Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/Rx02Iaeah_PajX0sQrTXaqO8JBg.roa
File: Rx02Iaeah_PajX0sQrTXaqO8JBg.roa (raw, json)
Hash identifier: 2LyEwr03IzORPLZIhSnJhjPcCtbcPJS2VXh2xcZJpFI=
Subject key identifier: 47:1D:36:21:A7:9A:87:F3:DA:8D:7D:2C:42:B4:D7:6A:A3:BC:24:18
Certificate issuer: /CN=c67e2a46e34f491433c8b62f319b902bddfde831
Certificate serial: 04A08D12
Authority key identifier: C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/Rx02Iaeah_PajX0sQrTXaqO8JBg.roa
Signing time: Mon 11 Apr 2022 06:56:17 +0000
ROA not before: Mon 11 Apr 2022 06:56:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213371
IP address blocks: 185.209.15.0/24 maxlen: 24
37.49.230.0/24 maxlen: 24
37.49.229.0/24 maxlen: 24
37.49.228.0/24 maxlen: 24
77.247.109.0/24 maxlen: 24
185.53.88.0/24 maxlen: 24
185.53.89.0/24 maxlen: 24
37.49.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77630738 (0x4a08d12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e2a46e34f491433c8b62f319b902bddfde831
Validity
Not Before: Apr 11 06:56:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=471d3621a79a87f3da8d7d2c42b4d76aa3bc2418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:90:f6:99:d6:73:d0:26:c4:cf:2c:8b:b3:8c:
cd:81:91:2e:28:db:01:cc:fb:c9:e8:c0:36:44:0e:
3e:24:d2:49:f6:bf:18:19:2b:e1:7a:12:94:3a:24:
8b:a4:2c:16:e2:2d:66:d0:dc:d5:15:80:d1:49:1f:
e6:af:5a:12:32:2d:c9:a2:ba:c1:a5:7a:54:f7:87:
ed:11:b8:02:40:65:84:a1:5b:95:03:30:c6:54:0d:
2d:c7:59:42:90:ec:a3:03:90:31:ac:de:9c:80:59:
42:1b:6b:66:d2:a6:85:ed:79:52:f8:4c:f7:83:14:
15:a1:63:5e:ed:93:42:bd:a3:65:bb:50:0a:93:16:
ee:65:76:ed:01:ea:b2:f3:e4:ff:0e:59:59:93:46:
98:23:3f:3e:2f:03:fc:fd:4e:0a:d6:a9:e5:b3:11:
ba:6a:f1:1c:6b:58:ba:2f:a6:9f:c0:3f:08:df:fc:
a7:10:b9:93:00:47:93:ea:65:d6:06:7a:9e:b5:2f:
8f:16:7f:9d:9b:3b:c8:32:01:c5:34:60:39:ec:8d:
85:49:25:8b:cc:5d:c2:cd:ac:3c:5a:b8:5f:ab:98:
5d:ba:8f:1f:ea:88:4a:78:9e:e7:04:b1:f3:e7:82:
32:f8:b5:c0:1d:b5:a4:7f:d8:34:c3:80:16:19:cf:
b7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1D:36:21:A7:9A:87:F3:DA:8D:7D:2C:42:B4:D7:6A:A3:BC:24:18
X509v3 Authority Key Identifier:
keyid:C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/Rx02Iaeah_PajX0sQrTXaqO8JBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/xn4qRuNPSRQzyLYvMZuQK9396DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.224.0/24
37.49.228.0-37.49.230.255
77.247.109.0/24
185.53.88.0/23
185.209.15.0/24
Signature Algorithm: sha256WithRSAEncryption
09:e6:6d:f6:9c:b4:b2:c8:49:e5:72:ea:3b:3d:00:f3:a1:d0:
44:a2:65:19:13:de:25:d8:c9:9f:a6:90:03:dd:33:6f:45:0b:
90:17:3b:76:27:56:ad:74:d4:bb:30:c5:da:47:ba:32:c5:15:
9c:79:80:91:95:34:01:af:30:e8:9f:f3:12:73:99:05:43:87:
b4:ac:df:79:2a:34:23:a2:e7:1d:d5:97:10:f9:e6:59:35:a4:
f2:b0:1f:4b:14:bb:b1:c9:1f:17:05:bd:69:70:b7:c0:24:a5:
73:d1:51:f4:74:5d:99:66:b7:e5:6a:b6:ba:49:aa:7f:ea:58:
42:78:9b:6a:14:9e:07:17:af:34:ec:53:b3:73:97:5a:67:96:
3a:61:c4:5a:30:50:59:98:e1:15:ca:3e:91:6b:3e:45:67:6a:
2a:b6:53:e9:95:d7:09:71:5d:00:ec:cd:7c:17:95:71:37:23:
cd:e4:33:f6:1b:9f:fb:55:d4:b5:b1:12:e2:8c:7c:e1:a7:40:
14:84:c1:5e:da:73:92:7e:30:d5:80:2a:fa:63:86:d6:75:62:
65:f9:e9:37:7c:c0:7a:88:b6:68:f6:99:aa:bc:c8:cd:7b:d1:
36:66:d6:bf:a2:f0:24:d1:ad:bc:bf:d9:27:8e:1d:66:51:d4:
0f:f5:b7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:50 2024 by rpki-client on console-ams.rpki-client.org