Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/711XPbbew_xqiatc_TLH4mHVQrI.roa
File: 711XPbbew_xqiatc_TLH4mHVQrI.roa (raw, json)
Hash identifier: LBUwIpBZ7Z+4dvC8TdGEbUZcjfr2KiuI9QLjobYcGcM=
Subject key identifier: EF:5D:57:3D:B6:DE:C3:FC:6A:89:AB:5C:FD:32:C7:E2:61:D5:42:B2
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 01845C750708194DA49806233D08060C7C20
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/711XPbbew_xqiatc_TLH4mHVQrI.roa
Signing time: Wed 09 Nov 2022 12:54:44 +0000
ROA not before: Wed 09 Nov 2022 12:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197216
IP address blocks: 185.55.230.0/24 maxlen: 24
185.55.229.0/24 maxlen: 24
185.55.228.0/24 maxlen: 24
185.239.124.0/24 maxlen: 24
185.55.231.0/24 maxlen: 24
185.239.126.0/24 maxlen: 24
185.199.36.0/22 maxlen: 22
195.189.80.0/22 maxlen: 22
79.98.105.0/24 maxlen: 24
185.228.24.0/22 maxlen: 22
79.98.104.0/24 maxlen: 24
79.98.108.0/24 maxlen: 24
79.98.107.0/24 maxlen: 24
79.98.106.0/24 maxlen: 24
79.98.111.0/24 maxlen: 24
79.98.110.0/24 maxlen: 24
79.98.109.0/24 maxlen: 24
185.52.205.0/24 maxlen: 24
185.52.204.0/24 maxlen: 24
185.52.204.0/22 maxlen: 22
2a02:80e0::/30 maxlen: 30
2a01:b6a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5c:75:07:08:19:4d:a4:98:06:23:3d:08:06:0c:7c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: Nov 9 12:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef5d573db6dec3fc6a89ab5cfd32c7e261d542b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:98:64:1d:f1:e4:73:58:d1:46:c0:80:dd:4f:
b9:97:40:3c:07:7d:aa:54:37:d8:62:70:e0:af:d8:
cc:f5:24:80:72:6e:e4:ee:0c:e5:7f:1d:42:25:96:
8a:39:58:aa:f3:a8:5a:95:38:71:99:e0:2d:85:9f:
24:92:c9:f0:75:1c:5e:91:8a:97:f4:b8:14:3a:17:
2f:c3:24:7f:1c:88:c8:8d:4a:d5:5c:a5:f0:a0:81:
fb:6c:48:34:19:87:2f:1f:d0:91:42:77:68:e2:f1:
21:26:7f:31:d8:cf:67:86:5d:2d:9f:aa:5f:83:9f:
00:83:92:a9:63:4a:6d:08:ef:91:8f:f3:71:ab:c5:
47:c3:93:c2:65:77:e5:21:66:81:8c:d0:ce:8a:82:
22:0f:74:bc:f6:50:bf:fd:1c:e5:26:8b:d3:57:59:
3c:be:4f:dd:b1:8f:7e:52:b6:8f:f6:89:4b:d2:55:
b1:e1:94:f6:a5:97:7d:cc:ec:b3:f2:b7:64:64:47:
aa:ef:17:2d:ae:5a:7d:b6:2a:24:5c:37:4d:9a:3b:
9b:62:06:07:09:e9:dc:01:28:e1:91:d8:5b:7f:86:
a0:5c:9e:aa:59:53:34:09:38:fc:5d:86:77:61:e5:
e5:19:53:6b:c4:f9:16:7c:de:1a:8c:60:fa:9a:a1:
6d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5D:57:3D:B6:DE:C3:FC:6A:89:AB:5C:FD:32:C7:E2:61:D5:42:B2
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/711XPbbew_xqiatc_TLH4mHVQrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.104.0/21
185.52.204.0/22
185.55.228.0/22
185.199.36.0/22
185.228.24.0/22
185.239.124.0/24
185.239.126.0/24
195.189.80.0/22
IPv6:
2a01:b6a0::/32
2a02:80e0::/30
Signature Algorithm: sha256WithRSAEncryption
cc:4c:01:80:15:24:63:a2:60:04:c2:f5:e3:04:ce:dd:e0:11:
5d:57:41:dd:c0:c8:67:b8:c6:9f:1e:ae:3a:dc:92:ec:77:38:
49:05:88:3c:2a:f5:74:af:35:18:bc:aa:9c:7c:e0:c6:53:21:
08:f9:ef:b3:f2:b5:07:32:87:a1:44:2e:d7:e1:97:a2:69:c8:
ba:96:98:05:84:69:29:ad:c7:1d:6b:e6:c3:c8:79:62:9f:7f:
ac:fc:4e:0d:7e:e5:0d:25:27:b9:f5:22:72:34:51:fe:6a:99:
fd:a6:7f:a6:04:7c:aa:48:1e:74:80:78:89:f5:7d:0d:65:4b:
1f:c7:3b:2e:22:70:7e:14:79:8e:ac:ac:af:29:72:88:a9:d0:
79:2c:ce:93:e4:e4:f4:d1:79:c5:75:f4:fa:ab:02:c7:b1:5c:
26:c8:70:00:6d:24:66:5f:ce:32:90:1a:7d:42:c7:44:3d:a1:
2e:48:34:f4:aa:0c:c9:5b:3d:5b:ca:e4:70:71:55:f2:58:ec:
5e:8c:55:d7:26:62:c9:c8:25:b0:bd:e8:2d:d0:40:8a:2b:f0:
a4:c0:d5:b5:52:86:0b:e8:17:7f:90:05:f4:38:8c:fb:46:b5:
79:44:e3:a9:d8:61:2f:c7:af:b8:fb:a6:7f:2b:d3:7f:45:e9:
09:6d:32:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:24 2024 by rpki-client on console-ams.rpki-client.org