:fc:c3:b8:d0:30:90:b7:ff:3a:15:54:d2:
3e:63:9e:5a:ab:04:b4:a1:0d:39:9f:f0:2a:c5:24:ad:85:12:
fd:a8:a1:1c:93:30:ff:e4:1e:5c:ca:aa:d0:0a:eb:e3:b8:11:
40:ff:59:f5:2d:6a:0d:ae:4e:5b:f0:14:45:8e:ac:dd:61:66:
92:26:bc:b3:79:98:a1:46:6a:20:40:a5:8d:60:61:d2:d2:84:
01:e6:38:61:00:55:d6:c9:3e:de:91:80:ac:f2:eb:c1:cb:c1:
72:ea:42:4d:77:12:9b:d6:9c:3e:b6:69:b5:4d:eb:13:e0:72:
04:b9:11:58:e1:b1:62:a0:6e:7a:e2:14:ab:ae:f6:ce:0c:e7:
7c:7b:05:47:72:7a:d2:2b:a8:f0:f3:1a:bc:84:c5:01:5a:44:
2f:8f:85:fa:40:6a:9f:26:13:42:df:b0:9f:91:cf:7e:31:57:
f6:c6:11:b1:ab:b7:2d:aa:83:06:c5:4c:48:90:cb:55:94:10:
2c:da:81:ea:59:07:6a:d7:9f:5e:08:0d:04:ba:e8:05:7b:05:
88:df:c7:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org