Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/A4Kmiv3lquQ4bUhE3TmQBcGGBXo.roa
File: A4Kmiv3lquQ4bUhE3TmQBcGGBXo.roa (raw, json)
Hash identifier: f+W8H7Y4IUmUOtEFGpX8feMjoSstNGslLW7JY9YZNKc=
Subject key identifier: 03:82:A6:8A:FD:E5:AA:E4:38:6D:48:44:DD:39:90:05:C1:86:05:7A
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 0813748F
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/A4Kmiv3lquQ4bUhE3TmQBcGGBXo.roa
Signing time: Sat 01 Jan 2022 06:57:50 +0000
ROA not before: Sat 01 Jan 2022 06:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209604
IP address blocks: 185.255.92.0/24 maxlen: 24
185.255.93.0/24 maxlen: 24
185.255.94.0/24 maxlen: 24
185.255.95.0/24 maxlen: 24
185.132.126.0/24 maxlen: 24
185.93.70.0/24 maxlen: 24
193.164.4.0/24 maxlen: 24
185.93.71.0/24 maxlen: 24
185.93.68.0/24 maxlen: 24
185.93.69.0/24 maxlen: 24
193.164.6.0/24 maxlen: 24
193.164.5.0/24 maxlen: 24
89.35.52.0/24 maxlen: 24
93.115.10.0/24 maxlen: 24
93.177.101.0/24 maxlen: 24
93.177.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135492751 (0x813748f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Jan 1 06:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0382a68afde5aae4386d4844dd399005c186057a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:25:51:54:3b:1b:13:62:99:0e:b5:f3:da:0d:
31:a9:c1:12:1e:b7:7e:20:05:dd:b2:a3:8b:63:40:
8e:3e:9e:03:fe:c6:16:64:e6:a8:bf:9b:4c:9a:41:
05:fd:24:57:04:3f:68:4d:48:83:a7:ce:02:07:f6:
fe:8b:96:67:b2:b7:cb:c4:b4:1f:fd:d0:73:e0:00:
62:fb:42:18:70:90:65:d9:98:32:5a:62:b2:5a:db:
8a:58:94:27:c1:64:df:be:25:4b:da:ee:6d:0d:4a:
d7:89:02:19:99:f0:c4:c8:fd:9f:95:37:0d:43:76:
49:f0:13:61:c3:8c:88:20:d1:82:1f:da:83:e2:e9:
02:08:54:a4:15:32:2b:3b:24:ec:01:02:c0:9d:40:
72:9a:5c:7c:a8:e0:d9:20:34:aa:10:f5:9a:a1:c0:
88:5b:5f:ab:19:71:fe:d7:81:d0:b9:2d:e5:8c:fe:
e9:82:d6:53:a5:0f:c5:e1:87:74:15:96:76:26:e1:
46:c5:22:08:89:d9:0a:7f:f0:9e:45:9a:63:89:da:
c5:9b:fa:60:8f:04:0d:bd:fc:9e:7d:8b:c3:6c:fe:
c3:84:32:11:b7:77:ee:f0:50:90:8c:af:d8:49:46:
ff:1f:b8:9b:96:57:80:4a:e2:c5:41:58:8d:0b:2c:
04:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:82:A6:8A:FD:E5:AA:E4:38:6D:48:44:DD:39:90:05:C1:86:05:7A
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/A4Kmiv3lquQ4bUhE3TmQBcGGBXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
93.115.10.0/24
93.177.101.0-93.177.102.255
185.93.68.0/22
185.132.126.0/24
185.255.92.0/22
193.164.4.0-193.164.6.255
Signature Algorithm: sha256WithRSAEncryption
8a:21:da:4a:39:0f:39:dc:28:51:f9:bf:03:04:28:ba:b7:10:
1d:5d:74:f7:2c:d7:81:23:84:f7:00:89:ae:e8:76:e8:c9:a9:
97:22:09:ed:56:55:7b:41:70:b9:52:86:b9:b3:c7:e8:96:59:
ae:6e:72:1b:a9:88:be:d3:54:0d:54:5c:ca:8e:0f:3f:3c:00:
52:a7:32:b6:f3:d8:65:66:49:2b:69:dd:35:83:aa:77:b9:69:
6b:5e:ba:b4:c5:f8:76:e8:73:b4:7b:17:92:fc:23:91:ae:c4:
9a:8c:df:c9:d2:82:da:ad:63:63:e4:3b:8a:b9:3e:0e:f9:92:
69:c2:55:39:9a:8d:96:58:28:a0:e3:0a:c7:fb:72:d9:cc:58:
ec:75:8c:7a:18:aa:88:e6:86:49:75:74:1a:be:27:81:94:89:
ab:c4:a3:09:82:6c:85:7a:02:bd:14:ea:11:e4:ec:65:cb:24:
f0:bb:3a:ef:86:cc:4d:ab:e9:7a:f1:7b:35:3d:85:aa:2d:f6:
12:8a:a8:dc:9e:38:2d:be:55:e5:8d:d4:ea:d8:0b:f3:50:e8:
c9:aa:cd:e4:32:43:d0:34:0e:f4:11:e3:e0:6c:2f:6b:d5:47:
e4:40:a9:51:85:b7:0f:2c:fd:fd:f1:b7:0c:4e:e2:36:3d:13:
30:9d:64:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:32 2024 by rpki-client on console-fra.rpki-client.org