Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/c72b67-76ec-4afa-b376-f9ad38051220/1/hBlD86cnrROOfyqaA349TBSV494.roa
File: hBlD86cnrROOfyqaA349TBSV494.roa (raw, json)
Hash identifier: Do+EBX8o4OzzupgRZbW5DxwoyTf6ftavqyjphqMsMKY=
Subject key identifier: 84:19:43:F3:A7:27:AD:13:8E:7F:2A:9A:03:7E:3D:4C:14:95:E3:DE
Certificate issuer: /CN=3be2f0164b66a76795860b4ea3586fad563bac47
Certificate serial: 0D6B8528
Authority key identifier: 3B:E2:F0:16:4B:66:A7:67:95:86:0B:4E:A3:58:6F:AD:56:3B:AC:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-LwFktmp2eVhgtOo1hvrVY7rEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/c72b67-76ec-4afa-b376-f9ad38051220/1/hBlD86cnrROOfyqaA349TBSV494.roa
Signing time: Sat 01 Jan 2022 09:54:13 +0000
ROA not before: Sat 01 Jan 2022 09:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206264
IP address blocks: 5.183.209.0/24 maxlen: 24
185.191.125.0/24 maxlen: 24
185.191.124.0/24 maxlen: 24
89.249.49.0/24 maxlen: 24
185.191.126.0/24 maxlen: 24
185.191.127.0/24 maxlen: 24
2a0d:1000::/30 maxlen: 30
2a0d:1000::/29 maxlen: 29
2a0d:1004::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225150248 (0xd6b8528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3be2f0164b66a76795860b4ea3586fad563bac47
Validity
Not Before: Jan 1 09:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=841943f3a727ad138e7f2a9a037e3d4c1495e3de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e7:b8:02:04:33:6a:b1:93:3d:a4:2a:e4:12:
51:d4:a0:c4:0a:08:aa:ec:b3:95:5a:54:02:54:5d:
e1:36:cb:c9:84:c5:7a:73:e3:2d:08:cc:86:e6:01:
2a:d1:61:59:f3:cc:eb:65:42:41:4e:7a:26:7f:da:
f0:05:02:14:c1:e7:64:74:d3:42:4f:44:9e:65:d2:
f5:88:6d:c1:1a:55:cf:09:cf:87:39:7f:ca:7c:c5:
24:e5:ab:04:7f:37:78:6d:86:ff:21:db:7c:7f:a2:
8b:bb:08:86:be:1d:94:bc:7b:49:b0:2d:16:2e:78:
32:7f:c3:25:40:05:91:e3:06:6e:b2:dc:e0:bd:a4:
ad:dc:b5:1e:1c:a3:2e:3d:80:31:46:d6:92:35:e1:
b3:09:ae:cf:4b:36:57:32:8a:8d:b0:05:2f:8a:ff:
83:c8:cc:3b:77:1c:9b:49:95:7a:e9:39:46:e2:eb:
a6:9c:dc:38:8e:04:e7:6e:5e:62:67:8b:d6:b6:34:
fa:2b:62:66:d5:00:ea:a9:26:f9:72:75:94:5f:75:
f2:6a:29:53:3f:54:59:d2:66:0b:b6:5d:18:ff:0a:
c8:4a:12:d5:c5:7b:28:c6:71:50:99:98:c1:cd:9c:
70:90:7b:89:fa:7f:78:5d:25:c0:0d:91:67:4e:18:
2a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:19:43:F3:A7:27:AD:13:8E:7F:2A:9A:03:7E:3D:4C:14:95:E3:DE
X509v3 Authority Key Identifier:
keyid:3B:E2:F0:16:4B:66:A7:67:95:86:0B:4E:A3:58:6F:AD:56:3B:AC:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-LwFktmp2eVhgtOo1hvrVY7rEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c72b67-76ec-4afa-b376-f9ad38051220/1/hBlD86cnrROOfyqaA349TBSV494.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c72b67-76ec-4afa-b376-f9ad38051220/1/O-LwFktmp2eVhgtOo1hvrVY7rEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.209.0/24
89.249.49.0/24
185.191.124.0/22
IPv6:
2a0d:1000::/29
Signature Algorithm: sha256WithRSAEncryption
ac:06:5e:b4:3d:61:89:83:ce:82:44:a9:5e:8e:23:9e:b5:c8:
eb:c4:e4:32:a5:12:65:67:4a:dd:e8:9a:62:28:52:0a:c5:76:
0c:d6:fd:21:32:ba:2f:d4:81:59:8f:51:bb:f2:1e:5f:84:91:
ad:c9:22:c0:8c:33:06:2b:2e:64:8a:ab:f4:c4:8c:da:1b:a6:
8f:6c:d6:69:07:31:ad:18:a5:58:7a:6f:28:0a:29:30:a1:e0:
7b:b1:7b:b1:ae:1f:44:ff:a6:39:ad:53:02:95:15:96:43:1d:
26:65:68:58:0e:1d:72:a2:98:60:cb:b4:a0:b7:a8:ef:e6:38:
67:46:8f:6d:ea:2a:da:24:84:3a:09:e1:0f:d3:ed:f9:fd:38:
70:22:9b:e0:e2:27:70:b5:50:5d:58:17:54:08:fb:53:eb:51:
97:a4:d4:67:1c:c5:9f:9b:32:32:c2:43:50:e7:ce:c2:bc:66:
88:57:15:a7:0b:c6:18:bc:ae:93:22:fe:4b:68:ce:3b:84:8c:
4a:0b:31:32:b2:2c:57:b2:c8:5d:c8:75:89:49:bb:ac:7e:2a:
6b:96:51:49:ed:5c:9b:20:e8:5d:47:42:92:e7:10:bc:8a:e4:
70:5c:4e:41:0c:4d:0b:13:c5:cd:ab:c2:11:7a:da:d5:e6:68:
df:97:90:57
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:52 2024 by rpki-client on console-ams.rpki-client.org