Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/s797BZnqt33cyRXX7ECadJUDjTw.roa
File: s797BZnqt33cyRXX7ECadJUDjTw.roa (raw, json)
Hash identifier: 7DUSF6Z7CraJ8aMrAa65ZQ9DBvu3ZSjSTNZ+K9+NW34=
Subject key identifier: B3:BF:7B:05:99:EA:B7:7D:DC:C9:15:D7:EC:40:9A:74:95:03:8D:3C
Certificate issuer: /CN=2b9efb5878d3b3634dc1ccb90ac48e0b89d1c879
Certificate serial: 0C1EF19F
Authority key identifier: 2B:9E:FB:58:78:D3:B3:63:4D:C1:CC:B9:0A:C4:8E:0B:89:D1:C8:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K577WHjTs2NNwcy5CsSOC4nRyHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/s797BZnqt33cyRXX7ECadJUDjTw.roa
Signing time: Tue 01 Mar 2022 18:25:31 +0000
ROA not before: Tue 01 Mar 2022 18:25:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202090
IP address blocks: 178.159.44.0/24 maxlen: 24
178.159.44.0/22 maxlen: 22
178.159.46.0/24 maxlen: 24
178.159.47.0/24 maxlen: 24
178.159.45.0/24 maxlen: 24
185.99.142.0/23 maxlen: 24
185.99.142.0/24 maxlen: 24
185.99.143.0/24 maxlen: 24
185.65.137.0/24 maxlen: 24
193.176.180.0/24 maxlen: 24
193.176.181.0/24 maxlen: 24
193.176.180.0/22 maxlen: 22
193.176.183.0/24 maxlen: 24
193.176.182.0/24 maxlen: 24
81.91.191.0/24 maxlen: 24
81.91.190.0/24 maxlen: 24
185.47.152.0/23 maxlen: 23
2a0c:b1c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203354527 (0xc1ef19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b9efb5878d3b3634dc1ccb90ac48e0b89d1c879
Validity
Not Before: Mar 1 18:25:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3bf7b0599eab77ddcc915d7ec409a7495038d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8d:bd:59:36:87:b5:96:7f:cd:e4:f3:d4:e2:
c4:5c:35:26:ce:12:92:08:4e:57:25:54:56:eb:14:
79:2c:2b:ea:14:6c:ca:b4:96:65:f0:3e:7c:b3:af:
48:7e:e7:7e:5a:a3:53:e4:ed:ef:05:b1:9f:2c:e5:
7c:77:7e:57:48:a8:02:9f:c7:56:57:b7:62:79:d3:
e7:09:fa:76:b9:99:89:f4:31:9e:49:b0:eb:f6:5d:
27:8e:55:1a:7d:9e:1e:6e:4f:e4:64:7f:3f:27:d2:
08:32:59:02:c3:03:48:01:ba:4c:6e:4e:f7:7b:c3:
d0:70:d9:0b:65:48:dc:3f:e0:dd:0f:f4:3c:26:5e:
0c:68:ce:c2:cf:c1:db:7c:55:a0:f3:3c:11:52:6a:
bf:66:9c:3d:16:9f:25:49:83:c6:d1:09:4a:a2:2b:
e0:78:65:be:f5:4e:6c:ec:ad:e3:28:64:ff:93:a2:
1b:44:83:a7:42:db:78:33:32:18:96:30:4a:0a:4e:
74:33:e2:38:ee:a6:41:83:ec:df:06:eb:d9:1b:b8:
3d:40:db:89:93:0c:c5:8a:21:54:0e:c4:96:93:74:
43:cf:e3:1f:8c:62:a9:f3:de:7d:08:68:fd:19:80:
60:30:ed:36:5b:e0:0e:a1:81:ff:19:54:4a:09:8b:
72:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BF:7B:05:99:EA:B7:7D:DC:C9:15:D7:EC:40:9A:74:95:03:8D:3C
X509v3 Authority Key Identifier:
keyid:2B:9E:FB:58:78:D3:B3:63:4D:C1:CC:B9:0A:C4:8E:0B:89:D1:C8:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K577WHjTs2NNwcy5CsSOC4nRyHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/s797BZnqt33cyRXX7ECadJUDjTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/d03608-3c67-423d-b18d-4bcd3d58463a/1/K577WHjTs2NNwcy5CsSOC4nRyHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.91.190.0/23
178.159.44.0/22
185.47.152.0/23
185.65.137.0/24
185.99.142.0/23
193.176.180.0/22
IPv6:
2a0c:b1c0::/32
Signature Algorithm: sha256WithRSAEncryption
de:64:72:cc:e9:fa:d0:41:e2:b7:6e:a3:03:56:85:94:32:31:
8f:24:53:24:20:fd:8d:11:e4:79:b4:e0:9a:ea:f1:00:16:ae:
39:0f:d9:89:d1:b5:7c:43:5d:1f:78:1b:e5:1c:6f:6c:bc:cb:
d4:5d:d1:2d:c4:54:4c:b7:4b:e7:93:87:99:fa:02:7a:96:2e:
2c:f1:f8:46:36:b8:9a:a6:3a:3c:bf:a0:fc:96:4f:8e:83:d2:
1a:76:57:e8:1a:e8:69:65:73:da:34:0b:1c:be:cb:ce:12:01:
65:9e:fe:3b:03:f1:59:5d:9f:64:da:2e:18:7a:f5:8e:db:34:
c7:75:af:65:43:e9:6f:f2:f7:76:7f:ee:50:6c:7e:79:71:2a:
c9:7e:7e:10:68:a5:02:fa:03:fb:38:8d:b0:03:84:3b:df:b8:
fd:38:5e:2a:0b:10:44:a4:09:6d:c7:17:48:98:9e:e7:ec:04:
ca:7c:b5:2b:aa:35:57:e7:b1:aa:f4:80:c9:68:6b:9e:67:17:
98:1d:4a:7d:f1:36:8b:77:08:b0:8c:27:89:92:17:de:fb:5b:
3a:4a:4f:1e:77:9a:43:13:e3:a9:53:05:83:f5:c2:ce:68:88:
28:c5:a5:e1:71:28:80:1a:94:4a:14:e4:a2:31:98:83:47:5b:
9c:4b:f4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:12 2023 by rpki-client on console-fra.rpki-client.org