Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/8f1b46-a4b1-4ff2-bbec-1d709a5c616b/1/cT0QSyfw_Ie2xcvuBxwQc0W1Ba8.roa
File: cT0QSyfw_Ie2xcvuBxwQc0W1Ba8.roa (raw, json)
Hash identifier: i4or/hUfswiL7SiLKFjaz+wev1v2Cwga5770DfG2OPk=
Subject key identifier: 71:3D:10:4B:27:F0:FC:87:B6:C5:CB:EE:07:1C:10:73:45:B5:05:AF
Certificate issuer: /CN=a7bdab2580abb3bf628b5d4f89d497cd9d92a4e3
Certificate serial: 358304E1
Authority key identifier: A7:BD:AB:25:80:AB:B3:BF:62:8B:5D:4F:89:D4:97:CD:9D:92:A4:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p72rJYCrs79ii11PidSXzZ2SpOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/8f1b46-a4b1-4ff2-bbec-1d709a5c616b/1/cT0QSyfw_Ie2xcvuBxwQc0W1Ba8.roa
Signing time: Sat 01 Jan 2022 14:08:46 +0000
ROA not before: Sat 01 Jan 2022 14:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6856
IP address blocks: 195.98.80.0/20 maxlen: 20
92.244.224.0/19 maxlen: 19
94.141.32.0/19 maxlen: 19
46.164.192.0/18 maxlen: 18
83.139.128.0/18 maxlen: 18
195.98.64.0/20 maxlen: 20
217.25.224.0/20 maxlen: 20
2a00:1af8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897778913 (0x358304e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7bdab2580abb3bf628b5d4f89d497cd9d92a4e3
Validity
Not Before: Jan 1 14:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=713d104b27f0fc87b6c5cbee071c107345b505af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b6:ea:77:ae:ee:c5:66:49:fa:2c:43:7f:5b:
8c:8a:d0:1c:98:73:d4:1b:1e:38:a1:85:40:f9:8c:
65:d2:d9:cf:39:af:95:48:95:4d:3d:78:97:08:50:
41:d8:c5:38:e7:70:16:03:61:d7:d3:1a:12:ef:38:
a5:1d:e9:2f:df:02:5f:21:f8:6c:89:81:0e:81:ee:
99:12:58:e4:02:4b:1e:44:a6:20:c6:84:0e:4c:45:
a7:ac:ad:ef:9b:06:dd:f9:00:53:ef:b1:17:79:d8:
1f:e8:62:be:b9:b1:2f:93:ea:1e:53:d1:a0:8c:47:
c9:57:77:20:c9:44:13:53:4e:d9:c8:bb:97:7f:29:
fc:af:c8:fa:b9:14:d5:41:7e:a5:5b:1b:ac:da:86:
f6:d0:1f:14:36:e3:dc:b4:49:01:83:5b:b4:28:71:
6f:d8:84:9c:f2:b4:71:7e:83:2d:a7:8c:82:a9:bc:
e2:ff:fa:88:91:51:ef:30:64:52:76:65:79:bd:b3:
d2:22:af:9a:be:34:9a:b3:88:3a:45:78:77:84:1c:
e3:93:89:8f:9a:81:97:dd:bf:d4:19:40:94:0b:49:
c3:b5:16:1e:9a:05:c6:ea:81:28:ac:dc:99:8e:a5:
7a:18:2e:2b:4f:8d:31:cb:8d:64:68:fe:d2:39:68:
ab:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3D:10:4B:27:F0:FC:87:B6:C5:CB:EE:07:1C:10:73:45:B5:05:AF
X509v3 Authority Key Identifier:
keyid:A7:BD:AB:25:80:AB:B3:BF:62:8B:5D:4F:89:D4:97:CD:9D:92:A4:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p72rJYCrs79ii11PidSXzZ2SpOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/8f1b46-a4b1-4ff2-bbec-1d709a5c616b/1/cT0QSyfw_Ie2xcvuBxwQc0W1Ba8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/8f1b46-a4b1-4ff2-bbec-1d709a5c616b/1/p72rJYCrs79ii11PidSXzZ2SpOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.164.192.0/18
83.139.128.0/18
92.244.224.0/19
94.141.32.0/19
195.98.64.0/19
217.25.224.0/20
IPv6:
2a00:1af8::/32
Signature Algorithm: sha256WithRSAEncryption
52:a7:4d:d0:c1:ec:67:2a:5d:37:a5:25:55:58:a0:64:f1:e1:
df:ca:f8:4a:5c:6b:34:85:bc:df:3c:65:b3:19:75:19:50:eb:
2f:eb:19:59:a7:5d:34:cb:40:67:e5:c8:c6:7c:91:03:61:b2:
e9:35:1e:b8:da:f0:5b:84:e8:81:37:75:92:c6:09:8d:68:3c:
08:56:67:c8:6f:26:15:a0:bd:b0:52:7e:c4:bc:4a:3f:c8:ed:
09:d5:d9:9a:0f:b7:43:71:ae:10:56:a3:37:24:48:46:6a:94:
6c:37:74:c7:30:0b:55:f9:31:27:0d:ac:05:c7:66:f6:e1:77:
13:37:a5:2b:25:0d:00:61:94:b8:85:bb:8f:0d:46:d2:76:8e:
8c:e8:d0:b2:ed:9c:d2:25:dd:7b:e5:00:0c:fb:9b:46:30:92:
68:c7:a1:e5:66:65:52:71:c4:03:65:b4:e5:58:38:82:a4:21:
fd:98:5f:fe:3f:6a:12:f5:19:55:ed:ff:4c:20:49:9d:bc:a9:
fd:95:05:8a:44:02:a6:df:67:44:fa:5a:d9:57:c0:6b:90:28:
d9:b6:bb:5c:00:84:32:d4:21:38:db:f4:4e:17:90:b9:3c:a1:
b1:20:24:a1:6f:63:8a:0d:8d:10:16:2a:d1:3c:98:80:87:c5:
db:a9:d6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:32 2024 by rpki-client on console-ams.rpki-client.org