Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bNMPgjl_MVg026Aq7mc8XAwLgAo.roa
File: bNMPgjl_MVg026Aq7mc8XAwLgAo.roa (raw, json)
Hash identifier: I/HNZGmnk7/5lmfBVX1Iw6dsSNHJsNhDqBQfJvpEpjs=
Subject key identifier: 6C:D3:0F:82:39:7F:31:58:34:DB:A0:2A:EE:67:3C:5C:0C:0B:80:0A
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 01830CC778B2E31A157C8981D8A205EA7F55
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bNMPgjl_MVg026Aq7mc8XAwLgAo.roa
Signing time: Mon 05 Sep 2022 08:32:22 +0000
ROA not before: Mon 05 Sep 2022 08:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.37.196.0/22 maxlen: 24
88.214.52.0/22 maxlen: 24
45.87.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:c7:78:b2:e3:1a:15:7c:89:81:d8:a2:05:ea:7f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Sep 5 08:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cd30f82397f315834dba02aee673c5c0c0b800a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:15:68:bf:fb:37:32:64:40:a9:58:89:99:
25:b5:98:79:e4:ca:03:b1:43:e0:38:a7:c4:cc:98:
2e:dd:11:0a:11:db:58:da:fc:a9:fe:4d:11:53:4c:
b9:4a:30:18:99:b6:b8:1b:75:1c:f5:be:f7:ed:31:
9a:4c:11:21:71:97:b3:f3:40:ef:9e:57:97:c7:ac:
d0:ea:ca:47:3c:2e:8f:81:5b:bf:c5:f1:ed:a0:db:
86:9c:73:3b:a2:f1:5e:09:ae:e7:1d:b3:67:10:2c:
29:88:c5:a5:f3:a6:9f:ac:ed:5c:29:c6:5e:fc:18:
9c:a1:03:c7:ff:80:ef:f9:1d:21:b5:60:4e:f3:a8:
ce:a2:01:18:46:71:92:f8:29:0c:20:8d:aa:99:8a:
db:85:a1:9a:95:5d:78:22:0a:18:62:b6:98:91:65:
d2:33:2a:76:d4:cd:1e:25:7b:12:b7:f5:5c:08:4f:
3b:20:22:99:b8:2b:e6:0f:a3:f7:12:34:9a:e3:86:
ed:98:45:6d:da:6f:51:44:65:ee:68:e5:cb:64:e0:
23:50:d6:f9:de:59:75:c4:6a:96:c5:c6:34:e4:d0:
a4:7d:db:92:32:f6:39:1a:86:2e:61:74:d4:8e:f7:
55:ec:42:62:b4:fe:4f:53:53:11:a0:9c:51:53:ba:
44:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D3:0F:82:39:7F:31:58:34:DB:A0:2A:EE:67:3C:5C:0C:0B:80:0A
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bNMPgjl_MVg026Aq7mc8XAwLgAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.44.0/22
88.214.52.0/22
193.37.196.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:b8:88:91:c1:49:e5:7a:86:16:fd:3f:8f:9e:6e:4f:2c:d2:
36:fe:0b:73:44:dc:36:64:84:5e:ee:0c:57:9d:d4:32:a0:6f:
cd:38:c6:e8:e4:3e:d8:fa:1e:ac:bf:73:ce:f5:ae:ef:23:cf:
d9:4f:96:e9:ed:23:0a:2d:76:8a:04:6c:b1:07:96:53:c2:e7:
3a:e4:b9:5c:cd:22:17:a1:70:d4:ba:fd:4a:cc:38:90:dd:4d:
2b:ae:20:26:8d:e1:9a:56:30:33:c1:74:1a:0d:79:74:5f:6d:
20:ac:91:a6:75:9b:7b:86:50:5f:ce:35:29:f4:d6:1f:b5:d9:
f1:85:94:97:90:6b:77:1c:50:63:dc:49:15:71:d7:f5:f0:46:
40:78:0c:85:8c:88:5f:35:81:74:8d:a6:f5:5d:2a:f0:97:10:
ad:58:30:16:e5:15:a8:81:43:6d:06:0b:d9:7e:e0:b9:e3:45:
0b:77:ca:b6:20:c0:a2:81:eb:4c:75:67:6f:60:1b:3b:f6:3d:
7d:f1:72:8d:b4:1f:51:39:63:f0:79:5e:82:a8:ce:3c:79:32:
20:63:41:91:fd:57:54:a9:44:0f:f1:0f:92:b6:2e:1c:90:57:
f8:7b:ea:62:e2:4a:ad:1b:72:3a:a6:0c:40:43:3f:3e:68:6e:
a4:5c:61:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org