Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Y31gTxTNKnQ2rZjuCJ3FB_Eq5Hw.roa
File: Y31gTxTNKnQ2rZjuCJ3FB_Eq5Hw.roa (raw, json)
Hash identifier: sZ3qVn4JbhxnK3GsEf3GzRz/LjnAqDf2a9F5LmyVRsU=
Subject key identifier: 63:7D:60:4F:14:CD:2A:74:36:AD:98:EE:08:9D:C5:07:F1:2A:E4:7C
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1969938E
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Y31gTxTNKnQ2rZjuCJ3FB_Eq5Hw.roa
Signing time: Sun 03 Apr 2022 02:40:12 +0000
ROA not before: Sun 03 Apr 2022 02:40:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26636
IP address blocks: 45.12.232.0/24 maxlen: 32
45.82.206.0/23 maxlen: 32
185.182.60.0/24 maxlen: 32
92.119.150.0/23 maxlen: 32
91.188.203.0/24 maxlen: 32
193.187.155.0/24 maxlen: 24
193.187.154.0/24 maxlen: 24
193.187.153.0/24 maxlen: 24
45.14.46.0/24 maxlen: 32
45.10.3.0/24 maxlen: 32
2.59.174.0/23 maxlen: 32
45.10.2.0/24 maxlen: 32
213.232.104.0/24 maxlen: 24
193.160.212.0/24 maxlen: 24
5.181.148.0/23 maxlen: 32
185.226.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 426349454 (0x1969938e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 3 02:40:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=637d604f14cd2a7436ad98ee089dc507f12ae47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a3:0d:64:d9:ba:53:d6:c0:1c:a5:69:9e:42:
d6:60:90:f8:71:62:7a:a0:c4:6c:5f:e9:9d:8c:ac:
ad:d1:8d:6a:c6:fa:60:8a:14:8e:b6:18:51:7a:cc:
46:d3:7c:e5:26:20:7e:44:e6:69:e4:22:d0:b1:45:
10:6c:95:66:6d:fe:62:bc:9c:20:05:37:fd:44:c6:
80:c9:b9:9f:87:22:36:f2:78:49:bd:38:f7:83:a2:
50:42:c4:79:e0:d0:28:6a:37:a3:b0:fd:28:a0:66:
0e:5f:ed:3e:aa:ce:f6:38:1e:ee:5c:46:3a:e0:19:
4e:69:9a:4e:7a:30:b2:75:3c:37:2b:7a:bf:3e:ac:
43:67:64:3a:92:8a:7f:9f:c6:57:5e:0b:55:63:11:
b1:86:9c:0c:fc:78:2c:c8:52:63:db:a2:fe:41:1f:
43:e1:3c:6a:36:52:9d:14:f2:78:53:d9:09:52:31:
00:86:f5:b6:c4:ff:bd:8e:92:d0:f2:6d:31:95:f7:
34:df:0f:79:9d:a4:fd:cb:74:0f:38:a5:e7:df:4f:
7a:2b:25:33:11:7b:64:07:c2:52:cc:07:f7:a7:10:
d7:72:26:92:5c:44:5e:dc:3e:00:4e:d9:30:37:27:
12:6c:f1:11:9b:19:9b:38:55:c1:82:43:90:37:40:
4d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:7D:60:4F:14:CD:2A:74:36:AD:98:EE:08:9D:C5:07:F1:2A:E4:7C
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Y31gTxTNKnQ2rZjuCJ3FB_Eq5Hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.174.0/23
5.181.148.0/23
45.10.2.0/23
45.12.232.0/24
45.14.46.0/24
45.82.206.0/23
91.188.203.0/24
92.119.150.0/23
185.182.60.0/24
185.226.75.0/24
193.160.212.0/24
193.187.153.0-193.187.155.255
213.232.104.0/24
Signature Algorithm: sha256WithRSAEncryption
31:7a:84:e8:9a:83:7a:49:e5:67:a8:27:1f:18:9b:71:d8:29:
e9:17:14:b6:a0:f9:69:26:f3:0d:c2:7f:c2:96:ca:cd:b7:f3:
53:6c:ab:1d:99:f5:f6:13:df:67:49:79:0f:d3:12:0b:5f:48:
cb:9e:eb:3a:4b:e5:4f:72:44:ab:99:d7:c1:b1:35:6d:69:49:
b5:fa:7e:25:97:2b:f9:b2:9e:46:ab:ff:74:4f:7b:83:70:2c:
fd:81:b2:ec:ab:ad:ce:cd:b3:38:31:74:8f:5d:7c:7f:93:ba:
48:1c:6b:76:4c:d5:63:79:bf:0a:fc:03:72:39:9d:9d:5a:a7:
31:0f:7f:6e:94:84:bd:2a:d6:b9:97:f4:61:ce:9c:9a:1f:6a:
e5:cd:80:b1:38:48:bb:c5:89:ce:7e:dc:da:28:77:95:a0:79:
79:99:b7:bc:e7:57:e6:03:16:61:89:34:4c:be:2a:80:3d:2f:
19:43:c1:ed:e6:cf:06:64:77:23:09:c5:06:63:ff:82:e7:84:
51:a5:7e:39:84:71:be:3c:47:c6:16:77:e8:27:f8:fe:b1:ba:
33:bd:e8:13:66:83:c0:6b:db:2b:e1:fd:0b:17:2b:f8:0d:17:
fa:ac:ca:85:51:d1:ca:ae:99:92:51:de:ea:a9:c8:94:e1:63:
10:09:ba:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org