Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/6555e3-82f6-46ca-a170-48f77ee85ab9/1/swtB8Ae6sKNNrPy87dfUYM-7Du0.roa
File: swtB8Ae6sKNNrPy87dfUYM-7Du0.roa (raw, json)
Hash identifier: wBO9st434alIoORjb4CEBR2cU6LwhZKMTZImcnXuMng=
Subject key identifier: B3:0B:41:F0:07:BA:B0:A3:4D:AC:FC:BC:ED:D7:D4:60:CF:BB:0E:ED
Certificate issuer: /CN=5bc9a6c85ca7a5657b9e8ae80865d12ef8166a03
Certificate serial: 015740
Authority key identifier: 5B:C9:A6:C8:5C:A7:A5:65:7B:9E:8A:E8:08:65:D1:2E:F8:16:6A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W8mmyFynpWV7noroCGXRLvgWagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/6555e3-82f6-46ca-a170-48f77ee85ab9/1/swtB8Ae6sKNNrPy87dfUYM-7Du0.roa
Signing time: Tue 21 Jun 2022 06:21:44 +0000
ROA not before: Tue 21 Jun 2022 06:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13172
IP address blocks: 195.225.127.0/24 maxlen: 24
91.211.232.0/24 maxlen: 24
185.108.188.0/24 maxlen: 24
91.211.235.0/24 maxlen: 24
91.211.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87872 (0x15740)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bc9a6c85ca7a5657b9e8ae80865d12ef8166a03
Validity
Not Before: Jun 21 06:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b30b41f007bab0a34dacfcbcedd7d460cfbb0eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c1:eb:fc:31:e1:aa:8f:c4:8d:c7:15:35:53:
2c:b3:67:1b:f8:ed:2d:6a:40:da:86:3a:d8:9e:d8:
de:8d:84:d2:08:60:6f:fe:39:32:9e:40:88:b9:35:
a0:fa:c3:9e:59:cb:de:74:31:3d:fc:c3:06:23:d3:
d2:c9:b0:25:ae:b0:e6:9b:8c:32:0a:31:e9:5f:54:
27:ea:04:07:ca:0a:32:2e:4c:68:ed:c7:d4:e4:10:
85:ca:d6:53:15:7d:61:ff:34:25:86:3f:50:31:ec:
50:09:c9:2a:cb:6c:7b:29:32:e3:67:23:92:97:37:
f9:02:a6:7f:7b:53:18:65:db:49:67:69:ac:da:07:
97:92:41:43:8c:ee:2b:f9:f0:d3:ba:51:e9:df:fc:
1b:8c:f6:bc:2f:c6:3c:b7:c3:a1:ed:b8:14:17:f2:
22:55:6c:ab:25:d4:70:1b:00:f1:42:3c:d3:42:93:
2e:07:3d:e7:cf:79:89:1a:59:cf:59:69:7f:3c:b8:
a6:58:68:36:8f:6f:52:ae:0f:4e:b1:9a:8a:d1:41:
7f:6f:c4:5a:ef:f3:52:f1:b1:6a:0d:8f:c7:db:57:
bf:ed:0f:7e:5d:4e:81:83:cf:92:a5:d4:b9:a6:4c:
15:86:b4:3c:37:e1:37:63:d0:e1:c0:8b:aa:c1:ac:
bc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:0B:41:F0:07:BA:B0:A3:4D:AC:FC:BC:ED:D7:D4:60:CF:BB:0E:ED
X509v3 Authority Key Identifier:
keyid:5B:C9:A6:C8:5C:A7:A5:65:7B:9E:8A:E8:08:65:D1:2E:F8:16:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W8mmyFynpWV7noroCGXRLvgWagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/6555e3-82f6-46ca-a170-48f77ee85ab9/1/swtB8Ae6sKNNrPy87dfUYM-7Du0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/6555e3-82f6-46ca-a170-48f77ee85ab9/1/W8mmyFynpWV7noroCGXRLvgWagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.232.0/24
91.211.234.0/23
185.108.188.0/24
195.225.127.0/24
Signature Algorithm: sha256WithRSAEncryption
77:89:b7:f8:37:f5:f5:69:f5:34:73:f1:5b:1c:10:ea:d1:0a:
50:d4:97:af:45:4e:21:d8:5c:83:25:aa:d7:b8:d8:37:ca:b5:
61:5c:f9:12:48:e9:c0:d7:32:bf:40:e2:de:11:15:4f:78:16:
f3:c7:bd:48:3c:b7:a9:b3:21:1f:67:65:7e:91:30:54:bf:e5:
d8:5b:f7:c0:3f:db:dc:dd:57:0a:27:71:10:2b:14:21:da:4a:
e2:fe:0f:4c:ed:0c:6a:a4:0c:97:14:b5:07:db:20:34:9c:83:
5d:5f:70:1a:a3:fc:7e:c0:55:d6:f6:6c:84:93:1f:45:b5:9e:
92:43:5b:41:cb:01:89:12:56:06:9e:14:2f:4c:49:86:d5:a6:
2a:47:d6:b0:29:6b:85:3a:5f:f9:70:ea:06:53:6a:44:9f:10:
12:93:a8:9c:47:0f:ce:b8:87:75:0c:52:c2:7a:30:24:92:23:
6d:34:0c:69:14:29:28:2f:65:6f:46:de:50:c6:20:6e:fd:95:
e6:db:3b:ed:bb:98:b8:36:cc:2e:71:e4:49:58:85:b9:81:ac:
10:49:88:3e:a1:6c:5a:36:dc:55:15:ca:7d:93:70:6c:52:e7:
46:89:ae:e9:3f:d5:41:b2:2f:c8:e9:95:46:6b:95:ad:fe:74:
9d:f0:e2:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:44 2024 by rpki-client on console-fra.rpki-client.org