Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/RBZf5_uZza7_Lijj-vGrFLVEkNc.roa
File: RBZf5_uZza7_Lijj-vGrFLVEkNc.roa (raw, json)
Hash identifier: Vnu9rRKe/ORs1TBfcghr/k4GpzHxRtAk7oS69qNjeHk=
Subject key identifier: 44:16:5F:E7:FB:99:CD:AE:FF:2E:28:E3:FA:F1:AB:14:B5:44:90:D7
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 059B8ADF
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/RBZf5_uZza7_Lijj-vGrFLVEkNc.roa
Signing time: Wed 09 Mar 2022 11:10:09 +0000
ROA not before: Wed 09 Mar 2022 11:10:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62319
IP address blocks: 91.142.136.0/24 maxlen: 24
193.106.120.0/22 maxlen: 22
185.150.72.0/22 maxlen: 22
193.169.74.0/23 maxlen: 23
91.216.118.0/24 maxlen: 24
178.209.184.0/22 maxlen: 22
178.209.188.0/23 maxlen: 23
185.203.0.0/22 maxlen: 22
185.66.184.0/22 maxlen: 22
185.4.219.0/24 maxlen: 24
185.4.218.0/24 maxlen: 24
185.4.216.0/23 maxlen: 23
178.209.167.0/24 maxlen: 24
178.209.172.0/24 maxlen: 24
194.126.192.0/24 maxlen: 24
91.194.36.0/23 maxlen: 23
194.116.178.0/23 maxlen: 23
185.40.44.0/22 maxlen: 22
2a02:c900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94079711 (0x59b8adf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Mar 9 11:10:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44165fe7fb99cdaeff2e28e3faf1ab14b54490d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9d:6f:82:4e:22:14:b7:cc:20:76:2b:27:4b:
ad:e0:c6:f4:60:17:13:88:cd:d5:cb:51:4e:a0:f5:
ec:f4:8f:02:f1:ea:c4:ca:09:35:52:b0:79:72:ed:
c4:3a:d7:32:7f:0a:52:61:07:d1:4c:23:2f:4b:03:
fb:d7:f0:6c:0f:f2:e7:57:a7:e2:49:a6:16:9f:80:
ef:ef:57:c6:cd:99:dc:d4:df:6a:57:d9:ff:d9:3b:
5d:23:04:b6:f7:01:64:7e:d2:ca:a2:22:74:c1:31:
ab:8b:28:84:6d:da:3c:15:43:48:04:77:c9:89:0e:
76:ae:cc:9a:fa:c9:ff:9d:a9:10:8f:d8:fb:c4:ea:
e7:b7:cc:21:7e:c7:f2:92:10:a3:77:d3:ba:a1:c2:
a8:a8:af:41:cd:fd:75:92:4b:f9:d6:a0:02:3f:4d:
07:d4:ec:88:5f:e1:e3:32:2d:c5:02:ea:27:e4:6e:
4a:24:97:fe:11:d9:4e:5e:b2:57:c7:7d:f9:78:03:
4e:17:8c:ba:55:88:c8:54:fe:16:0e:7c:cd:48:40:
b1:18:82:22:b5:62:37:9a:53:63:b3:7b:4c:3d:d7:
36:26:bb:0d:51:b4:0a:28:f9:f3:0d:1a:18:5d:11:
84:de:be:53:81:fe:ee:94:d8:9a:0e:15:5b:f5:c0:
c5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:16:5F:E7:FB:99:CD:AE:FF:2E:28:E3:FA:F1:AB:14:B5:44:90:D7
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/RBZf5_uZza7_Lijj-vGrFLVEkNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.136.0/24
91.194.36.0/23
91.216.118.0/24
178.209.167.0/24
178.209.172.0/24
178.209.184.0-178.209.189.255
185.4.216.0/22
185.40.44.0/22
185.66.184.0/22
185.150.72.0/22
185.203.0.0/22
193.106.120.0/22
193.169.74.0/23
194.116.178.0/23
194.126.192.0/24
IPv6:
2a02:c900::/29
Signature Algorithm: sha256WithRSAEncryption
00:73:17:5d:20:b8:fc:49:cd:1f:5f:3e:3f:60:fc:d0:c8:21:
dd:85:3b:90:7c:8e:f7:e0:f6:a6:19:94:e0:e9:23:d6:08:42:
be:87:d4:9b:a1:6a:b4:2f:b2:cf:e8:99:4c:93:4d:79:6a:92:
53:23:72:aa:14:d2:d0:00:f2:ba:5b:c9:10:3f:38:c7:e6:3a:
d6:9e:05:2d:52:17:c8:62:e6:41:45:81:77:24:48:08:d1:e8:
97:4d:db:29:d6:ee:0e:f8:fd:1f:2d:6b:fd:dd:b9:7d:2a:e9:
85:e6:da:a0:c8:65:e6:df:c7:97:87:71:2b:e0:26:30:ef:fe:
ea:70:ab:c6:4c:ab:2f:c3:f9:ed:47:c4:1c:25:b2:f4:b9:02:
bd:b9:ae:33:39:e8:9a:f9:7d:72:d0:95:c8:d1:b0:05:0b:db:
1e:4d:61:4f:65:cd:8f:22:ba:e6:30:da:c6:48:19:96:db:97:
f0:9e:fe:4c:c1:9c:86:18:69:a7:37:5b:89:aa:b9:08:ea:aa:
6b:7b:21:3a:ac:d7:d0:14:67:2d:fd:b8:03:a3:c8:d3:06:8f:
6a:91:e8:19:0f:63:43:1c:dd:71:8a:c3:f4:b6:d9:59:ad:5e:
70:b3:6d:dc:8e:2f:93:0e:de:17:b2:fd:2f:71:af:4f:b9:87:
cf:28:d6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:55 2023 by rpki-client on console-fra.rpki-client.org