Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/6LOvyiZv7k7z1rd3OLdOaLyZZJ0.roa
File: 6LOvyiZv7k7z1rd3OLdOaLyZZJ0.roa (raw, json)
Hash identifier: OqQFoyGNDYq1rL2Tz6pjb6Ivyf86EfHYxXbZpr1cnOM=
Subject key identifier: E8:B3:AF:CA:26:6F:EE:4E:F3:D6:B7:77:38:B7:4E:68:BC:99:64:9D
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018287797D2E63395A36C5E8AB54E36D977A
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/6LOvyiZv7k7z1rd3OLdOaLyZZJ0.roa
Signing time: Wed 10 Aug 2022 11:17:42 +0000
ROA not before: Wed 10 Aug 2022 11:17:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 94.26.90.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:79:7d:2e:63:39:5a:36:c5:e8:ab:54:e3:6d:97:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Aug 10 11:17:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8b3afca266fee4ef3d6b77738b74e68bc99649d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:43:19:3b:b0:05:8e:ce:14:4b:5a:3b:45:43:
91:d0:f8:b1:a5:ff:67:57:6f:2f:7f:af:12:8c:8b:
c7:6d:5d:01:67:be:c1:99:67:e5:74:1e:ac:77:61:
e0:0d:55:4e:33:5d:c3:d6:e9:7a:bd:75:48:0e:62:
67:5c:d9:ae:f0:1c:db:e7:5b:e9:6e:af:78:f4:9b:
b8:3d:fe:7b:56:0d:67:00:64:bf:84:a6:ac:61:5f:
2f:e7:e7:0b:3c:0f:06:4c:98:71:31:9b:d2:f8:02:
49:7c:70:81:e2:93:2f:10:f5:28:25:5f:08:b8:8c:
77:d3:09:17:53:5e:58:d8:9b:dd:2b:b0:0a:43:41:
c6:09:a7:df:c6:4d:b9:d8:20:49:b8:19:3a:ff:78:
75:13:5d:1c:58:be:0f:af:d9:89:dd:d7:6b:1f:a1:
c5:94:5d:da:89:bb:70:13:76:39:41:1d:7c:99:dd:
72:67:c8:ec:69:8e:6e:60:56:e4:dc:db:ad:c3:3c:
f1:d0:cd:11:e1:ed:e7:a6:e2:ab:0d:8a:18:93:79:
95:19:9c:94:d5:32:75:7d:7d:8c:9f:d5:7e:35:1b:
70:4f:26:1f:f8:9a:3b:3e:aa:93:54:97:8a:ca:54:
1b:43:55:36:98:a4:2c:f4:eb:fc:43:3a:5d:cb:6d:
68:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B3:AF:CA:26:6F:EE:4E:F3:D6:B7:77:38:B7:4E:68:BC:99:64:9D
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/6LOvyiZv7k7z1rd3OLdOaLyZZJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/24
78.159.131.0/24
91.92.33.0-91.92.35.255
91.92.49.0/24
93.152.205.0/24
93.152.207.0/24
93.152.209.0/24
93.152.215.0/24
93.152.219.0/24
93.152.221.0/24
93.152.223.0-93.152.225.255
94.26.90.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
93:90:eb:26:28:63:b6:12:34:82:37:68:fc:2f:3f:39:f9:a7:
cd:47:d8:d1:d7:93:a4:f2:4d:2a:90:af:21:5a:44:4f:eb:16:
6a:d4:3e:1c:d7:73:32:50:b0:49:fa:15:ad:f6:16:27:b5:f2:
b5:bc:61:ca:50:22:5d:02:86:1a:d8:c9:1a:60:23:75:f9:41:
8b:a3:dc:89:f1:bb:3f:da:6b:e4:e6:f3:57:20:2f:f5:fa:a9:
a2:65:f6:03:9c:74:ec:e1:2e:f1:28:e5:40:24:38:0f:8d:c5:
af:e8:93:ba:58:e5:ad:af:fd:3c:e8:79:14:ba:25:15:80:bb:
9f:8a:0f:c4:58:be:b7:01:2d:30:69:02:5c:a6:87:20:2d:97:
9f:4d:d9:93:79:12:cc:75:af:95:2b:ed:af:10:29:0b:8f:b2:
cb:dd:37:3d:8a:58:8c:fa:ee:6a:de:83:e1:ec:6b:1c:16:72:
14:a3:9a:b0:c9:59:06:ad:84:09:b3:84:e2:5a:1e:9f:5e:35:
d8:e3:9e:05:92:b5:a5:f4:61:88:12:0f:b3:0c:af:f5:ef:e5:
36:85:fb:66:8e:8a:40:e2:44:e7:7b:19:d6:00:5b:ae:f1:5e:
c5:0e:ec:a4:3e:ed:98:1b:3f:2a:07:55:76:f9:b5:c1:b3:f8:
ad:69:40:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org