Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/2Fj22EEg2IsuSciWCHGl6B8MgkY.roa
File: 2Fj22EEg2IsuSciWCHGl6B8MgkY.roa (raw, json)
Hash identifier: l1ggoa4jj/r23/2O0ro6j9OwbelH+vUdTIqlv2DGDjM=
Subject key identifier: D8:58:F6:D8:41:20:D8:8B:2E:49:C8:96:08:71:A5:E8:1F:0C:82:46
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0183D6658E96741DC57478594FF33356914A
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/2Fj22EEg2IsuSciWCHGl6B8MgkY.roa
Signing time: Fri 14 Oct 2022 12:08:43 +0000
ROA not before: Fri 14 Oct 2022 12:08:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 91.225.15.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
188.74.245.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d6:65:8e:96:74:1d:c5:74:78:59:4f:f3:33:56:91:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Oct 14 12:08:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d858f6d84120d88b2e49c8960871a5e81f0c8246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bf:86:bf:f8:d8:73:6f:ea:cf:5d:73:3a:4e:
d2:72:86:1c:f1:0a:c6:9c:7a:07:8e:74:66:38:b8:
e1:e7:73:c4:78:84:49:84:9a:b0:e5:29:be:21:f3:
9e:67:1a:58:34:31:ac:4e:70:3f:c4:9c:48:1e:3a:
38:83:67:7d:c1:02:83:85:f7:f7:27:3d:f3:76:8f:
e9:01:b1:4c:e3:25:83:84:84:ef:9d:d7:9e:90:e2:
9b:33:14:49:9f:e6:20:d8:a8:c1:8d:0b:3b:01:cc:
52:8d:69:b9:39:8a:98:b9:fb:6f:4e:ec:d8:a3:67:
60:0d:8b:de:8c:47:0f:40:62:bd:87:21:e8:78:3a:
37:39:3d:a9:68:85:fb:8e:1c:f3:05:41:b3:06:1a:
ac:52:d6:7f:fa:01:f6:da:f8:6f:e8:30:a6:f5:d6:
0d:eb:67:68:b0:5f:bd:8d:74:58:7b:43:a5:32:d6:
1d:de:5f:c3:db:31:92:85:f7:39:79:6d:81:29:83:
ca:2f:08:b3:b8:8e:12:f9:61:2d:dd:78:dd:c0:0a:
1c:1f:b2:4c:6e:d5:db:41:d9:23:8f:40:db:4c:6d:
c9:a9:ea:f7:30:08:6b:c9:37:6d:0b:e2:44:3d:73:
e6:49:08:92:26:02:be:e7:da:10:bd:8c:29:b2:84:
95:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:58:F6:D8:41:20:D8:8B:2E:49:C8:96:08:71:A5:E8:1F:0C:82:46
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/2Fj22EEg2IsuSciWCHGl6B8MgkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.36.0/23
37.35.39.0/24
91.225.15.0/24
146.66.208.0/23
178.157.94.0/24
178.157.124.0/24
178.157.126.0/24
188.74.152.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:cb:fc:1c:c9:54:ca:6a:44:83:5e:54:4b:f2:a6:5a:5c:8f:
42:cf:8a:e5:16:4b:68:ab:ad:4f:41:1c:62:8f:f1:b0:44:61:
6b:75:b4:6f:83:f2:33:bf:7a:21:24:17:d5:af:74:b2:fa:ca:
64:e3:2e:e6:ac:32:3c:37:f5:9b:84:b5:5c:00:7a:5f:ab:09:
7d:0c:e4:e0:92:08:c6:4a:2f:29:b7:72:e1:00:fd:7e:2d:75:
4e:11:26:40:28:1b:b9:01:a9:d8:62:c7:88:2b:1c:e3:0e:2c:
17:37:d5:1d:02:c1:7a:b8:cf:36:b7:67:ce:f6:a6:09:4e:0c:
53:e8:29:d7:f1:14:f8:14:8f:24:fb:9e:1d:25:f9:b4:c1:36:
1b:8b:1a:b4:ec:51:78:5e:0f:9a:61:cf:15:c3:19:58:a1:95:
3e:76:81:01:37:76:cd:10:86:ca:c0:5b:fb:b7:ad:8e:c5:89:
9c:36:4e:16:db:66:c6:4f:d3:4c:29:db:16:3a:03:79:85:c5:
88:c6:0d:fa:21:ad:df:33:88:26:78:69:dd:20:c6:02:ca:41:
dd:27:b2:d2:36:d4:59:4d:cd:e1:72:a8:f4:03:1b:3b:75:92:
3a:f7:2e:95:b8:56:f1:8a:1b:70:b1:1b:be:27:03:05:97:a9:
2a:55:e1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org