Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/CliqmMA8FYfCmWYKvHYvvN1dhs4.roa
File: CliqmMA8FYfCmWYKvHYvvN1dhs4.roa (raw, json)
Hash identifier: +bke+hJtLjHZFYV7mRxIu21orONJoMz9sNls/6VsVWo=
Subject key identifier: 0A:58:AA:98:C0:3C:15:87:C2:99:66:0A:BC:76:2F:BC:DD:5D:86:CE
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 1077A7C1
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/CliqmMA8FYfCmWYKvHYvvN1dhs4.roa
Signing time: Thu 07 Apr 2022 11:14:14 +0000
ROA not before: Thu 07 Apr 2022 11:14:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49199
IP address blocks: 194.226.137.0/24 maxlen: 24
195.208.220.0/23 maxlen: 24
194.226.34.0/23 maxlen: 24
195.19.10.0/23 maxlen: 24
62.76.74.0/23 maxlen: 24
62.76.96.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276277185 (0x1077a7c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Apr 7 11:14:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a58aa98c03c1587c299660abc762fbcdd5d86ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:54:2a:1f:12:22:fc:f5:49:e8:bb:59:07:e8:
d5:c5:11:0f:ce:d5:64:e3:22:e1:15:b6:a5:f0:a0:
12:5d:b4:07:5a:e0:5a:5c:2f:4a:5c:45:36:87:ad:
97:16:48:2a:b3:a2:b1:df:ad:06:56:9b:24:d5:ad:
82:2a:10:6c:e3:44:36:f3:64:d1:d8:4f:40:37:95:
60:39:4f:22:85:b6:2c:ba:07:fb:aa:83:7a:61:25:
a0:11:e8:70:57:6f:48:c5:48:1f:e8:1f:d8:aa:8b:
9d:e6:f2:aa:f8:16:5a:81:13:35:48:48:be:5e:a8:
70:7a:fb:ad:10:72:a9:eb:05:2a:5b:72:59:dc:3e:
d9:96:03:4f:81:9f:c5:db:56:96:fc:52:24:b6:a8:
06:96:38:f3:c4:17:4d:6f:3b:a6:71:15:62:05:66:
33:1f:43:08:53:f3:2c:c8:4b:d3:d2:1f:c5:ec:df:
4e:d6:fa:db:06:1c:ec:44:a8:f9:56:7a:4d:5a:10:
c3:6c:ea:d5:15:d9:55:aa:44:e5:fc:3f:c2:ff:b1:
bc:cf:17:31:3d:49:2f:f7:6b:c5:47:a0:4a:ab:4a:
67:75:bf:b6:fc:8f:9a:45:00:28:87:d0:99:4d:a4:
cb:b8:a4:43:e4:78:d7:1e:e3:b2:0d:72:64:73:09:
c9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:58:AA:98:C0:3C:15:87:C2:99:66:0A:BC:76:2F:BC:DD:5D:86:CE
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/CliqmMA8FYfCmWYKvHYvvN1dhs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.74.0/23
62.76.96.0/23
194.226.34.0/23
194.226.137.0/24
195.19.10.0/23
195.208.220.0/23
Signature Algorithm: sha256WithRSAEncryption
be:95:7f:68:2a:e6:80:b9:16:fd:df:85:a1:28:92:32:bc:4d:
ca:7e:6b:77:41:bd:e8:3d:cf:9a:67:b4:43:ea:2d:4e:3e:69:
36:fe:ae:b3:16:af:f1:b5:0c:72:86:3d:b4:5a:a9:de:53:77:
e8:39:75:d0:14:78:32:65:a1:ab:88:a7:73:71:a2:0d:f1:d9:
b5:2d:eb:e1:3a:22:61:7a:62:96:16:11:29:60:f3:46:14:f5:
13:75:65:1e:8c:73:82:f8:1e:73:7f:2e:4e:55:2d:0f:01:48:
13:f6:51:5d:f3:8a:be:ba:15:5b:50:b2:62:f3:c4:c5:f9:92:
4b:30:74:ee:82:36:76:c3:99:a4:bf:29:8e:26:fe:6a:c5:ed:
75:57:18:04:0e:7e:9e:d2:4d:6e:ce:d5:93:45:0e:5b:79:51:
4d:c0:49:bc:e3:1f:92:e8:49:ca:36:87:ca:60:df:59:92:e0:
cd:a2:66:68:b5:06:97:1d:93:bc:92:a4:50:51:77:72:b4:84:
f4:e3:9c:34:0f:e6:f7:63:15:59:4d:7f:07:cc:42:57:69:6a:
d8:c1:0e:3c:8a:d7:97:83:fc:e3:3b:3f:bf:dd:46:7a:e2:99:
05:66:8f:55:b4:f3:03:fe:06:f6:17:b3:6c:c6:5f:57:c6:d1:
34:9a:f3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org