Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/Ab_9Qf42d0VeguWHQVhAHwVZyus.roa
File: Ab_9Qf42d0VeguWHQVhAHwVZyus.roa (raw, json)
Hash identifier: HoRm0aMRmwx+1HeM3TJ3DcZqm7tUJPNkbEBi9UpuWW8=
Subject key identifier: 01:BF:FD:41:FE:36:77:45:5E:82:E5:87:41:58:40:1F:05:59:CA:EB
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 141F387B
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/Ab_9Qf42d0VeguWHQVhAHwVZyus.roa
Signing time: Mon 23 May 2022 07:51:43 +0000
ROA not before: Mon 23 May 2022 07:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203596
IP address blocks: 185.122.100.0/22 maxlen: 24
91.213.223.0/24 maxlen: 24
185.222.88.0/22 maxlen: 24
2a06:a400::/29 maxlen: 29
2a06:a402::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337590395 (0x141f387b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: May 23 07:51:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01bffd41fe3677455e82e5874158401f0559caeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:71:53:b8:94:6e:3d:e5:37:16:72:0f:80:c8:
38:bf:da:b2:be:04:9b:60:2b:71:72:c5:d1:55:8d:
fe:e2:e5:bf:36:37:52:47:ca:f1:d0:b3:31:dc:a9:
0c:18:ac:97:0e:2e:3d:76:b5:1f:b2:d3:27:93:22:
58:81:9f:9d:7f:f1:20:a4:fa:47:03:70:6a:b2:7b:
39:a1:3a:ed:09:12:14:f4:53:f3:02:20:ce:2d:2f:
95:72:00:59:d4:58:06:66:35:17:af:b3:40:e9:b0:
aa:c8:80:cb:98:e3:5f:fe:86:2e:56:3b:4c:07:a2:
44:70:31:85:73:15:f7:1d:56:8b:7b:51:ec:6f:0d:
f7:b5:42:82:3e:20:cb:f5:62:8e:e5:fa:00:49:03:
e7:60:49:56:2c:79:69:04:43:31:2c:cf:7a:b5:cd:
00:2e:e3:e7:74:63:1c:40:6a:c2:45:3d:2a:5d:93:
f5:5a:ee:7d:00:14:ce:b6:b7:25:e2:2d:91:62:a5:
7f:ba:d5:0e:2d:49:14:aa:fa:93:fd:c5:0f:5f:01:
ba:c0:1d:79:2c:e9:77:e9:54:cf:7a:d4:c1:14:65:
f0:45:66:01:ca:72:0b:3a:7a:88:fe:4b:3f:c7:88:
63:cb:8e:a2:3e:85:54:de:30:6c:26:d3:2d:c7:e5:
02:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BF:FD:41:FE:36:77:45:5E:82:E5:87:41:58:40:1F:05:59:CA:EB
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/Ab_9Qf42d0VeguWHQVhAHwVZyus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.223.0/24
185.122.100.0/22
185.222.88.0/22
IPv6:
2a06:a400::/29
Signature Algorithm: sha256WithRSAEncryption
19:5d:b8:67:c8:01:10:c1:4d:a8:ba:89:70:2c:b0:08:83:46:
49:ef:03:1d:74:9c:4b:e1:19:33:d6:a1:ad:2a:bb:76:eb:62:
07:a4:33:70:9b:95:42:b9:aa:43:07:a6:74:e2:ff:17:56:c4:
14:af:91:63:dd:b9:d4:b3:b9:ce:bd:ed:0f:79:f5:3c:d9:60:
c7:0f:16:b3:c8:5f:5e:bc:b8:64:71:e9:bb:85:dd:7f:05:21:
18:bd:28:9d:70:fc:fc:8d:cd:67:a0:ff:2c:c0:de:ed:b9:42:
00:29:d6:69:7f:20:69:b7:18:ba:8c:01:59:5b:25:47:9d:f7:
b8:1c:cf:7c:95:76:64:0d:3f:71:53:a4:2e:7f:bf:39:67:b6:
2f:61:c2:2f:88:42:b8:73:c7:3f:aa:e1:0b:25:ba:60:90:3d:
33:ca:8a:1d:01:23:a2:6e:07:51:0b:a2:e2:c8:db:89:6d:9b:
5c:74:18:4a:45:7f:21:a1:b5:ff:4a:5f:dc:0e:88:03:9e:81:
74:63:78:49:e2:18:c9:26:3d:75:4c:fe:fe:31:e0:58:ff:bd:
a9:b7:4b:37:86:71:36:9b:52:3c:fe:73:33:47:2a:44:7d:34:
6b:cc:17:53:4f:f1:6c:e7:a5:97:5c:c8:4d:b4:d4:83:bc:6f:
a4:70:74:9c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org