Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/np0BEVy-5gDfl2EAP38XeEdqRBs.roa
File: np0BEVy-5gDfl2EAP38XeEdqRBs.roa (raw, json)
Hash identifier: rAET66brESz0qxTABD5bbNuuh5vuFyOZH8efW++Icjo=
Subject key identifier: 9E:9D:01:11:5C:BE:E6:00:DF:97:61:00:3F:7F:17:78:47:6A:44:1B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0646536B
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/np0BEVy-5gDfl2EAP38XeEdqRBs.roa
Signing time: Sat 01 Jan 2022 06:52:40 +0000
ROA not before: Sat 01 Jan 2022 06:52:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202636
IP address blocks: 185.252.44.0/22 maxlen: 22
185.248.200.0/22 maxlen: 24
37.32.96.0/23 maxlen: 23
185.150.78.0/23 maxlen: 23
185.150.77.0/24 maxlen: 24
185.191.44.0/22 maxlen: 22
93.189.122.0/24 maxlen: 24
93.189.121.0/24 maxlen: 24
185.239.254.0/24 maxlen: 24
193.8.114.0/23 maxlen: 23
194.41.118.0/23 maxlen: 23
194.41.116.0/23 maxlen: 23
194.35.41.0/24 maxlen: 24
194.35.42.0/24 maxlen: 24
185.218.18.0/24 maxlen: 24
185.227.205.0/24 maxlen: 24
45.134.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105272171 (0x646536b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e9d01115cbee600df9761003f7f1778476a441b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:03:28:bd:40:29:5e:c3:d7:f9:97:03:ab:2b:
ee:9c:26:fd:dd:ea:ad:f8:12:f6:fc:20:e2:e8:27:
08:be:d8:24:fe:c9:9e:3c:8a:27:d9:e2:60:66:88:
9a:00:1d:93:47:e3:eb:dd:04:21:1b:49:8f:fa:0d:
de:2d:42:d2:75:66:d6:ce:28:e1:d3:d5:6e:2e:58:
d5:11:44:08:6b:a4:46:ff:66:37:a3:df:ad:cd:f7:
49:6a:bb:bf:5c:f9:6c:ae:94:47:4f:2c:51:17:e1:
49:d0:70:29:85:2b:42:6e:6d:95:5b:e6:0a:bd:fe:
6e:36:af:eb:f4:30:da:b3:44:49:fd:6d:5d:72:96:
8a:e0:4d:f0:1a:1a:46:a4:17:b0:6d:95:34:1d:4b:
1d:ef:7d:08:1a:fb:c5:d7:e7:b7:5e:d4:17:ad:13:
33:9b:01:77:ab:8a:38:c4:a3:6b:2a:7f:fa:24:65:
93:02:e4:80:af:3b:4f:cf:f1:a6:fe:0e:3d:f0:54:
8c:83:a6:00:fe:cd:09:8e:54:5b:cb:5f:c9:87:81:
8a:27:bf:c9:9e:12:bc:4f:78:03:e7:8c:ac:5a:ea:
7f:cb:27:d7:53:6a:13:3e:a5:a0:ee:c2:bc:60:fa:
24:d2:fa:9b:31:56:99:76:b0:4a:42:95:44:64:aa:
59:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9D:01:11:5C:BE:E6:00:DF:97:61:00:3F:7F:17:78:47:6A:44:1B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/np0BEVy-5gDfl2EAP38XeEdqRBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.96.0/23
45.134.87.0/24
93.189.121.0-93.189.122.255
185.150.77.0-185.150.79.255
185.191.44.0/22
185.218.18.0/24
185.227.205.0/24
185.239.254.0/24
185.248.200.0/22
185.252.44.0/22
193.8.114.0/23
194.35.41.0-194.35.42.255
194.41.116.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:83:12:6c:38:71:36:f6:2d:ee:b0:ba:77:a9:c9:c6:25:bb:
c1:c4:d1:e7:8b:60:68:ac:53:f8:3d:c8:68:e4:51:da:59:cf:
41:e5:0c:92:cc:a4:31:0b:44:bb:a0:ae:99:53:7c:af:48:c9:
ad:e1:34:5b:47:21:56:0c:c8:8f:e8:71:81:a8:c5:ee:0d:ae:
44:de:ac:59:76:5d:7b:cf:3c:be:a5:a5:61:9b:2a:c3:b1:36:
b3:39:3a:af:46:83:27:ff:9f:4a:6a:d2:12:cc:93:6f:cd:ca:
df:d9:88:fe:eb:8c:2e:e9:dd:55:8d:26:86:41:53:b1:a7:18:
75:d7:c3:26:8a:c9:5b:a4:fd:e2:0f:6b:af:ed:99:c8:b5:31:
a9:d3:76:17:43:f6:0f:35:9c:98:c9:24:26:3f:8d:1a:e4:7b:
a6:59:0c:4f:76:1b:2f:c2:d9:c2:0a:bf:20:72:b5:6e:49:ff:
bb:e2:ac:d1:41:3a:6c:35:52:7c:33:45:f6:30:d7:4b:f6:96:
63:33:e1:ba:3d:23:c2:66:d4:b0:e2:44:95:a9:21:82:82:c4:
ff:67:1d:87:25:3e:31:f5:ae:c3:57:03:9c:ae:e2:3e:5b:16:
d4:64:21:d2:45:c7:73:89:46:26:fc:dd:2d:e2:e4:38:3c:37:
be:46:49:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org