Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/1-jPxYuNpyvRhmdki3vyZMSw_Hf4.roa
File: 1-jPxYuNpyvRhmdki3vyZMSw_Hf4.roa (raw, json)
Hash identifier: ButXOWBzplx83wsBn+QteayMNHxgJ2ltjiW7HnHpjGE=
Subject key identifier: FA:33:F1:62:E3:69:CA:F4:61:99:D9:22:DE:FC:99:31:2C:3F:1D:FE
Certificate issuer: /CN=2dd596c1ea7ecbb1be1777fc0d38ed06ca40eabe
Certificate serial: 02AA099F
Authority key identifier: 2D:D5:96:C1:EA:7E:CB:B1:BE:17:77:FC:0D:38:ED:06:CA:40:EA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdWWwep-y7G-F3f8DTjtBspA6r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/1-jPxYuNpyvRhmdki3vyZMSw_Hf4.roa
Signing time: Tue 07 Jun 2022 07:09:20 +0000
ROA not before: Tue 07 Jun 2022 07:09:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50873
IP address blocks: 37.228.130.0/24 maxlen: 24
94.247.143.0/24 maxlen: 24
194.104.114.0/23 maxlen: 23
185.97.4.0/22 maxlen: 22
185.97.6.0/24 maxlen: 24
2a06:1c0::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44698015 (0x2aa099f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dd596c1ea7ecbb1be1777fc0d38ed06ca40eabe
Validity
Not Before: Jun 7 07:09:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa33f162e369caf46199d922defc99312c3f1dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:93:6b:25:61:6d:2e:f0:33:8c:9b:f4:17:d5:
51:df:5b:c6:e9:19:f7:7c:09:5b:a7:6b:5d:7f:44:
a7:60:13:dd:9d:89:46:f1:b8:88:cc:9c:c6:60:ca:
a5:47:ac:f8:30:c1:0c:99:6f:13:55:b8:ef:2e:97:
06:fb:b1:9d:d1:39:3f:fa:d5:2b:1d:0c:7f:9d:cd:
a0:f2:0a:5a:76:53:06:6e:82:8b:a4:12:d7:83:73:
8d:05:3c:f4:b5:2f:21:6e:15:d4:36:b8:44:2e:fc:
fb:81:7f:0a:ac:a5:29:93:b8:ce:ed:24:48:05:9c:
f2:88:e2:ca:d6:84:a9:ca:48:ca:d1:e1:37:b9:c7:
a4:08:2e:2c:06:cb:2e:ff:03:c8:6c:2e:a5:4f:0c:
a9:0f:02:b3:19:78:8f:48:78:83:74:ce:f5:e0:38:
7d:87:55:cf:ff:39:3a:84:26:fa:3d:12:74:86:de:
ca:3e:c8:1a:7b:da:58:71:b7:26:09:27:30:ad:04:
57:2d:78:08:85:fa:04:f0:4d:bd:8a:ae:69:af:28:
fa:9f:63:d5:51:eb:9d:87:46:e2:df:81:d9:6c:0c:
12:1f:3f:5c:b1:06:bc:6b:4f:ea:c2:b0:01:79:89:
0a:80:e1:ba:4f:cf:4f:72:d1:64:d4:b6:b2:a0:c3:
d6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:33:F1:62:E3:69:CA:F4:61:99:D9:22:DE:FC:99:31:2C:3F:1D:FE
X509v3 Authority Key Identifier:
keyid:2D:D5:96:C1:EA:7E:CB:B1:BE:17:77:FC:0D:38:ED:06:CA:40:EA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdWWwep-y7G-F3f8DTjtBspA6r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/1-jPxYuNpyvRhmdki3vyZMSw_Hf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/LdWWwep-y7G-F3f8DTjtBspA6r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.130.0/24
94.247.143.0/24
185.97.4.0/22
194.104.114.0/23
IPv6:
2a06:1c0::/30
Signature Algorithm: sha256WithRSAEncryption
b0:de:e6:bd:9f:4c:83:b6:c0:86:eb:08:27:99:04:b6:80:4c:
bf:cd:f2:44:bc:cb:77:bf:18:07:a4:92:17:74:04:58:97:a5:
e6:c7:aa:cf:a2:7e:15:84:0a:60:ca:a8:cc:f9:52:a3:32:0f:
98:0a:2b:75:f7:a6:11:90:67:d0:3a:9d:1b:94:30:e4:17:2e:
c2:a8:cd:bf:bd:08:88:5d:33:86:99:d0:be:c3:ca:b5:60:94:
24:e2:a0:d0:34:4a:89:9f:81:98:45:68:db:fa:77:2b:2c:9c:
d7:de:07:c4:57:14:aa:65:76:29:ee:8b:f6:b9:f9:8b:92:90:
f9:8f:7e:ab:b5:9e:c0:1e:d5:58:26:aa:a6:4f:80:0d:7b:13:
54:96:84:3f:0a:b5:91:f2:41:fb:12:90:ca:12:c6:f5:9c:75:
8a:46:50:1c:54:ae:8a:aa:47:e2:3e:60:50:9f:c9:0a:f8:88:
c4:54:c4:d9:e3:9a:66:ff:38:46:4c:75:ed:6b:3e:1e:67:38:
cd:e4:7e:cf:2a:23:c8:fd:30:b0:e8:13:80:f2:c0:db:29:6a:
6e:c3:70:05:8a:8c:8f:2d:b9:14:ed:b3:10:cb:7d:b1:b0:8d:
27:c4:9c:25:fb:a0:21:80:f2:b1:fe:c1:13:2e:46:f1:7c:fe:
24:80:10:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:39 2024 by rpki-client on console-fra.rpki-client.org