Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/n41o1T9JZigjXTLzVNG_kMRMe6Q.roa
File: n41o1T9JZigjXTLzVNG_kMRMe6Q.roa (raw, json)
Hash identifier: IzLTSVakAmHqKrIBKCrQM8XrFPxuY1FeqcZzNmfhXSg=
Subject key identifier: 9F:8D:68:D5:3F:49:66:28:23:5D:32:F3:54:D1:BF:90:C4:4C:7B:A4
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 0268CFDF
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/n41o1T9JZigjXTLzVNG_kMRMe6Q.roa
Signing time: Sat 01 Jan 2022 15:03:52 +0000
ROA not before: Sat 01 Jan 2022 15:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201206
IP address blocks: 185.82.21.0/24 maxlen: 24
185.82.20.0/24 maxlen: 24
185.82.23.0/24 maxlen: 24
185.82.22.0/24 maxlen: 24
83.171.236.0/24 maxlen: 24
83.171.238.0/24 maxlen: 24
83.171.237.0/24 maxlen: 24
83.171.239.0/24 maxlen: 24
185.185.24.0/24 maxlen: 24
185.185.25.0/24 maxlen: 24
185.185.26.0/24 maxlen: 24
185.185.27.0/24 maxlen: 24
193.57.61.0/24 maxlen: 24
193.57.60.0/24 maxlen: 24
193.57.63.0/24 maxlen: 24
193.57.62.0/24 maxlen: 24
2a05:8b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40423391 (0x268cfdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jan 1 15:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f8d68d53f496628235d32f354d1bf90c44c7ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f5:a7:87:4c:3a:fe:01:22:67:ab:37:75:2a:
5b:6a:70:30:51:14:c1:bb:c1:b1:46:68:4a:c9:65:
c8:95:bb:b2:03:ef:e4:93:da:5b:6c:ba:eb:58:c6:
ab:53:b8:31:e6:a5:9d:93:40:73:98:c8:f1:f1:73:
80:0c:bb:9b:aa:9c:b3:c1:fa:18:c7:be:a8:03:5a:
cb:b3:04:dd:ad:22:6d:05:cd:8a:fe:a9:54:21:42:
32:d5:f5:44:d2:e5:b0:31:d7:38:9b:e3:51:84:15:
da:47:ab:ef:a2:d0:3a:e7:5a:d0:95:2c:74:a3:4b:
7a:2f:9a:84:a5:e2:d4:d9:6b:77:6b:c3:a0:1b:4e:
16:60:af:a2:24:c5:ff:8f:66:8d:16:aa:a1:fd:d5:
5f:5a:b0:b5:b6:ac:a9:1c:94:9a:5a:b9:7f:e9:f7:
01:cc:28:ee:65:56:b9:fb:6b:4b:b4:2a:2b:65:7a:
db:7b:74:89:55:2a:97:06:e6:6d:89:b5:24:d9:54:
18:74:f9:93:26:89:ae:09:8e:1d:d5:f1:d2:71:f6:
ee:07:52:17:91:2d:05:d5:ee:a9:0b:0b:08:bc:af:
36:65:f8:c6:cb:84:57:05:d5:08:27:e2:84:e2:6c:
ce:86:71:a1:50:45:a8:43:6b:3a:3b:dc:c1:e7:1d:
18:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8D:68:D5:3F:49:66:28:23:5D:32:F3:54:D1:BF:90:C4:4C:7B:A4
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/n41o1T9JZigjXTLzVNG_kMRMe6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.236.0/22
185.82.20.0/22
185.185.24.0/22
193.57.60.0/22
IPv6:
2a05:8b80::/29
Signature Algorithm: sha256WithRSAEncryption
28:4f:19:98:24:bb:bc:41:c2:e1:0f:85:99:3e:af:33:ed:86:
0b:a1:56:d7:92:b1:46:0c:df:0b:e4:9e:96:ed:74:d2:a7:e5:
b3:91:b4:aa:c4:17:b5:5d:91:4b:2c:43:5f:e1:d7:48:16:7b:
c1:83:e9:57:21:24:c6:e2:7b:97:85:02:f1:d2:1f:9c:a0:b7:
c7:4c:e6:0d:89:ac:c6:5d:f5:dc:cc:4e:c6:f5:d8:93:9b:b3:
4c:e9:5e:6a:2b:bc:58:3b:09:00:1d:84:86:4b:91:a9:cb:e9:
41:7c:e6:0d:61:6c:41:f2:2c:b3:c8:d3:60:0e:fb:79:6e:a7:
2a:34:c7:f6:7c:f1:ad:8d:fd:a9:e4:22:83:62:c8:60:41:c4:
ca:a4:8e:90:b9:c5:51:44:14:30:22:55:4d:0a:6f:31:ed:14:
a2:78:d8:09:93:cb:9b:bc:69:35:62:dd:a7:9f:c6:15:f0:de:
2f:ad:43:95:6c:83:a7:d2:fe:4a:d9:f8:1e:3d:b9:85:62:78:
bc:c1:c7:ea:35:8c:d7:c0:55:1b:43:ae:7a:7f:b3:bb:18:b4:
9d:e3:54:22:3c:47:7c:cf:6a:4f:70:ff:56:3e:d4:64:44:41:
c9:79:c6:0f:be:50:0b:30:7c:ed:e1:5a:be:aa:71:51:e7:bc:
16:42:17:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:56 2024 by rpki-client on console-ams.rpki-client.org