Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/_pBlPHvTCwe9IDoaKASsXA8fHfk.roa
File: _pBlPHvTCwe9IDoaKASsXA8fHfk.roa (raw, json)
Hash identifier: vbyW9n2fJMn8bBaUuad5IJHNhZXg4bvrhn1eAg8Uetc=
Subject key identifier: FE:90:65:3C:7B:D3:0B:07:BD:20:3A:1A:28:04:AC:5C:0F:1F:1D:F9
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 09096219
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/_pBlPHvTCwe9IDoaKASsXA8fHfk.roa
Signing time: Tue 19 Apr 2022 08:53:56 +0000
ROA not before: Tue 19 Apr 2022 08:53:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212369
IP address blocks: 185.255.93.0/24 maxlen: 24
185.255.94.0/24 maxlen: 24
185.255.95.0/24 maxlen: 24
185.132.126.0/24 maxlen: 24
185.93.68.0/24 maxlen: 24
185.93.69.0/24 maxlen: 24
185.93.70.0/24 maxlen: 24
185.93.71.0/24 maxlen: 24
193.164.4.0/24 maxlen: 24
193.164.5.0/24 maxlen: 24
193.164.6.0/24 maxlen: 24
89.35.52.0/24 maxlen: 24
93.115.10.0/24 maxlen: 24
93.177.101.0/24 maxlen: 24
93.177.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151609881 (0x9096219)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Apr 19 08:53:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe90653c7bd30b07bd203a1a2804ac5c0f1f1df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:3d:e8:a4:8a:d1:0d:fe:44:dc:8c:c5:ca:de:
fd:db:93:c6:4f:4a:a1:4b:92:71:10:4c:d7:58:33:
0e:9d:91:74:d8:07:35:60:66:7b:ad:17:7e:e2:09:
b8:fb:c8:13:8d:29:20:7e:70:b8:f4:cd:42:5b:e1:
de:27:60:01:31:2a:65:fa:7f:be:35:da:29:2f:78:
3a:b5:22:7b:38:da:da:fe:d0:bf:26:67:25:32:7c:
31:09:ad:3c:47:c7:fa:03:b7:94:e1:26:4e:c1:ee:
fb:3f:c8:b0:37:d3:f3:6c:83:17:0d:0b:92:8f:8a:
54:8c:e7:4f:40:3d:fb:ad:f4:cc:1e:10:24:1c:ea:
98:8e:77:d6:5f:83:fc:75:f0:61:f9:ff:f8:6a:f9:
d3:25:c1:25:7f:00:88:76:b8:1d:0f:60:46:04:d8:
60:d4:4c:b3:b2:4a:5f:32:aa:c2:50:60:36:10:fe:
a1:34:aa:b1:a7:58:58:79:1d:b5:b5:ac:71:3d:f5:
49:85:c6:f2:0e:7c:99:d8:92:9a:eb:e1:c0:3d:99:
83:2d:44:2b:0b:2c:28:f5:b7:81:97:83:19:ac:af:
99:97:a5:0d:aa:15:79:a8:16:90:c2:65:87:ea:8a:
67:71:90:12:7c:b3:fd:8c:dd:a2:67:ab:99:99:f9:
ba:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:90:65:3C:7B:D3:0B:07:BD:20:3A:1A:28:04:AC:5C:0F:1F:1D:F9
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/_pBlPHvTCwe9IDoaKASsXA8fHfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
93.115.10.0/24
93.177.101.0-93.177.102.255
185.93.68.0/22
185.132.126.0/24
185.255.93.0-185.255.95.255
193.164.4.0-193.164.6.255
Signature Algorithm: sha256WithRSAEncryption
8f:0e:6d:e0:2e:dd:c3:cc:87:d2:d9:10:26:96:c8:3d:21:41:
1d:46:ab:5b:f1:93:94:83:e4:3c:78:89:bf:6a:39:38:54:ef:
fd:af:82:5d:ce:04:86:19:55:8f:3a:f8:93:37:4c:23:47:c1:
91:87:d3:f1:88:a0:3d:93:71:07:92:43:aa:4a:a6:86:cd:a5:
27:d3:3d:92:de:49:d5:7d:e9:77:f5:f4:9f:8b:49:fb:77:90:
33:fc:8f:50:89:dc:d9:f7:1e:5f:de:c0:26:95:88:4c:78:b7:
d8:7b:d1:d4:a0:cb:ed:5a:ac:d0:6c:86:02:e7:2b:8a:d2:48:
6f:2b:2f:64:5e:11:cf:47:77:39:76:d5:d5:b0:69:df:43:25:
31:f1:d4:7b:30:c9:45:b0:6d:51:d0:53:3b:13:d3:5d:ef:d1:
2d:9b:6b:a8:a3:99:9b:a9:f9:f9:b2:86:16:43:2b:fb:ee:bb:
30:65:88:1e:45:60:5a:da:90:4d:1d:82:cf:f3:d5:37:fa:14:
e3:c2:38:5d:d6:57:fd:1c:e2:83:ec:24:fa:27:2b:5d:22:48:
19:bc:01:8b:c1:b6:1f:94:c0:2a:22:ef:1b:11:9b:95:45:40:
32:7e:8a:e6:b6:a6:99:ff:f8:4c:60:1d:e6:ba:3e:3a:bc:eb:
c4:9e:f6:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:32 2024 by rpki-client on console-fra.rpki-client.org