Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Djyy2f5G1hl4v3u0qXOyoxs-cUo.roa
File: Djyy2f5G1hl4v3u0qXOyoxs-cUo.roa (raw, json)
Hash identifier: 9/IVe5DC482wh4mS3VCAd9213GxZVr7y3mbIVwujn7c=
Subject key identifier: 0E:3C:B2:D9:FE:46:D6:19:78:BF:7B:B4:A9:73:B2:A3:1B:3E:71:4A
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0600003C
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Djyy2f5G1hl4v3u0qXOyoxs-cUo.roa
Signing time: Mon 21 Feb 2022 12:11:54 +0000
ROA not before: Mon 21 Feb 2022 12:11:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 93.152.210.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100663356 (0x600003c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Feb 21 12:11:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e3cb2d9fe46d61978bf7bb4a973b2a31b3e714a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3a:f1:92:c2:85:a2:8e:fd:59:70:41:79:dd:
c5:bb:8e:8a:8f:d5:23:d7:44:90:cf:0f:2e:c1:a1:
1c:17:4f:1a:0d:b1:38:d3:fe:81:20:d5:1f:37:16:
dd:08:03:9c:8f:38:f0:7d:6c:d2:72:a9:cd:ba:09:
29:08:96:04:7e:4d:33:9c:cf:ac:4b:a6:19:a2:fc:
bc:86:2e:7a:05:7a:ba:91:83:84:7b:b3:23:42:1d:
e7:ce:52:b0:2b:b5:16:94:b5:80:2b:16:39:5e:5d:
d2:36:f6:5a:32:9d:ae:26:85:8d:a9:e9:59:50:ee:
fc:16:02:33:6f:29:99:df:76:5a:6d:2b:51:6d:cd:
06:78:72:3c:1e:b5:ca:f7:ea:71:39:b2:8b:5b:6b:
d1:bd:7b:96:b3:14:37:32:64:00:da:66:10:9c:ef:
93:f6:77:72:33:09:51:9e:ee:8f:f3:26:f2:5a:27:
de:ea:03:d6:a7:99:12:95:0e:07:c7:df:5f:9e:74:
e3:f0:a8:ce:4e:ba:36:15:7d:e4:a0:20:f4:21:6e:
6f:b9:d3:2c:b9:6d:3e:d6:5f:f8:e8:cd:a2:12:7a:
34:74:65:8e:bf:6a:93:6e:71:14:49:44:0f:45:b1:
4b:e6:10:fb:e4:1d:97:ea:e6:ba:5b:34:8b:93:04:
b2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:3C:B2:D9:FE:46:D6:19:78:BF:7B:B4:A9:73:B2:A3:1B:3E:71:4A
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Djyy2f5G1hl4v3u0qXOyoxs-cUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.210.0/24
93.152.218.0/24
93.152.223.0/24
93.152.227.0/24
93.152.230.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b3:5c:51:7c:44:98:54:63:07:35:d6:2e:08:35:0c:15:b9:
bf:b1:44:3c:96:b2:7b:b2:bc:03:c0:e6:e1:91:35:3c:b8:64:
1b:d3:2f:18:14:8c:a1:4d:9b:07:e5:e1:8d:37:f4:1a:32:65:
13:fe:94:b3:e2:66:28:e2:0d:38:f2:9f:9b:5e:6f:8c:1a:81:
d3:7b:d0:bd:66:7d:84:68:1d:20:69:23:d1:44:c7:7c:35:0d:
64:a9:b1:b7:2b:69:a0:76:f1:80:f6:8e:75:9f:3b:ec:9f:5f:
6d:06:7e:ec:d2:eb:db:39:d0:a2:98:b2:da:a5:2f:85:36:53:
79:9e:e0:eb:b6:d2:a2:b4:0a:cb:70:87:74:2a:57:df:1a:a2:
8a:45:2f:bd:99:8c:e9:d2:b7:5c:a2:99:3a:41:f2:a3:c6:c9:
89:f7:79:ef:77:98:96:3c:82:8d:30:a5:83:3d:66:4d:fd:ea:
c4:86:62:ab:8c:51:f7:5a:3d:13:9e:03:89:21:0e:df:a8:df:
01:dc:f8:a8:c8:83:5c:87:64:06:b3:01:7d:1b:85:eb:f7:79:
1e:7d:16:29:2a:cd:b4:89:4d:5e:86:76:df:8f:62:a9:44:1d:
9b:1c:0a:5c:5f:60:22:8e:4c:97:02:64:44:10:ef:d1:12:57:
51:5c:4b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org