Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a9fcc9-67b2-44d6-b566-100f84fe950c/1/DE_gZ4h6xDNICDjcrsQ-eIhbc3g.roa
File: DE_gZ4h6xDNICDjcrsQ-eIhbc3g.roa (raw, json)
Hash identifier: xf7xf7sLnT9AdPbwfW656kn490apbQNQ2avWW0tIRcU=
Subject key identifier: 0C:4F:E0:67:88:7A:C4:33:48:08:38:DC:AE:C4:3E:78:88:5B:73:78
Certificate issuer: /CN=f50b6b425600a25a6dc132de514797e2aa4b0247
Certificate serial: 18E94CC6
Authority key identifier: F5:0B:6B:42:56:00:A2:5A:6D:C1:32:DE:51:47:97:E2:AA:4B:02:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9QtrQlYAolptwTLeUUeX4qpLAkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a9fcc9-67b2-44d6-b566-100f84fe950c/1/DE_gZ4h6xDNICDjcrsQ-eIhbc3g.roa
Signing time: Tue 01 Mar 2022 13:23:12 +0000
ROA not before: Tue 01 Mar 2022 13:23:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199743
IP address blocks: 185.48.68.0/22 maxlen: 24
91.217.210.0/24 maxlen: 24
2a01:9660::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417942726 (0x18e94cc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f50b6b425600a25a6dc132de514797e2aa4b0247
Validity
Not Before: Mar 1 13:23:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c4fe067887ac433480838dcaec43e78885b7378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:03:3a:3d:de:81:6f:9c:28:cb:9c:67:04:33:
ea:cb:c2:c1:a0:3f:27:16:a2:df:c0:2b:5d:61:b0:
8e:53:87:5b:ca:5c:75:54:80:f7:23:d4:5d:dd:a8:
01:ca:91:93:30:86:cc:c6:a6:02:9f:4c:90:8d:ac:
58:21:e5:df:37:e6:5d:9d:f1:2a:ca:04:6c:d4:d3:
0f:a7:a0:9f:82:1a:fa:da:cc:16:ca:47:74:18:f2:
9c:72:82:f1:f9:ba:ad:89:07:ea:f5:ca:32:d5:98:
4f:90:d3:e3:5e:5c:8c:7e:5c:ef:c1:97:4a:e6:72:
bb:79:14:a2:f3:02:1a:24:09:72:c5:34:68:84:92:
0b:85:de:e5:15:e7:15:ec:d0:66:8f:91:b7:74:7d:
e7:18:66:96:bf:9d:28:0d:2a:19:3c:ab:2c:3d:01:
e1:da:64:9a:7d:59:1a:7e:e6:9c:60:d1:a4:ee:4c:
04:cc:3d:a6:04:cf:1c:37:4f:b4:35:c9:80:9f:54:
bc:a3:21:ab:83:7f:fc:e5:a7:f6:6e:9b:41:5f:3a:
8f:1e:e5:ee:13:78:2c:76:82:b4:f1:54:66:a0:70:
a1:a8:60:66:6d:96:d2:ad:bb:cc:27:b8:6f:4b:cf:
44:57:22:fa:bb:0a:23:0c:32:38:ab:98:09:c4:ec:
d6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4F:E0:67:88:7A:C4:33:48:08:38:DC:AE:C4:3E:78:88:5B:73:78
X509v3 Authority Key Identifier:
keyid:F5:0B:6B:42:56:00:A2:5A:6D:C1:32:DE:51:47:97:E2:AA:4B:02:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9QtrQlYAolptwTLeUUeX4qpLAkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a9fcc9-67b2-44d6-b566-100f84fe950c/1/DE_gZ4h6xDNICDjcrsQ-eIhbc3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a9fcc9-67b2-44d6-b566-100f84fe950c/1/9QtrQlYAolptwTLeUUeX4qpLAkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.210.0/24
185.48.68.0/22
IPv6:
2a01:9660::/32
Signature Algorithm: sha256WithRSAEncryption
03:0d:b0:9f:a2:78:4d:e6:50:d3:8c:2d:51:4d:db:47:50:21:
6d:8d:e7:72:3d:dc:55:be:80:c8:63:31:16:5d:95:b2:af:ce:
a5:da:67:2b:ce:6c:ae:42:39:6d:32:51:dc:3e:ca:05:20:5c:
18:9e:d3:55:d4:09:88:14:90:ce:7e:ad:a9:8a:93:09:5f:3b:
d4:a2:16:6c:bc:a0:90:63:eb:60:c6:14:f4:46:59:61:5f:5e:
43:d7:04:0d:e8:16:f6:44:93:21:1d:ee:b0:bd:44:e7:19:5a:
33:5f:a3:84:91:f2:d1:e6:33:c0:92:e3:06:a5:c9:51:41:36:
18:78:7c:ce:3d:40:a7:b5:9d:b9:c9:76:86:ed:bf:c6:3c:69:
23:2d:ad:1f:0a:a5:60:92:4b:80:ac:5c:9e:8b:ce:ed:17:c4:
7e:03:70:1d:7b:0f:ac:73:ce:1b:2e:07:6a:d3:fe:8d:02:ba:
22:15:cd:ef:1e:28:10:bd:08:27:22:a2:8e:a3:30:1e:7e:f6:
f2:c6:8f:f9:cd:80:b5:ef:01:de:32:6c:44:b3:e3:8c:76:36:
99:e3:43:b6:a7:ee:e1:68:fe:27:18:b8:7a:d7:6e:9c:f0:e1:
b2:b0:39:e5:81:4a:4d:92:d1:66:3d:4b:04:8c:0a:c9:97:c7:
df:6d:2a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:29 2023 by rpki-client on console-fra.rpki-client.org