Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/l35558DllQAUT2drLbJOmZmZ5g4.roa
File: l35558DllQAUT2drLbJOmZmZ5g4.roa (raw, json)
Hash identifier: XMiveB7aqRSxBvhc2y8So7yPmJ6D5vzEcvjL0gyLEtU=
Subject key identifier: 97:7E:79:E7:C0:E5:95:00:14:4F:67:6B:2D:B2:4E:99:99:99:E6:0E
Certificate issuer: /CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Certificate serial: 06544F3A
Authority key identifier: 91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/l35558DllQAUT2drLbJOmZmZ5g4.roa
Signing time: Thu 21 Apr 2022 06:37:28 +0000
ROA not before: Thu 21 Apr 2022 06:37:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49675
IP address blocks: 185.161.180.0/24 maxlen: 24
185.161.180.0/22 maxlen: 22
185.161.181.0/24 maxlen: 24
185.161.183.0/24 maxlen: 24
185.161.182.0/24 maxlen: 24
46.17.201.0/24 maxlen: 24
46.17.200.0/21 maxlen: 21
46.17.202.0/24 maxlen: 24
46.17.206.0/24 maxlen: 24
46.17.200.0/24 maxlen: 24
46.17.204.0/24 maxlen: 24
46.17.205.0/24 maxlen: 24
46.17.203.0/24 maxlen: 24
46.17.207.0/24 maxlen: 24
2a02:26a8:f000::/36 maxlen: 36
2a02:26a8:ffff::/48 maxlen: 48
2a02:26a8:3::/48 maxlen: 48
2a02:26a8:fffe::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106188602 (0x6544f3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d01c47f00e64f35cc752d03b34a71b71406b3f
Validity
Not Before: Apr 21 06:37:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=977e79e7c0e59500144f676b2db24e999999e60e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ac:63:b3:25:18:a7:f1:3e:38:2a:07:b4:2d:
b7:32:96:1f:9c:95:b8:15:53:c3:fa:8f:04:fc:19:
f2:df:8b:1e:9c:77:d8:0c:11:ac:24:b1:b0:5d:90:
6c:94:9d:32:19:70:1a:ba:e1:aa:80:81:a2:40:d1:
4f:6a:7c:57:c6:9e:68:a7:44:0b:8b:28:55:67:fb:
3b:c6:c0:5d:54:11:87:57:85:e1:f7:d6:cc:3d:31:
76:0b:a4:6e:ac:79:da:85:12:5b:de:cd:66:00:3e:
e4:83:44:e7:e0:65:d1:67:75:30:f8:8c:94:db:fd:
6b:4b:61:9e:9a:17:47:38:77:8b:3d:48:83:dc:b5:
a2:2a:84:27:fc:de:9b:7d:60:c8:31:d1:7f:06:c5:
6a:7f:a1:3c:01:9a:c7:0f:16:c0:93:21:d0:21:b1:
b8:7e:16:36:c8:b0:21:9a:53:5a:c9:6c:23:5c:5b:
fc:08:2b:3d:5a:28:5f:4b:da:69:fd:2c:28:20:70:
a5:71:48:43:e7:d0:c6:90:42:b0:6a:b3:2b:cc:b3:
14:b9:95:50:85:20:40:d7:fe:19:d8:01:77:0d:2f:
d1:08:62:c5:ed:8d:7f:18:bb:2f:08:d9:82:f1:23:
ef:9a:03:b4:b1:cd:d1:be:88:71:1b:c8:76:43:bb:
4e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:7E:79:E7:C0:E5:95:00:14:4F:67:6B:2D:B2:4E:99:99:99:E6:0E
X509v3 Authority Key Identifier:
keyid:91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/l35558DllQAUT2drLbJOmZmZ5g4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.200.0/21
185.161.180.0/22
IPv6:
2a02:26a8:3::/48
2a02:26a8:f000::/36
Signature Algorithm: sha256WithRSAEncryption
22:1d:4d:5c:81:ce:fa:bc:ed:85:ac:dc:4d:11:6a:7a:f8:32:
a3:01:8e:f5:74:55:be:0d:1a:f3:6d:ae:eb:aa:1d:35:0f:75:
f5:92:ea:2d:52:94:38:35:89:c2:c6:d1:d0:e0:e3:08:63:1a:
7b:f1:17:0b:27:d1:4f:1f:8a:95:2d:cf:11:8b:58:68:4e:f7:
38:aa:a4:fe:40:c4:d7:6a:93:48:3b:16:66:79:77:08:1e:90:
94:87:2a:99:52:b9:89:77:c7:fc:9b:90:de:2a:e8:b9:50:00:
d2:ae:3b:29:62:14:61:ea:16:ea:0f:f9:0e:b5:64:79:ae:a5:
41:82:d3:b3:48:15:c4:ad:01:38:a7:22:4d:06:e3:ca:aa:6a:
96:bb:22:af:8c:7d:38:27:cc:aa:2e:0f:04:10:fb:17:22:82:
e8:e6:df:1e:04:1b:aa:5c:cc:11:39:21:e2:51:30:f5:0b:36:
54:7c:10:ea:dd:1c:69:7f:c2:73:71:b2:5f:2e:08:13:ed:c1:
1d:a6:4f:5f:46:3a:d4:53:86:44:e3:a6:64:7e:5a:40:cd:ce:
aa:cc:55:4d:81:56:da:b6:28:11:22:81:96:2a:79:23:df:83:
e5:23:ef:d0:4d:70:17:80:54:68:8c:db:5d:87:f8:cf:16:b5:
11:01:d6:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:24 2025 by rpki-client