Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/_QGJmjMwNjyEA4Kyf_yJmG6Javo.roa
File: _QGJmjMwNjyEA4Kyf_yJmG6Javo.roa (raw, json)
Hash identifier: 4pt3HE7DcYuIdzIjnAdmHiWe2XM9wYMWM4iTGfUYwFs=
Subject key identifier: FD:01:89:9A:33:30:36:3C:84:03:82:B2:7F:FC:89:98:6E:89:6A:FA
Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4
Certificate serial: 161943F0
Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/_QGJmjMwNjyEA4Kyf_yJmG6Javo.roa
Signing time: Sat 01 Jan 2022 05:57:11 +0000
ROA not before: Sat 01 Jan 2022 05:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56430
IP address blocks: 188.241.13.0/24 maxlen: 24
86.105.152.0/23 maxlen: 23
86.105.155.0/24 maxlen: 24
77.81.64.0/24 maxlen: 24
89.42.42.0/24 maxlen: 24
193.33.200.0/23 maxlen: 23
185.82.172.0/22 maxlen: 22
89.36.93.0/24 maxlen: 24
89.36.18.0/24 maxlen: 24
89.43.174.0/24 maxlen: 24
188.212.250.0/24 maxlen: 24
89.40.214.0/24 maxlen: 24
2a05:91c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 370754544 (0x161943f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4
Validity
Not Before: Jan 1 05:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd01899a3330363c840382b27ffc89986e896afa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:45:48:3a:82:9f:6f:54:8f:76:66:0d:b4:
d6:9e:39:31:ae:0b:d3:47:0c:0e:96:02:89:62:2a:
62:e4:88:db:36:c8:20:04:37:e0:a7:c9:6a:a5:53:
11:c8:7a:01:17:a8:b8:18:64:2b:62:28:da:55:51:
ed:cb:e4:e6:1f:bf:fa:b2:a0:fa:a1:6e:3a:ea:bc:
e1:67:47:a9:9b:88:ed:c2:43:64:f6:83:2f:31:68:
33:d9:d3:49:09:62:0b:a5:8c:d5:a7:68:f7:dd:4f:
61:2d:b8:61:a9:32:09:cc:a0:a2:52:49:e0:ca:5d:
fd:20:5e:d8:55:04:fa:03:78:18:ea:0f:11:bf:ff:
05:20:85:58:43:f6:80:eb:b7:5e:94:87:20:c2:63:
7a:13:05:04:1c:37:7f:0b:9a:65:f2:17:ed:79:57:
ba:84:a1:9c:a9:33:84:49:cd:3d:90:ef:0b:5b:71:
4c:fd:7c:bb:e9:68:84:fd:be:a1:f8:fa:92:1d:2c:
79:7b:7b:76:89:e0:77:36:d7:04:3e:71:13:30:72:
3b:ac:dd:1d:20:38:ad:dd:18:fb:af:be:a9:6a:68:
33:5e:2e:06:b5:3c:7b:19:af:d5:5b:7e:85:7f:9c:
a1:23:45:e5:36:c8:e3:0b:f7:c6:b6:10:e6:43:74:
62:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:01:89:9A:33:30:36:3C:84:03:82:B2:7F:FC:89:98:6E:89:6A:FA
X509v3 Authority Key Identifier:
keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/_QGJmjMwNjyEA4Kyf_yJmG6Javo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.64.0/24
86.105.152.0/23
86.105.155.0/24
89.36.18.0/24
89.36.93.0/24
89.40.214.0/24
89.42.42.0/24
89.43.174.0/24
185.82.172.0/22
188.212.250.0/24
188.241.13.0/24
193.33.200.0/23
IPv6:
2a05:91c0::/32
Signature Algorithm: sha256WithRSAEncryption
bb:05:fa:ca:04:12:2e:46:c3:46:c5:4a:2d:5b:d7:da:5e:a8:
9c:ec:55:3b:0b:32:a2:96:17:50:20:c4:77:ed:be:56:3f:eb:
b6:e9:f5:1d:6f:6b:0c:f5:ca:97:c4:ea:ae:18:cf:ff:8c:87:
13:92:e9:e9:6f:12:c1:81:df:26:43:65:6f:81:b2:b1:7b:dd:
cd:cb:59:54:26:04:c1:d8:e6:db:e9:1d:2c:78:f9:8f:f9:6b:
07:83:49:29:92:d1:29:71:69:db:8e:10:a8:f9:b4:e4:3f:c2:
66:12:dc:32:ca:0f:6a:8f:4f:30:ed:4f:a4:3b:56:b3:02:38:
00:66:0a:24:f5:3a:4e:da:04:10:2e:90:ce:c7:2e:54:3a:65:
9f:cd:d6:53:ce:ff:c2:7a:21:49:5f:fa:9a:d2:a3:e6:0a:cd:
5f:c5:93:4c:65:b0:ac:1c:b7:d5:90:ba:a0:e4:6b:11:8e:e4:
6e:76:c0:3d:20:af:46:34:5f:6a:86:87:cb:d2:47:72:46:f7:
ca:3c:c4:6a:97:94:bf:73:76:f5:32:e0:a0:54:c2:ba:ef:7f:
fe:4f:45:2d:d6:44:99:06:b4:46:d7:fb:14:bf:a0:ad:8a:82:
8d:e3:51:89:22:8b:4e:e1:d4:a5:63:5a:9b:c1:39:83:3f:fd:
98:24:f0:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:01 2024 by rpki-client on console-ams.rpki-client.org