Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/DBz4wdQPgxZwMMQJRScL6_a6sSo.roa
File: DBz4wdQPgxZwMMQJRScL6_a6sSo.roa (raw, json)
Hash identifier: 3zNp0DEzavrt4BJBHrZ+rfN3UvW8HatkpSeTMQFvCVQ=
Subject key identifier: 0C:1C:F8:C1:D4:0F:83:16:70:30:C4:09:45:27:0B:EB:F6:BA:B1:2A
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 136D4F6C
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/DBz4wdQPgxZwMMQJRScL6_a6sSo.roa
Signing time: Sat 01 Jan 2022 05:58:25 +0000
ROA not before: Sat 01 Jan 2022 05:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60380
IP address blocks: 83.133.178.0/23 maxlen: 23
81.209.248.0/21 maxlen: 21
83.125.6.0/23 maxlen: 23
80.86.184.0/24 maxlen: 24
80.86.188.0/23 maxlen: 23
83.133.240.0/20 maxlen: 20
2001:7f0:3000::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325930860 (0x136d4f6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c1cf8c1d40f83167030c40945270bebf6bab12a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fb:8d:86:e9:45:8c:7d:03:10:47:fc:a6:76:
44:52:cb:ab:10:44:a3:50:36:ea:7f:4b:c7:80:5d:
42:ee:47:46:ab:9c:09:ae:09:b9:68:2a:e0:c9:ab:
f7:dc:a4:af:df:81:8f:c2:92:eb:ba:fd:a1:20:d0:
ac:40:30:c8:c6:d0:33:d2:36:c8:22:02:5f:a3:5d:
70:54:61:de:7b:1c:f5:de:c4:b9:f8:34:e1:70:ec:
22:17:37:1f:c0:50:8e:93:c4:13:96:68:b4:12:a7:
71:ea:3b:7c:0f:04:b9:6e:fe:86:66:3d:f2:c5:05:
11:5b:1b:d6:5f:ab:03:ff:43:7b:e2:3a:20:78:56:
99:8f:d3:10:17:f9:14:75:28:6e:69:2d:a4:d5:6b:
63:e2:50:22:d1:3d:4f:60:96:1e:22:fe:a7:77:fc:
8e:e3:67:f5:10:ae:a9:59:46:53:7a:37:c3:b8:c2:
cc:c2:80:35:3f:97:f2:db:b6:bc:93:b9:55:3e:19:
47:ed:27:35:1d:58:8a:c6:66:cb:1c:7f:a3:e2:03:
a4:14:57:a6:aa:9a:71:ec:5d:b7:d9:c6:b4:43:26:
1d:41:97:b5:52:05:db:fa:87:99:d9:9a:41:65:6b:
38:ba:2c:12:d1:41:3f:f4:9a:0a:f7:89:fa:59:49:
c9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:1C:F8:C1:D4:0F:83:16:70:30:C4:09:45:27:0B:EB:F6:BA:B1:2A
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/DBz4wdQPgxZwMMQJRScL6_a6sSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.86.184.0/24
80.86.188.0/23
81.209.248.0/21
83.125.6.0/23
83.133.178.0/23
83.133.240.0/20
IPv6:
2001:7f0:3000::/46
Signature Algorithm: sha256WithRSAEncryption
5a:d4:95:4b:d7:fe:00:7a:38:e6:db:82:3a:c1:05:3f:08:16:
99:5e:ab:fc:36:34:dc:17:e1:38:57:66:03:17:75:f8:48:d9:
3a:87:43:37:9c:25:f2:ba:63:eb:60:be:64:59:0b:0b:b7:cb:
5e:0c:89:c9:97:34:fe:03:84:62:4f:34:36:ce:3d:3c:4b:2b:
a7:54:3f:e8:64:fb:e8:89:8c:5b:ed:b6:79:2b:1d:65:3c:cb:
71:16:be:76:3a:bf:33:7f:0c:6d:68:49:93:e8:c0:d6:38:67:
54:38:54:c2:45:87:1c:25:4e:ca:41:5c:a5:5c:dd:96:a5:b7:
22:d3:43:16:d2:f4:61:1f:e6:66:40:37:19:b7:aa:1a:81:42:
ab:5c:da:94:06:4e:a1:b6:0f:81:93:fc:e7:33:f4:d0:cf:ba:
59:2c:34:b4:44:31:6c:06:0f:12:58:78:d4:75:98:3c:40:ef:
4b:21:d6:f5:ff:9a:7c:37:eb:7f:30:13:1d:71:f0:ae:40:b2:
20:58:94:8a:4f:9d:1d:fd:45:db:82:e1:05:55:59:77:f3:97:
a3:98:33:33:13:ef:80:53:b5:31:3c:d3:36:9d:0d:5d:64:2d:
0c:fa:1a:d7:a7:28:27:d1:3c:fb:19:27:aa:9b:4b:42:71:05:
6c:c4:bf:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-fra.rpki-client.org