Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/dSsuBQvy9MVcidiFwYDFPj_1IfE.roa
File: dSsuBQvy9MVcidiFwYDFPj_1IfE.roa (raw, json)
Hash identifier: FjASy8qwpDHBRLFpD/KX1sOkrXWGQpaXIkMBtfz1NvM=
Subject key identifier: 75:2B:2E:05:0B:F2:F4:C5:5C:89:D8:85:C1:80:C5:3E:3F:F5:21:F1
Certificate issuer: /CN=6ff362c0765afb7b9804b6d819470007b01f262e
Certificate serial: 035C2D81
Authority key identifier: 6F:F3:62:C0:76:5A:FB:7B:98:04:B6:D8:19:47:00:07:B0:1F:26:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_NiwHZa-3uYBLbYGUcAB7AfJi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/dSsuBQvy9MVcidiFwYDFPj_1IfE.roa
Signing time: Sat 01 Jan 2022 10:57:53 +0000
ROA not before: Sat 01 Jan 2022 10:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31399
IP address blocks: 141.113.232.0/21 maxlen: 21
141.113.240.0/21 maxlen: 21
141.113.248.0/21 maxlen: 21
141.113.176.0/21 maxlen: 21
141.113.184.0/21 maxlen: 21
141.113.192.0/21 maxlen: 21
141.113.204.0/22 maxlen: 22
141.113.200.0/22 maxlen: 22
141.113.208.0/21 maxlen: 21
141.113.216.0/21 maxlen: 21
141.113.224.0/21 maxlen: 21
141.113.16.0/21 maxlen: 21
141.113.24.0/22 maxlen: 22
141.113.36.0/22 maxlen: 22
141.113.32.0/22 maxlen: 22
141.113.32.0/21 maxlen: 21
141.113.40.0/21 maxlen: 21
141.113.48.0/21 maxlen: 21
141.113.56.0/21 maxlen: 21
141.113.64.0/21 maxlen: 21
141.113.0.0/21 maxlen: 21
141.113.8.0/21 maxlen: 21
53.3.144.0/21 maxlen: 21
141.113.120.0/21 maxlen: 21
141.113.72.0/21 maxlen: 21
141.113.88.0/22 maxlen: 22
141.113.96.0/21 maxlen: 21
141.113.104.0/21 maxlen: 21
141.113.112.0/21 maxlen: 21
2a03:9e40::/29 maxlen: 29
2a03:9e42::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56372609 (0x35c2d81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ff362c0765afb7b9804b6d819470007b01f262e
Validity
Not Before: Jan 1 10:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=752b2e050bf2f4c55c89d885c180c53e3ff521f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b1:f4:14:87:1c:f8:e7:bd:48:82:e4:bb:94:
10:7d:1e:70:3f:01:30:f9:18:a3:01:7c:bc:50:1c:
86:83:09:4d:2d:a5:5f:cb:65:d8:2f:69:cb:29:ec:
eb:25:84:e6:75:70:9d:ca:2e:f6:04:5e:cc:1d:4a:
72:7a:3f:88:bd:09:b7:22:20:7c:ef:d6:f9:14:bf:
b7:f3:06:86:6c:4c:96:e8:cc:37:6e:16:97:26:39:
e3:4f:75:ba:81:43:db:37:83:9a:ca:24:7d:09:55:
37:05:37:c8:d8:b8:5e:ce:02:69:1f:7a:73:75:54:
38:d7:1e:e6:96:55:45:58:5f:28:ca:4e:51:e5:02:
51:ec:e8:cc:4a:21:2d:cf:36:9b:d2:1a:0f:9a:6a:
13:d4:1b:50:5d:e5:1e:00:5d:70:23:9d:c6:28:bb:
45:1f:f1:56:ca:c4:b5:49:3a:d3:37:ee:af:30:68:
1e:78:49:a6:f7:5e:c4:10:e0:c8:c4:31:57:b2:4a:
3f:76:d6:58:a3:3e:48:5d:79:82:4c:dc:60:47:b6:
68:33:71:da:13:36:d6:b0:73:4a:25:03:da:f6:cb:
03:4f:36:5c:a9:fb:5b:a4:8f:35:a9:b1:f3:be:d6:
9e:63:c4:8e:dd:95:79:db:dc:fd:67:c6:9c:ee:7b:
82:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2B:2E:05:0B:F2:F4:C5:5C:89:D8:85:C1:80:C5:3E:3F:F5:21:F1
X509v3 Authority Key Identifier:
keyid:6F:F3:62:C0:76:5A:FB:7B:98:04:B6:D8:19:47:00:07:B0:1F:26:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_NiwHZa-3uYBLbYGUcAB7AfJi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/dSsuBQvy9MVcidiFwYDFPj_1IfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e01190-5204-44c5-a11a-dafd74763d23/1/b_NiwHZa-3uYBLbYGUcAB7AfJi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
53.3.144.0/21
141.113.0.0-141.113.27.255
141.113.32.0-141.113.79.255
141.113.88.0/22
141.113.96.0/19
141.113.176.0-141.113.255.255
IPv6:
2a03:9e40::/29
Signature Algorithm: sha256WithRSAEncryption
83:6b:82:00:8a:5d:29:5d:a3:1b:87:5b:d8:73:31:60:b8:97:
1f:1d:94:f0:90:15:28:04:1b:e9:d1:2a:1c:da:50:2a:8f:33:
fd:f7:85:9f:71:63:7f:8b:df:83:bf:e6:dd:66:6b:86:56:59:
c0:de:68:e5:08:5a:68:5a:9a:36:59:77:dd:ee:81:21:68:77:
f0:81:c5:d8:dc:28:a9:62:a7:37:b6:82:83:e8:0a:81:d5:18:
9d:8a:cc:e4:72:c2:ee:ab:49:05:e5:43:44:47:e8:52:30:27:
c3:f6:3a:dc:30:ae:19:42:97:bb:92:7d:d7:c5:54:fb:50:6b:
ad:76:05:58:12:78:02:ab:fa:ac:a2:3b:0d:3d:16:6c:fe:4e:
70:46:1a:b8:96:b4:82:72:f2:04:20:be:4f:1f:d9:3f:0a:5c:
10:10:eb:c1:19:4a:83:5e:84:a3:74:b3:cb:ae:d4:99:18:c8:
d2:6f:a2:53:7c:5a:00:52:a1:9d:9c:c4:b2:75:5c:a6:f3:bf:
7d:02:70:9f:5d:13:45:b8:22:d8:65:0f:9e:6f:19:67:09:f4:
e7:89:32:0f:8a:5a:33:5f:aa:86:28:98:9e:05:61:14:96:27:
e7:3a:71:69:a9:4a:54:db:b0:07:d2:f8:fa:ee:f5:ae:b6:b6:
fc:ad:f6:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:14 2024 by rpki-client on console-ams.rpki-client.org