Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/OcEgPiRUak4KQ-U1zpb0s66pEfA.roa
File: OcEgPiRUak4KQ-U1zpb0s66pEfA.roa (raw, json)
Hash identifier: NkWooBEA0kVrkxPG7udwn+OgeB/7QUgGiaUtO5LCUuI=
Subject key identifier: 39:C1:20:3E:24:54:6A:4E:0A:43:E5:35:CE:96:F4:B3:AE:A9:11:F0
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 06D224
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/OcEgPiRUak4KQ-U1zpb0s66pEfA.roa
Signing time: Thu 26 May 2022 17:13:14 +0000
ROA not before: Thu 26 May 2022 17:13:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44679
IP address blocks: 185.193.55.0/24 maxlen: 24
185.193.52.0/24 maxlen: 24
185.193.54.0/24 maxlen: 24
185.193.53.0/24 maxlen: 24
84.239.4.0/24 maxlen: 24
84.239.11.0/24 maxlen: 24
84.239.8.0/24 maxlen: 24
84.239.9.0/24 maxlen: 24
84.239.15.0/24 maxlen: 24
84.239.14.0/24 maxlen: 24
84.239.27.0/24 maxlen: 24
84.239.32.0/24 maxlen: 24
84.239.34.0/24 maxlen: 24
84.239.33.0/24 maxlen: 24
84.239.36.0/24 maxlen: 24
84.239.35.0/24 maxlen: 24
84.239.38.0/24 maxlen: 24
84.239.37.0/24 maxlen: 24
84.239.39.0/24 maxlen: 24
84.239.41.0/24 maxlen: 24
84.239.40.0/24 maxlen: 24
84.239.44.0/24 maxlen: 24
84.239.50.0/24 maxlen: 24
84.239.49.0/24 maxlen: 24
84.239.51.0/24 maxlen: 24
84.239.46.0/24 maxlen: 24
84.239.55.0/24 maxlen: 24
2a02:2160:8000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447012 (0x6d224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: May 26 17:13:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39c1203e24546a4e0a43e535ce96f4b3aea911f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:34:9c:59:a0:01:af:c0:ca:91:72:67:27:21:
29:17:b1:b9:99:31:a6:20:b3:a9:5d:bc:98:08:fc:
c6:e5:fe:ba:d8:90:96:0b:1a:0d:fe:e9:52:01:be:
9b:32:4f:d0:e8:d2:42:4f:bb:ab:3c:24:04:34:53:
61:ad:ac:6f:68:3f:52:6a:f4:01:0a:d2:da:53:cc:
cd:d5:90:0f:cc:58:00:7d:19:e6:fb:2e:9e:0e:6c:
77:0d:e2:84:ca:df:c4:a7:78:da:69:41:4a:05:8e:
02:87:3f:b0:e1:dd:99:d1:84:87:5b:b5:c1:e9:15:
89:37:28:5b:bf:58:94:7d:00:30:df:57:86:cf:1e:
73:09:dc:4a:b9:4c:16:c4:16:b0:1f:7f:19:88:93:
7e:db:c7:f4:af:19:7c:a6:eb:27:c5:32:c7:ef:aa:
f4:e6:c9:0b:9f:78:01:aa:df:7a:27:04:ab:b5:2a:
cd:2f:c4:bb:68:29:22:13:59:3d:f8:e0:13:03:9c:
e5:a9:2a:22:f9:e4:ff:f5:f5:59:6c:38:19:91:dd:
80:06:6f:86:4d:d3:c4:fc:7f:11:a0:67:4b:4c:61:
4d:96:74:f3:59:b2:29:8d:6b:52:86:b0:e5:f5:31:
61:4f:22:fc:3e:69:83:5d:fc:60:00:0c:25:ff:1e:
1a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C1:20:3E:24:54:6A:4E:0A:43:E5:35:CE:96:F4:B3:AE:A9:11:F0
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/OcEgPiRUak4KQ-U1zpb0s66pEfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.4.0/24
84.239.8.0/23
84.239.11.0/24
84.239.14.0/23
84.239.27.0/24
84.239.32.0-84.239.41.255
84.239.44.0/24
84.239.46.0/24
84.239.49.0-84.239.51.255
84.239.55.0/24
185.193.52.0/22
IPv6:
2a02:2160:8000::/36
Signature Algorithm: sha256WithRSAEncryption
46:df:65:e3:79:17:1a:ce:41:68:e1:da:a6:2f:75:15:08:ef:
95:4c:1a:c9:97:4e:99:f1:5e:9f:75:81:d2:59:dc:e9:3d:c6:
d0:9e:7e:5c:21:76:64:8d:13:cd:d6:2e:e1:7f:f5:39:60:b7:
f9:04:b3:d7:26:47:97:57:bd:84:f5:4e:9d:3c:36:e0:89:ba:
90:e9:4b:8e:48:88:a5:e1:f3:af:5b:8a:eb:3b:05:aa:99:d2:
28:bd:13:a5:37:62:81:86:ee:5f:84:d4:d6:db:13:89:f3:ac:
56:d4:bc:6e:ac:6d:6b:f4:74:70:a7:a7:30:46:26:0e:71:8d:
e8:65:31:71:1a:ee:0d:8d:4b:41:36:25:63:81:06:6b:c4:b7:
1c:6c:a8:77:3f:e0:81:3f:d1:c8:10:6b:ba:34:c7:a2:11:b7:
5c:7f:00:4d:c5:ae:ea:33:87:04:a8:71:ec:42:dc:b6:2c:ab:
6a:e6:d8:bc:ca:8b:4c:8a:e5:6c:d1:b1:c2:c5:dc:77:2f:ad:
11:cb:0f:88:4b:ba:ce:2f:2f:2e:35:25:37:a7:e9:07:08:4c:
25:63:9c:ae:99:ef:20:a7:65:b3:b6:c3:07:f8:85:b7:a1:bc:
67:9f:dd:bb:a1:06:8d:d6:bd:09:ad:51:f9:14:27:11:25:97:
0d:0b:8d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:02 2024 by rpki-client on console-fra.rpki-client.org