Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/N0z3ru1e9kddoJXboMi7bc-GAcQ.roa
File: N0z3ru1e9kddoJXboMi7bc-GAcQ.roa (raw, json)
Hash identifier: LW+RLgQ+gDqv/3qcozU6R/ajsLwWpI9AB/z6vugHFuE=
Subject key identifier: 37:4C:F7:AE:ED:5E:F6:47:5D:A0:95:DB:A0:C8:BB:6D:CF:86:01:C4
Certificate issuer: /CN=c75799ff4335b7b1ae7188edfa53fd7e213eb216
Certificate serial: 059BEBB6
Authority key identifier: C7:57:99:FF:43:35:B7:B1:AE:71:88:ED:FA:53:FD:7E:21:3E:B2:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1eZ_0M1t7GucYjt-lP9fiE-shY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/N0z3ru1e9kddoJXboMi7bc-GAcQ.roa
Signing time: Sat 01 Jan 2022 08:54:06 +0000
ROA not before: Sat 01 Jan 2022 08:54:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41477
IP address blocks: 91.215.164.0/22 maxlen: 22
91.215.166.0/24 maxlen: 24
91.215.165.0/24 maxlen: 24
91.215.167.0/24 maxlen: 24
185.34.164.0/22 maxlen: 22
185.34.165.0/24 maxlen: 24
185.34.166.0/24 maxlen: 24
185.34.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94104502 (0x59bebb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c75799ff4335b7b1ae7188edfa53fd7e213eb216
Validity
Not Before: Jan 1 08:54:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=374cf7aeed5ef6475da095dba0c8bb6dcf8601c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:be:4c:44:b8:32:30:32:98:4f:af:73:6c:e1:
fc:d6:3d:80:cb:dd:24:38:f4:8f:42:22:c7:ab:18:
70:94:aa:ba:f1:b2:99:92:95:97:f9:c5:44:30:9d:
a1:07:a3:6d:09:9d:92:bb:15:bd:1b:26:53:8a:52:
fd:6b:bf:81:7b:e5:28:6e:77:22:56:df:7f:d5:62:
bf:be:aa:19:28:b6:1f:c3:c3:e0:4e:7b:50:af:78:
82:fd:2e:86:49:54:4c:43:74:59:82:a1:f8:3a:f8:
94:56:86:10:66:57:d1:56:08:03:51:f3:9a:1d:aa:
2e:d4:ad:d3:f7:23:25:b0:1d:14:74:44:ef:65:6f:
10:8c:87:12:0f:64:a7:9a:ad:6e:bc:c5:e2:44:9b:
58:b3:55:e7:e1:04:ce:46:71:78:74:3e:a8:69:b3:
a9:38:79:de:93:10:ff:b0:d4:38:29:44:f0:40:96:
a8:87:5a:de:f9:58:28:dd:21:3d:10:7b:36:e8:28:
02:a7:b9:a1:60:fa:b7:0c:a3:7a:67:93:f4:04:fe:
e9:09:5b:72:1e:52:7f:06:46:79:4b:84:ca:87:d3:
34:fc:6b:c7:3e:2a:87:0a:31:24:a1:c9:d7:95:65:
0e:bc:d5:02:51:52:1f:3f:84:21:ab:75:dd:eb:21:
34:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4C:F7:AE:ED:5E:F6:47:5D:A0:95:DB:A0:C8:BB:6D:CF:86:01:C4
X509v3 Authority Key Identifier:
keyid:C7:57:99:FF:43:35:B7:B1:AE:71:88:ED:FA:53:FD:7E:21:3E:B2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1eZ_0M1t7GucYjt-lP9fiE-shY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/N0z3ru1e9kddoJXboMi7bc-GAcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1e4c03-f619-47a3-81bd-36ef7aeebe3b/1/x1eZ_0M1t7GucYjt-lP9fiE-shY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.164.0/22
185.34.164.0/22
Signature Algorithm: sha256WithRSAEncryption
12:d0:ca:d3:33:49:6d:37:a9:2f:e3:f3:db:9b:03:e4:66:cd:
71:c4:07:fd:99:6e:a4:cd:e6:1b:d5:b9:80:24:ab:66:73:1c:
32:5b:5c:36:c6:15:50:18:ea:a4:e8:98:05:f9:75:5e:ee:ad:
b2:26:87:ca:2a:b8:6f:b9:04:38:1a:24:2c:25:90:47:fb:01:
08:19:f8:2b:e9:bd:8a:8d:d1:f7:20:b1:08:97:b3:70:37:38:
cc:7d:ea:a0:33:05:28:91:35:f5:d5:0e:90:0d:b9:6e:32:6c:
d0:87:36:e0:d4:88:cf:f9:e9:a4:e3:7c:cc:9d:1c:7e:c9:aa:
68:af:45:2f:d0:7f:b8:ab:29:55:3f:c7:e3:65:c3:ff:1a:9f:
ba:ab:c0:1e:2b:01:a0:2d:3a:5d:a0:3d:34:ee:75:67:fe:0b:
ff:b5:8c:02:1b:2b:01:bf:fb:67:81:ff:66:06:23:9a:d7:82:
92:76:02:89:0d:64:c8:90:cc:7d:4c:72:a5:7b:73:5e:b9:38:
79:ae:5a:fd:47:d6:cd:11:39:a7:c9:0b:81:70:ae:f0:03:96:
4b:d1:7c:a2:83:46:9d:9c:c0:3e:97:0d:29:b4:00:ec:ec:92:
bf:5c:ac:db:f8:84:17:43:b1:37:1f:7b:18:67:9e:a8:15:11:
0c:29:6f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:03 2024 by rpki-client on console-ams.rpki-client.org