Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/msJ0gNtaTygyoEzk6gC-AYKoOjQ.roa
File: msJ0gNtaTygyoEzk6gC-AYKoOjQ.roa (raw, json)
Hash identifier: VbL1aAbMzfzfZUbCHZ0RPaU/mRTI+GwAZqweD9S9ajc=
Subject key identifier: 9A:C2:74:80:DB:5A:4F:28:32:A0:4C:E4:EA:00:BE:01:82:A8:3A:34
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0181CEF765ABBE3B969CA2318FCA630E752B
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/msJ0gNtaTygyoEzk6gC-AYKoOjQ.roa
Signing time: Tue 05 Jul 2022 15:25:28 +0000
ROA not before: Tue 05 Jul 2022 15:25:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202636
IP address blocks: 185.252.44.0/22 maxlen: 22
185.248.200.0/22 maxlen: 24
37.32.96.0/23 maxlen: 23
185.150.78.0/23 maxlen: 23
185.150.77.0/24 maxlen: 24
185.191.44.0/22 maxlen: 22
93.189.122.0/24 maxlen: 24
93.189.121.0/24 maxlen: 24
185.239.254.0/24 maxlen: 24
193.8.114.0/23 maxlen: 23
194.41.118.0/23 maxlen: 23
194.41.116.0/23 maxlen: 23
194.35.41.0/24 maxlen: 24
185.218.18.0/24 maxlen: 24
185.227.205.0/24 maxlen: 24
45.134.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:f7:65:ab:be:3b:96:9c:a2:31:8f:ca:63:0e:75:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 5 15:25:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ac27480db5a4f2832a04ce4ea00be0182a83a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:92:2e:50:20:e0:80:6f:23:2f:ca:ee:56:79:
29:4d:d4:14:f0:62:9a:6d:19:c4:ba:22:b6:91:ea:
4d:cf:8c:ef:67:20:72:1c:75:ab:2d:e3:0c:97:4f:
d2:19:ba:ca:50:19:50:f5:a2:ce:f2:fd:18:99:e1:
f6:a6:42:f2:6e:9d:fc:3a:4a:a8:f7:66:82:0e:1b:
1d:0e:56:fd:9a:45:16:eb:fe:58:5c:de:f1:28:6d:
39:32:94:c1:9a:5d:75:82:65:2e:2e:d4:d6:54:f5:
5b:02:a4:7b:ca:e4:50:b4:f3:4d:52:bf:af:3b:de:
ea:69:f3:c2:77:1e:02:9b:1b:6e:71:ec:f0:4b:93:
f7:07:48:7d:05:47:8b:68:f6:18:7f:ca:48:db:d0:
8c:79:cc:aa:d5:e8:af:2b:04:e8:9e:11:2d:4f:20:
6d:95:ca:0e:05:9c:7a:da:db:93:ae:ee:20:f3:1c:
f3:8a:0b:87:9d:d1:99:90:89:e0:4b:9a:e4:d3:1e:
f1:a3:6b:bb:fa:c9:8c:da:c3:51:d3:73:15:aa:d6:
8f:69:ea:b7:d1:c5:5f:38:05:5e:58:eb:43:a1:cb:
fc:a5:93:ee:a4:f7:08:ee:40:d7:ff:86:a2:9e:0f:
3d:ae:e4:ef:d6:49:b8:ad:30:ed:5f:5a:3e:76:fc:
f9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C2:74:80:DB:5A:4F:28:32:A0:4C:E4:EA:00:BE:01:82:A8:3A:34
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/msJ0gNtaTygyoEzk6gC-AYKoOjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.96.0/23
45.134.87.0/24
93.189.121.0-93.189.122.255
185.150.77.0-185.150.79.255
185.191.44.0/22
185.218.18.0/24
185.227.205.0/24
185.239.254.0/24
185.248.200.0/22
185.252.44.0/22
193.8.114.0/23
194.35.41.0/24
194.41.116.0/22
Signature Algorithm: sha256WithRSAEncryption
48:b2:e7:ce:e0:c2:bb:d0:dc:77:10:09:d6:f9:5f:85:ff:4e:
6b:ae:96:76:e7:9b:30:9b:bb:4a:52:db:a7:3e:e3:54:02:57:
b1:e7:40:ab:b4:b2:f5:e4:9b:8f:54:52:3b:7e:90:00:47:e7:
dd:49:5f:be:94:25:51:a2:40:de:1b:0e:af:f7:78:91:6a:c3:
d6:f2:68:1c:53:d7:6c:4a:b7:11:22:c9:77:fc:1f:2d:69:df:
3a:b9:df:bd:49:9d:8c:1e:02:30:1d:2c:df:e6:fb:61:f4:9a:
ef:39:c6:a3:ac:96:6d:b4:13:09:63:e0:39:f8:90:ad:85:c0:
84:2a:0f:df:ae:a7:c1:d2:d9:2f:46:fe:50:5f:25:97:3d:15:
c4:90:1e:5b:9d:ff:66:7c:2c:7f:7d:31:1b:6b:5b:fb:11:96:
45:00:61:9f:f3:69:d9:ca:9f:52:f7:36:80:c3:a4:ef:2d:46:
30:1d:5f:c3:59:b8:a4:65:9a:05:ec:fb:26:c4:53:13:d8:55:
80:15:0f:ac:78:16:94:49:2d:a5:12:e6:f7:9f:eb:56:9f:e1:
6f:e9:8e:27:ee:ae:54:88:30:fb:60:8e:e8:47:15:9b:d0:99:
87:cb:ec:7f:ed:a6:dd:ec:c9:6f:ff:a3:ab:fe:8e:71:93:93:
5b:fe:18:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org