Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/e732f4-be84-429b-a18e-1518a733f970/1/Te7nOjIw97ROW1uXV_kSmoOMdJ8.roa
File: Te7nOjIw97ROW1uXV_kSmoOMdJ8.roa (raw, json)
Hash identifier: c02rpGlyIHB7pzSgsG8bYdIC8HxAh7toeqsmCGFl2oQ=
Subject key identifier: 4D:EE:E7:3A:32:30:F7:B4:4E:5B:5B:97:57:F9:12:9A:83:8C:74:9F
Certificate issuer: /CN=d8672105752b982174d1040c103817570b8d34d6
Certificate serial: 04B635AA
Authority key identifier: D8:67:21:05:75:2B:98:21:74:D1:04:0C:10:38:17:57:0B:8D:34:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GchBXUrmCF00QQMEDgXVwuNNNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/e732f4-be84-429b-a18e-1518a733f970/1/Te7nOjIw97ROW1uXV_kSmoOMdJ8.roa
Signing time: Sat 01 Jan 2022 05:03:52 +0000
ROA not before: Sat 01 Jan 2022 05:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50489
IP address blocks: 185.35.68.0/22 maxlen: 24
192.153.60.0/22 maxlen: 24
91.240.47.0/24 maxlen: 24
2a0c:c640::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79050154 (0x4b635aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8672105752b982174d1040c103817570b8d34d6
Validity
Not Before: Jan 1 05:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4deee73a3230f7b44e5b5b9757f9129a838c749f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:18:a3:8c:74:27:1f:fb:fa:f1:a9:cc:d2:9c:
f8:48:71:9c:c3:02:6d:a1:9d:f4:d5:24:b3:f4:ea:
f2:1e:f6:5e:20:b2:b5:70:82:84:78:36:e6:81:dd:
92:7e:9a:7c:c4:f4:85:66:1e:16:2a:9c:91:2c:cb:
d5:73:1e:fb:d5:89:c4:0a:ef:c9:f2:39:68:cf:46:
e5:ae:64:a1:26:58:ec:fe:59:bc:a9:d9:5c:14:b6:
28:46:22:74:7a:a5:e5:fd:6b:02:fa:48:49:e2:d2:
a2:a4:39:2b:62:c5:9b:a3:5e:01:8d:56:b5:d8:74:
80:aa:f1:45:cf:e3:17:71:ee:bc:b4:70:bb:4f:2e:
96:df:c0:2f:d6:ac:60:d0:b3:ae:1f:2c:6b:0b:ab:
bd:5b:a3:3a:3e:5e:61:52:e1:3a:20:00:f1:da:9b:
98:14:04:95:96:bb:5b:d3:22:13:1c:cc:38:33:01:
b5:1f:41:77:c7:33:f2:95:02:54:d7:16:41:ea:05:
45:b9:b8:17:9a:a5:ee:2b:04:c5:06:77:0e:7f:9d:
a3:d8:e0:aa:c1:e6:40:c1:d4:0f:5f:58:22:7b:04:
1b:d7:43:ec:b5:ee:d2:0b:0e:da:bf:fd:b3:3c:b2:
bd:14:ce:72:26:3a:7c:1c:70:c3:7e:93:60:8d:f6:
ab:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:EE:E7:3A:32:30:F7:B4:4E:5B:5B:97:57:F9:12:9A:83:8C:74:9F
X509v3 Authority Key Identifier:
keyid:D8:67:21:05:75:2B:98:21:74:D1:04:0C:10:38:17:57:0B:8D:34:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GchBXUrmCF00QQMEDgXVwuNNNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e732f4-be84-429b-a18e-1518a733f970/1/Te7nOjIw97ROW1uXV_kSmoOMdJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e732f4-be84-429b-a18e-1518a733f970/1/2GchBXUrmCF00QQMEDgXVwuNNNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.47.0/24
185.35.68.0/22
192.153.60.0/22
IPv6:
2a0c:c640::/29
Signature Algorithm: sha256WithRSAEncryption
42:f8:2c:b1:bb:a4:69:94:55:c4:c7:3c:c9:f0:2a:29:f2:4d:
ae:aa:ff:9a:ea:1b:f6:51:57:9a:cb:69:25:47:c1:bd:ef:f8:
6e:88:08:60:dc:d3:00:8c:38:90:8f:77:18:6e:fe:d4:c2:de:
12:65:15:2a:57:ae:b6:11:e8:16:b6:29:fa:01:f9:f2:80:e2:
94:6d:eb:ee:6a:9e:4b:41:78:f6:d5:65:28:82:53:e3:24:22:
e6:65:e7:34:19:00:83:94:2f:da:05:56:3d:94:b6:8e:02:71:
20:85:45:aa:52:9a:81:0b:68:c1:1a:a4:e4:43:29:30:4e:14:
6f:c6:51:8c:48:06:47:93:2e:ff:7b:ab:54:eb:6e:71:2a:39:
98:bb:2a:84:2d:07:1f:8c:0a:49:18:61:f9:ad:20:09:49:d1:
a1:c8:9f:17:c7:ed:43:02:da:ee:40:cf:1e:9f:2c:c7:08:32:
75:12:54:c2:63:8d:78:70:66:f6:70:f5:bc:28:f7:5e:8e:bb:
f9:42:e3:e3:8c:55:70:b5:28:74:a4:be:60:22:cf:c4:54:e7:
72:e5:da:54:66:41:18:84:10:45:8a:7b:4e:a9:5a:2f:ec:7b:
4e:86:2d:c8:22:fb:7b:f9:23:04:73:13:2d:32:47:2c:d7:bf:
3b:25:9f:bc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-ams.rpki-client.org