Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/0weY4ZFvtMluQIDlrAJXEXQJFXQ.roa
File: 0weY4ZFvtMluQIDlrAJXEXQJFXQ.roa (raw, json)
Hash identifier: XleIBRzG9aPVzQoTPz79RTMpubbwATejUF9QGDYozn4=
Subject key identifier: D3:07:98:E1:91:6F:B4:C9:6E:40:80:E5:AC:02:57:11:74:09:15:74
Certificate issuer: /CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Certificate serial: 0EA8345D
Authority key identifier: 69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/0weY4ZFvtMluQIDlrAJXEXQJFXQ.roa
Signing time: Wed 22 Jun 2022 12:57:32 +0000
ROA not before: Wed 22 Jun 2022 12:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198936
IP address blocks: 91.105.253.0/24 maxlen: 24
91.105.252.0/24 maxlen: 24
91.105.248.0/24 maxlen: 24
91.105.249.0/24 maxlen: 24
91.105.251.0/24 maxlen: 24
91.105.250.0/24 maxlen: 24
91.105.254.0/24 maxlen: 24
91.105.255.0/24 maxlen: 24
185.159.239.0/24 maxlen: 24
185.159.238.0/23 maxlen: 23
185.159.238.0/24 maxlen: 24
2a01:7bc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245904477 (0xea8345d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Validity
Not Before: Jun 22 12:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d30798e1916fb4c96e4080e5ac02571174091574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8b:93:a8:de:12:23:b6:5b:3a:b8:a2:af:c0:
6a:a7:62:91:63:3e:ed:cb:4b:57:79:e8:7f:92:81:
c3:6d:62:89:8d:dc:bc:1a:a5:f0:1b:62:33:66:16:
15:e7:f1:1a:fb:10:e5:49:9c:fb:a4:37:7f:13:8e:
d6:07:db:bb:71:bc:95:aa:3b:f6:43:18:5c:ba:4e:
29:ec:dc:a1:ae:17:02:22:42:66:36:d7:46:66:2e:
73:72:db:87:f3:9c:dd:b1:01:25:8d:80:7f:d7:a6:
c1:2f:3e:e4:2f:10:6b:62:d8:fa:a5:ed:93:6b:5c:
77:b2:fe:46:00:ce:34:30:04:5d:fb:88:40:5f:9b:
09:9e:71:08:1a:d1:88:47:59:79:2c:78:5d:b0:dd:
31:bb:19:d0:30:f9:4e:91:9b:7a:0b:07:7a:cd:cc:
60:89:d5:83:87:1d:71:4a:a5:10:5c:61:ed:61:b0:
0e:b1:63:64:91:7d:52:03:2b:4a:28:93:02:ed:91:
87:01:30:54:cd:9c:18:d7:25:1c:07:6d:aa:d3:26:
90:8a:45:e0:81:db:dd:9a:c1:92:f2:a9:f2:68:cd:
f9:78:2a:ba:83:3b:bf:0f:d1:89:0b:c4:00:82:82:
ab:38:4a:d8:3f:f5:ae:3a:79:f3:e4:c6:ed:fb:9d:
e8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:07:98:E1:91:6F:B4:C9:6E:40:80:E5:AC:02:57:11:74:09:15:74
X509v3 Authority Key Identifier:
keyid:69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/0weY4ZFvtMluQIDlrAJXEXQJFXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.105.248.0/21
185.159.238.0/23
IPv6:
2a01:7bc0::/32
Signature Algorithm: sha256WithRSAEncryption
66:16:ce:0d:66:13:2e:08:15:06:fa:a8:4d:75:dc:f6:36:a4:
ce:95:f1:5c:49:93:7f:1d:ca:b0:3d:c8:41:49:7d:87:54:27:
ae:ec:49:06:43:3a:48:a2:a0:6b:c9:3e:3b:57:67:0e:c7:97:
e2:35:f7:43:84:7e:05:a6:eb:cb:89:32:08:7b:a7:92:dc:eb:
ad:37:53:02:e2:fa:f4:88:c1:cf:c5:b8:82:4e:e4:7d:3d:f9:
33:cf:3b:90:ad:d8:83:f8:3b:ca:67:36:04:a1:00:57:41:f7:
60:c7:64:4c:8a:9a:fc:2e:8e:59:83:62:9d:b5:a1:e8:66:99:
69:40:0e:61:ad:ee:a1:0f:60:24:21:a4:e1:16:e5:4c:83:7e:
2e:d4:51:1f:40:ea:fc:66:f3:0d:a6:ea:20:f4:e8:df:5a:c5:
03:fc:9f:33:9d:c8:57:2a:67:0f:03:b4:b9:43:cb:1a:8e:29:
9f:3a:96:c0:5c:6c:b7:93:9d:71:57:dc:85:81:36:f9:39:bd:
90:79:21:f4:72:3e:93:85:20:79:a8:8b:40:01:ae:6c:8d:02:
80:45:87:ce:c0:6d:3a:73:5b:67:72:5b:c2:0f:a0:da:80:3e:
f4:e7:90:ff:d7:10:8c:e2:2e:db:60:b1:da:b6:70:ea:df:43:
d6:51:1e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:38 2024 by rpki-client on console-ams.rpki-client.org