Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/cdAyJf5_zVwQGjGuX8KRk2jvjDc.roa
File: cdAyJf5_zVwQGjGuX8KRk2jvjDc.roa (raw, json)
Hash identifier: HOqydelzCb31NQT5M4fQ7U+n4wJxJpBBXmbnRkmdMmc=
Subject key identifier: 71:D0:32:25:FE:7F:CD:5C:10:1A:31:AE:5F:C2:91:93:68:EF:8C:37
Certificate issuer: /CN=04e1831c9eef1b795437fcbd43e295705a1a0547
Certificate serial: 038657FB
Authority key identifier: 04:E1:83:1C:9E:EF:1B:79:54:37:FC:BD:43:E2:95:70:5A:1A:05:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOGDHJ7vG3lUN_y9Q-KVcFoaBUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/cdAyJf5_zVwQGjGuX8KRk2jvjDc.roa
Signing time: Sat 01 Jan 2022 10:58:53 +0000
ROA not before: Sat 01 Jan 2022 10:58:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57269
IP address blocks: 185.239.200.0/22 maxlen: 24
185.105.36.0/22 maxlen: 24
91.232.81.0/24 maxlen: 24
195.135.250.0/23 maxlen: 24
195.135.248.0/23 maxlen: 24
2a0c:5a80::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59135995 (0x38657fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e1831c9eef1b795437fcbd43e295705a1a0547
Validity
Not Before: Jan 1 10:58:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71d03225fe7fcd5c101a31ae5fc2919368ef8c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4f:88:b9:57:35:6b:88:31:45:13:ca:ea:19:
ee:cc:fd:8f:7f:c7:bb:32:97:45:ae:8e:01:11:82:
c6:3a:cd:c0:95:14:55:a2:a0:84:64:37:4f:2d:b2:
52:15:0a:36:61:30:79:51:8f:69:bf:d8:c4:2c:49:
ea:53:7c:5d:aa:a1:19:15:69:b5:59:96:6e:05:6b:
95:ad:06:53:84:3c:4e:68:d0:aa:0a:d8:13:59:eb:
e0:2c:b1:e5:ac:38:97:e1:94:4e:90:f6:a2:fe:1d:
31:fc:f6:95:d0:d8:47:55:ad:27:f9:fa:cd:53:87:
57:fb:40:d0:9f:9c:16:d8:15:31:3e:df:28:53:27:
eb:d1:78:07:5d:77:3b:83:c4:4d:dd:00:dc:0b:ea:
d7:8f:69:2c:62:ae:80:bf:e7:72:2a:6b:66:92:e5:
40:70:da:70:03:52:e5:48:5f:2e:bd:f1:24:15:f5:
c8:aa:1c:5f:20:0f:17:4d:7a:db:ab:d0:e8:1f:62:
04:1a:3c:02:6b:f6:fe:69:75:e4:2b:10:0b:01:b2:
f8:bb:84:a4:55:a8:7e:4f:87:42:74:ac:73:10:61:
91:cf:2e:68:3d:34:b0:f8:f4:df:bf:fd:af:54:9b:
90:47:58:b6:05:d6:1a:38:0b:d0:d4:09:8e:72:98:
e3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D0:32:25:FE:7F:CD:5C:10:1A:31:AE:5F:C2:91:93:68:EF:8C:37
X509v3 Authority Key Identifier:
keyid:04:E1:83:1C:9E:EF:1B:79:54:37:FC:BD:43:E2:95:70:5A:1A:05:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOGDHJ7vG3lUN_y9Q-KVcFoaBUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/cdAyJf5_zVwQGjGuX8KRk2jvjDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/6a4858-46ae-4fb0-bee5-76fb20f4943d/1/BOGDHJ7vG3lUN_y9Q-KVcFoaBUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.81.0/24
185.105.36.0/22
185.239.200.0/22
195.135.248.0/22
IPv6:
2a0c:5a80::/29
Signature Algorithm: sha256WithRSAEncryption
60:31:ed:ff:7d:df:d6:0a:76:2f:47:f9:5c:62:46:bc:f9:62:
99:6d:7d:39:91:79:3c:c0:6b:c0:7b:7d:c9:43:a4:b5:7b:2f:
fb:33:f9:61:76:68:a2:fd:b3:33:57:ee:c4:ee:9a:a5:d7:3a:
4e:4b:e7:bc:6e:4d:2b:cb:8e:27:00:30:7a:c4:63:b1:24:21:
36:f0:76:06:34:77:66:88:2c:96:b4:54:18:27:e1:3a:99:b5:
d9:23:34:5c:5f:01:41:6d:ed:38:e1:05:d2:b7:6a:f6:d8:0b:
43:7e:f1:52:bc:87:61:0e:0b:9b:2d:2a:ca:a7:24:fa:d9:30:
ba:95:e3:27:92:ea:79:f8:9c:eb:b9:b7:db:0d:16:17:2a:03:
1b:c6:34:e5:39:42:3e:f8:39:f7:b7:fa:2d:86:0a:7e:bc:45:
6b:30:ba:f1:d8:0d:d8:1d:a6:58:a5:d4:2b:44:8c:36:44:a8:
54:99:d7:0d:8b:14:75:2f:fa:4f:7e:c7:50:f4:9a:7b:73:90:
d2:2f:82:c5:0e:83:b0:7c:ab:44:7c:9b:5f:db:fd:93:cd:86:
b2:2a:78:12:13:fd:c8:ad:4b:39:d2:ae:4c:38:02:8a:45:2f:
c7:36:ab:a8:18:bd:0c:f0:54:66:64:a8:b8:d3:00:16:40:f3:
6e:af:06:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:26 2023 by rpki-client on console-fra.rpki-client.org