Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/w3kHN8VC3FIzO-3u-Gp55Lp8p3U.roa
File: w3kHN8VC3FIzO-3u-Gp55Lp8p3U.roa (raw, json)
Hash identifier: LTT7QYA6hpuSGqDgRLclXyRjVAzsX5qwBrsogS/9iM8=
Subject key identifier: C3:79:07:37:C5:42:DC:52:33:3B:ED:EE:F8:6A:79:E4:BA:7C:A7:75
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 0A9BA2E8
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/w3kHN8VC3FIzO-3u-Gp55Lp8p3U.roa
Signing time: Wed 01 Jun 2022 09:08:41 +0000
ROA not before: Wed 01 Jun 2022 09:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41937
IP address blocks: 87.250.32.0/19 maxlen: 24
185.112.20.0/22 maxlen: 24
62.240.24.0/21 maxlen: 24
109.198.0.0/19 maxlen: 24
109.122.64.0/18 maxlen: 24
185.179.136.0/22 maxlen: 24
178.79.0.0/18 maxlen: 24
178.250.136.0/21 maxlen: 24
46.235.96.0/21 maxlen: 24
5.134.104.0/21 maxlen: 24
185.26.172.0/22 maxlen: 24
109.72.48.0/20 maxlen: 24
92.244.128.0/19 maxlen: 24
178.237.208.0/20 maxlen: 24
91.185.96.0/19 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
91.204.52.0/22 maxlen: 24
185.10.140.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
109.94.228.0/22 maxlen: 24
2a06:63c0::/29 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a00:8720::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a01:b800::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177971944 (0xa9ba2e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Jun 1 09:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3790737c542dc52333bedeef86a79e4ba7ca775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:68:0f:2c:b3:78:0c:88:d7:1b:dc:d7:2f:b0:
0d:b3:b6:94:86:0f:f3:b5:75:e2:72:41:00:a5:eb:
71:92:91:cf:2c:6d:44:70:c1:1e:8b:58:52:d8:83:
24:9e:53:06:bf:a7:75:68:6d:45:16:6c:89:3c:b1:
4c:93:a6:02:b7:b2:5b:b2:93:1c:c5:e6:ac:fa:c0:
de:60:ba:fe:4c:4a:32:41:87:28:ef:d8:ab:ec:8b:
df:3f:82:80:ad:06:66:26:35:f5:8d:91:1e:62:57:
3f:35:9a:18:24:c5:a0:09:6c:dc:6b:a9:5a:1a:24:
43:d7:c8:93:31:83:d9:0c:b6:59:5f:69:49:a4:22:
3d:ef:af:7d:6a:53:a9:1d:e1:8e:57:fe:2c:04:d5:
f1:01:ec:c7:7e:eb:51:93:9e:2f:eb:c2:ef:64:87:
d7:77:7f:46:fc:11:22:68:89:16:26:d5:7b:90:2c:
20:b1:02:d2:3c:08:2c:e2:97:f9:de:d0:c6:72:4d:
e5:f9:35:24:7b:e6:a8:bc:01:6e:21:c2:d3:ef:a9:
23:1d:88:1d:4d:ad:1a:63:67:d8:e0:52:43:07:e3:
94:1f:a0:64:fc:24:45:c2:e5:4d:90:85:2c:d5:29:
4c:63:4c:b1:d2:d7:56:df:1d:ef:54:40:fd:de:e3:
2e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:79:07:37:C5:42:DC:52:33:3B:ED:EE:F8:6A:79:E4:BA:7C:A7:75
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/w3kHN8VC3FIzO-3u-Gp55Lp8p3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
87.250.32.0/19
91.185.96.0/19
91.204.52.0/22
92.244.128.0/19
109.72.48.0/20
109.94.228.0-109.94.239.255
109.122.64.0/18
109.198.0.0/19
178.79.0.0/18
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
07:ee:69:e6:73:14:02:35:9f:4d:0f:01:08:c0:90:4f:74:f8:
1b:da:d8:e8:7d:d8:28:ac:41:de:74:72:fb:57:19:7f:49:14:
3a:ee:ac:be:60:98:0e:5e:77:9c:fe:e9:1b:39:4a:aa:cc:df:
42:f4:73:10:1c:c5:b3:f1:3b:9d:4c:a3:06:9b:d2:d5:6a:99:
01:ac:25:42:35:10:97:21:60:27:59:5f:f9:c0:fc:f2:bb:6a:
bf:21:96:31:75:b3:eb:c3:74:36:89:70:ff:b8:ef:9d:e9:3b:
7d:83:ad:70:f4:04:0a:b7:0d:3d:e2:28:06:fe:32:b3:ca:7a:
6b:bd:19:5d:83:e0:ca:79:d4:e8:83:14:21:ff:0d:58:96:78:
99:94:7a:52:40:59:23:8d:5b:41:fd:20:b4:59:2a:9f:17:0a:
4b:5d:8e:30:93:fe:36:10:70:d1:51:e1:c1:06:24:83:20:d9:
2f:c1:2a:de:8f:4e:e8:f5:30:ef:e1:57:d6:5c:95:af:40:aa:
be:0c:7e:a0:c4:52:62:48:0f:1f:b4:cd:a1:f9:18:b1:36:d7:
5e:50:99:31:58:c8:22:38:37:9d:eb:a3:57:df:e0:7a:c7:a1:
3c:54:bc:73:4b:4a:d3:d2:d6:0d:c2:6c:d7:07:cb:3a:8c:42:
61:0f:a4:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:02 2024 by rpki-client on console-ams.rpki-client.org