Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/4b2e49-f667-494a-afe9-6df3e4a4eeb1/1/IlynYk7cDv6GFukJO-Q6KzPyP9o.roa
File: IlynYk7cDv6GFukJO-Q6KzPyP9o.roa (raw, json)
Hash identifier: r6CUSSchy7lLhEsoRK7x1OMfshy9ayucFCxLFMir7A4=
Subject key identifier: 22:5C:A7:62:4E:DC:0E:FE:86:16:E9:09:3B:E4:3A:2B:33:F2:3F:DA
Certificate issuer: /CN=8324c5df19789d5259104e0ae0dcd4672a8e2bab
Certificate serial: 0D02FA51
Authority key identifier: 83:24:C5:DF:19:78:9D:52:59:10:4E:0A:E0:DC:D4:67:2A:8E:2B:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyTF3xl4nVJZEE4K4NzUZyqOK6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/4b2e49-f667-494a-afe9-6df3e4a4eeb1/1/IlynYk7cDv6GFukJO-Q6KzPyP9o.roa
Signing time: Sat 01 Jan 2022 09:02:57 +0000
ROA not before: Sat 01 Jan 2022 09:02:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8680
IP address blocks: 93.191.202.0/23 maxlen: 23
93.191.204.0/23 maxlen: 23
93.191.206.0/23 maxlen: 23
93.191.200.0/22 maxlen: 22
93.191.200.0/21 maxlen: 24
93.191.200.0/23 maxlen: 23
185.48.60.0/22 maxlen: 24
46.254.248.0/21 maxlen: 24
83.137.248.0/21 maxlen: 24
5.42.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218298961 (0xd02fa51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8324c5df19789d5259104e0ae0dcd4672a8e2bab
Validity
Not Before: Jan 1 09:02:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=225ca7624edc0efe8616e9093be43a2b33f23fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:af:be:59:69:67:46:f1:4c:b3:f5:f9:31:52:
d3:09:c0:2b:b9:2b:a8:36:72:6f:7a:04:3a:eb:13:
79:62:66:87:34:86:dc:04:51:b5:47:e5:d6:f1:48:
fb:10:8b:b4:25:75:25:3d:34:6a:35:50:ad:f5:cd:
f0:cc:ae:1d:20:1e:80:4a:d3:66:7f:ca:a6:60:c2:
88:7d:7e:ad:06:39:f4:cb:e3:66:6a:64:f5:74:f7:
d2:6a:09:41:aa:55:e0:48:7e:db:fe:c4:14:ab:3c:
d3:10:4a:b9:9c:3b:9a:62:b0:6b:9a:8d:34:b9:62:
ab:ea:59:26:e1:15:23:92:37:d5:85:b5:b4:76:15:
80:f4:29:74:32:2f:9e:33:f2:dd:49:96:a3:c9:58:
11:e9:44:9e:25:e8:fa:fa:26:88:4c:d0:2a:e3:4f:
a6:8e:9e:6a:dc:b0:ab:f1:ff:00:2a:86:d9:7d:29:
f9:72:c3:5d:bf:8a:76:8f:16:60:60:5c:e7:93:65:
14:4e:2a:05:6e:66:b4:0e:c4:82:9f:a9:f4:ac:c6:
56:ca:cd:63:b9:68:99:fb:e8:7f:d4:32:0b:21:0e:
49:2c:a3:27:4b:d4:03:cf:19:76:6c:ce:b2:50:ee:
a1:c2:ad:e6:5c:8b:2f:d9:30:6b:76:8d:71:6a:3d:
b7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5C:A7:62:4E:DC:0E:FE:86:16:E9:09:3B:E4:3A:2B:33:F2:3F:DA
X509v3 Authority Key Identifier:
keyid:83:24:C5:DF:19:78:9D:52:59:10:4E:0A:E0:DC:D4:67:2A:8E:2B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyTF3xl4nVJZEE4K4NzUZyqOK6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/4b2e49-f667-494a-afe9-6df3e4a4eeb1/1/IlynYk7cDv6GFukJO-Q6KzPyP9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/4b2e49-f667-494a-afe9-6df3e4a4eeb1/1/gyTF3xl4nVJZEE4K4NzUZyqOK6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.128.0/21
46.254.248.0/21
83.137.248.0/21
93.191.200.0/21
185.48.60.0/22
Signature Algorithm: sha256WithRSAEncryption
92:58:c3:44:f0:1e:f5:f5:a1:4b:d0:4c:c4:4d:07:7d:18:44:
82:ca:d7:4a:b4:b5:cb:d9:c5:00:8a:95:ad:58:a0:c2:61:ba:
13:91:11:cf:64:48:8d:4b:5c:f4:42:05:93:6f:48:d9:c7:a9:
ae:a1:47:3c:ce:5f:77:27:4f:24:5c:a0:6f:9f:7c:8d:96:f3:
01:59:b4:ba:43:1a:1b:83:3a:1e:a3:7f:96:67:f5:bb:c7:3e:
a1:03:f5:3a:8b:37:27:ab:83:f6:13:34:9c:7d:43:33:e2:30:
53:a5:47:1e:ea:e6:8d:d8:e8:ef:0b:f6:0c:84:c2:cb:c1:5a:
a1:86:0d:af:e6:b3:14:b8:48:b3:20:bf:e2:1f:89:37:94:65:
04:68:26:6a:fa:82:f6:c1:61:bb:65:6a:59:df:6c:8e:e6:19:
79:cd:cc:18:9f:19:49:8b:02:1f:dc:16:57:04:85:70:3e:df:
e1:88:8d:8a:e0:e0:f0:10:de:88:48:a1:73:eb:ee:ee:85:d1:
a1:fe:28:77:99:1d:db:ca:f7:32:a7:5d:70:23:88:9b:1b:0d:
7a:b8:b2:1b:93:78:57:21:67:3b:e3:da:e8:21:11:50:b5:4d:
df:95:74:57:40:a0:f8:51:c6:81:f1:ea:35:8d:29:69:77:b3:
b3:2b:f9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:11 2024 by rpki-client on console-fra.rpki-client.org