Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kTH39XlbT6nwqHgHylV984WyHz8.roa
File: kTH39XlbT6nwqHgHylV984WyHz8.roa (raw, json)
Hash identifier: g7IQsaEWQCHOabxfa28E5J+J6VZ/URJrtCx+87V9MLo=
Subject key identifier: 91:31:F7:F5:79:5B:4F:A9:F0:A8:78:07:CA:55:7D:F3:85:B2:1F:3F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07856470
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kTH39XlbT6nwqHgHylV984WyHz8.roa
Signing time: Wed 13 Apr 2022 17:22:07 +0000
ROA not before: Wed 13 Apr 2022 17:22:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207046
IP address blocks: 185.247.4.0/22 maxlen: 24
194.113.28.0/22 maxlen: 24
185.247.5.0/24 maxlen: 24
185.247.6.0/23 maxlen: 24
185.209.36.0/22 maxlen: 22
194.146.220.0/22 maxlen: 22
185.221.16.0/23 maxlen: 23
185.227.206.0/24 maxlen: 24
185.228.162.0/24 maxlen: 24
45.134.84.0/22 maxlen: 24
185.221.22.0/23 maxlen: 23
185.227.207.0/24 maxlen: 24
185.249.204.0/22 maxlen: 22
185.250.182.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126182512 (0x7856470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 13 17:22:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9131f7f5795b4fa9f0a87807ca557df385b21f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e5:40:17:a9:17:44:d4:32:f3:94:f5:58:89:
dd:23:4a:3f:6d:95:3a:6e:9d:76:68:1d:d9:32:ef:
99:1b:86:cc:6b:a4:03:8e:5d:2b:87:bc:39:07:3c:
a0:9b:06:10:12:e4:af:b4:0e:d3:f4:7e:ed:a4:26:
f7:a7:ff:87:69:99:05:45:3a:b2:4f:31:47:10:53:
a3:2a:e5:20:a0:6d:8d:90:3d:9c:44:97:01:78:62:
18:ac:b3:d0:2c:25:97:99:4c:a7:f1:cd:c5:94:d7:
a5:c2:ca:05:ff:86:d6:d4:76:1f:ce:34:01:f6:9a:
b2:0d:b4:ed:55:21:41:eb:4b:9d:3d:aa:f0:de:25:
4e:7a:3b:3b:57:84:93:0d:17:a8:54:23:93:99:0e:
22:83:7f:1e:52:2f:f2:43:c7:cc:22:d6:3d:c4:a7:
19:4a:b8:03:ee:2a:26:64:9f:70:85:5e:75:6a:b2:
67:98:5a:66:5e:55:bc:9a:54:70:45:fe:b7:c1:2b:
04:7c:9d:20:95:19:d4:f2:44:b9:e6:04:c7:51:a3:
08:c6:7a:34:22:6f:79:41:9a:06:a8:5e:cf:31:c3:
ac:cb:6d:d5:c4:0e:84:8e:a7:6f:35:d5:d7:26:74:
f6:9e:45:17:c8:c4:e2:e8:08:62:05:02:02:2b:fc:
74:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:31:F7:F5:79:5B:4F:A9:F0:A8:78:07:CA:55:7D:F3:85:B2:1F:3F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kTH39XlbT6nwqHgHylV984WyHz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.84.0/22
185.209.36.0/22
185.221.16.0/23
185.221.22.0/23
185.227.206.0/23
185.228.162.0/24
185.247.4.0/22
185.249.204.0/22
185.250.182.0/23
194.113.28.0/22
194.146.220.0/22
Signature Algorithm: sha256WithRSAEncryption
49:6f:a1:f2:72:b0:bf:6d:7f:1a:b9:ef:b6:ab:3c:09:0d:02:
82:1d:f5:c5:b8:e9:04:b5:03:20:7c:e2:c2:22:3b:d7:d9:ee:
2b:e3:c8:c3:a1:8c:a1:db:08:40:81:8f:7c:dd:79:38:c8:4f:
81:66:14:a0:f8:28:b5:9a:ef:fc:a3:97:16:ed:46:4a:c4:c3:
8d:e7:c7:17:b3:9b:10:92:6c:94:cd:58:c6:35:54:2e:74:2e:
84:9b:cf:6e:00:95:ce:f9:8a:46:fc:4e:bc:9e:bd:60:fa:2b:
ea:92:5b:7c:63:f0:f1:25:02:39:3e:d2:22:04:a1:b6:a0:8e:
78:a2:e7:72:ec:1e:b9:f7:0c:3c:2d:fd:22:dd:66:8a:7d:52:
ca:4a:b1:cc:b9:16:19:99:ff:36:19:e4:3d:c8:64:36:20:cf:
6b:40:ff:27:b0:dc:98:de:72:e0:d2:57:cf:84:46:5d:1e:4f:
73:a4:78:61:3a:7d:f0:23:0f:6f:4e:f1:34:9e:3f:04:bc:ce:
75:5b:d2:1c:a0:ca:4f:2d:39:f2:7f:3e:10:cb:59:e8:9a:19:
af:94:d0:af:15:82:e6:2e:f0:80:68:8e:ce:49:97:f6:79:87:
ac:6f:09:a1:75:8c:20:ba:cc:c6:b7:59:b4:a4:47:0c:dd:c8:
20:42:27:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org