Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/6HWoZv9EkfWJEIVbUdnT2O55OvU.roa
File: 6HWoZv9EkfWJEIVbUdnT2O55OvU.roa (raw, json)
Hash identifier: roiWCEb6mbnBWiMGBylhD3rv4VLyrffDANz79p0Bp1A=
Subject key identifier: E8:75:A8:66:FF:44:91:F5:89:10:85:5B:51:D9:D3:D8:EE:79:3A:F5
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 08829B48
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/6HWoZv9EkfWJEIVbUdnT2O55OvU.roa
Signing time: Tue 21 Jun 2022 17:28:44 +0000
ROA not before: Tue 21 Jun 2022 17:28:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203120
IP address blocks: 89.37.96.0/24 maxlen: 24
89.33.254.0/24 maxlen: 24
89.36.141.0/24 maxlen: 24
188.172.160.0/19 maxlen: 19
188.209.120.0/23 maxlen: 23
89.34.102.0/24 maxlen: 24
93.115.59.0/24 maxlen: 24
93.119.120.0/23 maxlen: 23
86.106.10.0/24 maxlen: 24
46.102.180.0/24 maxlen: 24
86.105.176.0/24 maxlen: 24
89.37.130.0/23 maxlen: 23
89.41.190.0/23 maxlen: 23
89.37.134.0/24 maxlen: 24
77.81.90.0/23 maxlen: 23
86.105.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142777160 (0x8829b48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jun 21 17:28:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e875a866ff4491f58910855b51d9d3d8ee793af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:49:74:eb:3d:93:18:2b:de:e2:ad:7a:38:cf:
af:34:10:42:e7:11:99:7e:03:94:21:6f:34:84:82:
ac:15:dc:af:c3:52:15:c4:8b:40:78:a0:73:e9:74:
48:1b:7e:2c:a3:23:8f:54:b3:ad:c8:81:b3:64:20:
75:8e:cc:e7:71:90:38:be:2a:02:13:28:8f:d8:68:
f8:cc:57:ea:db:a5:3b:e1:22:a6:5c:16:5a:f1:b9:
1f:0d:db:cf:6d:75:18:29:3c:d4:03:d7:45:ca:02:
00:86:e6:51:a7:da:be:b2:38:9e:ba:bd:87:28:f3:
4a:ae:2a:c6:06:31:01:01:2e:26:0a:54:4f:95:12:
42:50:d4:39:bd:f9:43:dc:59:e3:e5:59:5a:bc:e2:
fd:f7:2b:f2:5d:af:88:47:f2:b6:de:1e:e3:9a:17:
7f:5a:ec:be:12:84:1f:e8:23:58:1b:64:4d:c9:fa:
75:1e:b2:9b:f1:b0:63:69:a6:c0:2c:c9:ef:40:42:
eb:4c:bc:f8:e6:f9:e1:00:3f:fd:c1:26:12:0f:a8:
81:6f:92:21:d4:bb:af:fc:63:67:69:1e:56:3a:1e:
85:42:7e:60:cb:9b:69:13:40:80:1b:14:54:93:db:
4f:e6:69:c6:6f:f1:d8:5d:d4:cc:73:03:90:58:ea:
5a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:75:A8:66:FF:44:91:F5:89:10:85:5B:51:D9:D3:D8:EE:79:3A:F5
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/6HWoZv9EkfWJEIVbUdnT2O55OvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.180.0/24
77.81.90.0/23
86.105.6.0/24
86.105.176.0/24
86.106.10.0/24
89.33.254.0/24
89.34.102.0/24
89.36.141.0/24
89.37.96.0/24
89.37.130.0/23
89.37.134.0/24
89.41.190.0/23
93.115.59.0/24
93.119.120.0/23
188.172.160.0/19
188.209.120.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:4b:1d:da:d1:cb:e7:ff:4f:02:dd:63:62:11:13:ce:52:9c:
28:ad:c0:36:91:88:ee:6e:01:c2:51:55:9d:d7:88:7c:ec:b1:
61:f6:ab:39:d5:0e:c8:f1:4d:0e:f9:7b:45:02:dc:7c:84:ad:
12:1e:8b:99:b3:7a:da:4b:fd:d0:a7:a8:16:45:a8:42:0e:70:
33:63:35:45:fc:d0:18:18:62:05:8e:8b:10:19:87:55:69:a6:
f9:c7:ca:7a:bb:b9:3e:f3:1c:e2:1c:28:5e:ca:db:c1:62:0a:
62:a2:ed:77:d6:07:e0:c3:02:fb:5a:8d:bd:8c:46:95:01:0f:
1e:47:9a:b1:2f:a0:2b:0e:a0:73:6a:b9:72:e4:9f:a4:da:4c:
1a:b8:0f:85:2f:ad:86:71:c0:57:4c:37:56:21:45:be:12:41:
c6:ef:11:84:24:4b:32:eb:53:15:1b:d9:87:48:22:23:65:ff:
61:5e:d0:20:f9:6d:ce:e6:90:54:94:e2:ce:e0:10:4c:8f:4e:
94:7d:80:1b:81:61:52:ad:c7:a7:e7:83:88:93:e3:31:24:c2:
84:0a:a3:57:bb:49:80:37:6c:18:88:b8:1b:c5:ea:38:44:a2:
7d:e0:28:9b:f5:22:17:db:17:ac:5b:87:bf:be:48:e4:e7:ce:
98:25:5e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org