Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/Ol6f1pyXUTKhWoJbu_ir8Fb0UNo.roa
File: Ol6f1pyXUTKhWoJbu_ir8Fb0UNo.roa (raw, json)
Hash identifier: P/2dKvyxMZvNl6e0aFKrAdS80IfQAb+v2+Gh6pr39Qs=
Subject key identifier: 3A:5E:9F:D6:9C:97:51:32:A1:5A:82:5B:BB:F8:AB:F0:56:F4:50:DA
Certificate issuer: /CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Certificate serial: 0FD05703
Authority key identifier: 6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/Ol6f1pyXUTKhWoJbu_ir8Fb0UNo.roa
Signing time: Sat 01 Jan 2022 12:00:42 +0000
ROA not before: Sat 01 Jan 2022 12:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196881
IP address blocks: 185.135.36.0/24 maxlen: 24
185.135.36.0/22 maxlen: 22
185.135.37.0/24 maxlen: 24
185.135.38.0/24 maxlen: 24
93.190.112.0/24 maxlen: 24
93.190.113.0/24 maxlen: 24
93.190.114.0/24 maxlen: 24
93.190.115.0/24 maxlen: 24
93.190.116.0/24 maxlen: 24
93.190.117.0/24 maxlen: 24
93.190.118.0/24 maxlen: 24
93.190.112.0/21 maxlen: 21
93.190.119.0/24 maxlen: 24
185.135.39.0/24 maxlen: 24
2a05:5b00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265312003 (0xfd05703)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Validity
Not Before: Jan 1 12:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a5e9fd69c975132a15a825bbbf8abf056f450da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c2:11:e7:4c:cf:47:c9:2c:53:32:54:57:2c:
56:eb:08:bd:53:71:6c:5d:f7:54:c1:8d:48:3f:1c:
d1:a4:d1:5e:22:af:ed:df:3d:86:c8:14:c5:ec:ef:
bb:1b:dc:2f:a1:26:2f:9a:9a:ac:36:06:50:eb:77:
bf:01:5d:dd:7b:c6:a3:4b:ec:73:f3:9b:02:20:b0:
f1:13:3b:1f:14:b0:2e:0e:4d:91:7a:9f:50:5c:83:
c2:9f:1b:f4:e9:9e:a1:af:94:fe:06:68:e8:15:0d:
bb:13:bf:fb:7b:f3:55:b0:76:7b:26:2d:91:7f:93:
4e:8c:0e:90:d7:46:b3:30:9d:d0:5f:c7:1b:3c:51:
f1:a6:43:bb:8e:cc:46:8b:af:23:e8:7e:60:6c:ef:
ed:14:28:aa:fe:d0:cd:ca:44:d1:46:7f:98:ea:0a:
5b:d4:5c:ed:32:ad:ec:36:bb:2d:5c:6c:88:b0:7a:
39:7f:64:70:b2:12:8a:4f:30:f8:ff:8f:21:6a:20:
56:5e:9c:d1:ab:4e:86:9a:f1:14:30:36:e3:88:09:
0e:5e:50:f9:7a:b1:c6:fb:35:94:ef:73:8c:57:60:
8a:e0:9f:b1:3e:5f:50:db:f0:79:ba:ea:a5:61:b3:
f0:d1:73:aa:b1:92:18:c4:21:a8:a1:7a:8d:21:46:
6c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:5E:9F:D6:9C:97:51:32:A1:5A:82:5B:BB:F8:AB:F0:56:F4:50:DA
X509v3 Authority Key Identifier:
keyid:6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/Ol6f1pyXUTKhWoJbu_ir8Fb0UNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.112.0/21
185.135.36.0/22
IPv6:
2a05:5b00::/29
Signature Algorithm: sha256WithRSAEncryption
30:35:34:22:0a:5d:dc:50:35:fb:34:fc:7f:88:1d:63:60:f9:
06:5f:6b:9f:d3:22:06:c0:3b:8e:18:05:a6:3f:c6:30:7e:33:
3c:26:ab:cd:72:d9:15:9a:75:55:c8:d1:2d:be:ff:dc:8a:7f:
c0:dd:59:e2:76:82:0e:86:2e:6c:e8:c3:29:42:a2:ff:7d:ec:
a1:c8:53:86:d7:3a:19:8d:40:9e:4a:72:7f:4d:7d:73:50:d4:
b4:10:ba:f4:48:2f:00:94:02:1b:0a:b6:76:80:37:53:9a:cd:
ef:ed:01:61:8e:66:f6:08:58:c2:a0:95:a9:e7:c9:7d:09:1e:
8e:b4:89:fa:7b:56:2b:bf:3b:bb:07:99:86:11:ad:35:e1:5e:
0c:97:a3:94:70:55:d0:db:02:e7:22:fc:b3:74:dc:d8:2a:72:
d0:84:55:53:8e:b9:2c:87:64:6c:25:b9:ee:f8:45:d7:ac:20:
e8:a4:5c:9f:a3:79:52:65:a1:2a:e3:a2:cc:d4:49:a2:e9:2b:
64:d7:51:74:8f:b6:1f:11:8b:2c:d0:b5:09:bb:af:d8:ac:b9:
1b:3f:43:bd:ff:bd:b8:cb:a0:a6:a0:2d:c3:ab:7a:11:b8:b2:
24:68:73:bb:bc:a8:e9:e8:cc:67:c1:ef:9f:34:21:43:4e:a8:
a0:14:77:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:59 2024 by rpki-client on console-ams.rpki-client.org