Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/PJ6bShQ8SyHxG-HimuRg7dmLOw4.roa
File: PJ6bShQ8SyHxG-HimuRg7dmLOw4.roa (raw, json)
Hash identifier: MAsbfXNFdyVNPe2TcLsyjeYoAgimNaf2PDyFStU0ykQ=
Subject key identifier: 3C:9E:9B:4A:14:3C:4B:21:F1:1B:E1:E2:9A:E4:60:ED:D9:8B:3B:0E
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 1A36F01C
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/PJ6bShQ8SyHxG-HimuRg7dmLOw4.roa
Signing time: Thu 20 Jan 2022 11:53:19 +0000
ROA not before: Thu 20 Jan 2022 11:53:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56484
IP address blocks: 93.187.39.0/24 maxlen: 24
185.52.116.0/24 maxlen: 24
185.52.116.0/22 maxlen: 24
185.52.117.0/24 maxlen: 24
185.52.118.0/24 maxlen: 24
185.52.119.0/24 maxlen: 24
93.187.37.0/24 maxlen: 24
93.187.38.0/24 maxlen: 24
93.187.32.0/21 maxlen: 24
93.187.32.0/24 maxlen: 24
93.187.33.0/24 maxlen: 24
93.187.34.0/24 maxlen: 24
93.187.35.0/24 maxlen: 24
93.187.36.0/24 maxlen: 24
2a00:dd00:6::/48 maxlen: 48
2a00:dd00:5::/48 maxlen: 48
2a00:dd00:4::/48 maxlen: 48
2a00:dd00:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439808028 (0x1a36f01c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Jan 20 11:53:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c9e9b4a143c4b21f11be1e29ae460edd98b3b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:7b:9a:ba:2b:7d:5f:8f:89:4d:98:9b:fc:f4:
45:b3:05:02:df:de:63:38:45:22:99:50:a0:7c:9e:
fa:db:3c:16:8c:96:3e:a9:24:65:7d:82:54:9e:0f:
6d:22:46:ca:13:b7:bf:e2:07:63:39:e2:0c:d7:2d:
a6:14:0a:e5:85:0f:6d:55:f7:a1:1e:cb:c6:c7:7b:
b1:93:f9:d1:6b:be:3f:6b:69:7d:1c:9b:24:65:fd:
3f:8d:d3:65:91:28:a8:06:52:55:7e:4c:fd:b3:42:
4a:d8:74:50:84:f5:27:92:ca:7d:9e:fd:3f:ee:40:
6e:1d:ee:a1:b8:24:98:1b:36:20:7f:9f:b0:60:e3:
14:6a:6a:e6:17:e1:f5:66:83:e2:e8:a0:63:3d:2a:
6f:85:dd:35:1e:a2:17:d3:69:e3:76:ce:c6:23:dd:
06:dc:dc:f4:d2:af:e0:ed:33:8d:44:89:85:e3:82:
a7:36:8a:10:ec:d9:63:04:44:47:3e:cd:45:40:3a:
61:cf:71:51:9b:3a:48:87:89:65:59:10:21:69:21:
23:2b:2e:05:d7:16:57:ab:98:17:07:d1:a1:2c:94:
f8:f5:a0:99:0a:44:e4:64:b4:7f:39:18:bd:76:a6:
83:df:44:e2:4c:be:d1:25:48:13:58:45:d3:b1:be:
24:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9E:9B:4A:14:3C:4B:21:F1:1B:E1:E2:9A:E4:60:ED:D9:8B:3B:0E
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/PJ6bShQ8SyHxG-HimuRg7dmLOw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.187.32.0/21
185.52.116.0/22
IPv6:
2a00:dd00:3::-2a00:dd00:6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
24:34:9c:80:0b:48:c2:ad:65:dd:df:14:2a:14:30:80:48:bb:
ab:9e:09:b0:1c:12:81:10:3c:6c:e7:96:fa:e8:5a:0f:a2:f1:
3a:5d:a4:b5:76:dc:13:ec:d6:8f:8f:82:99:6d:6f:d8:cf:49:
d1:df:b8:fb:f9:56:28:3c:0b:88:14:51:55:2b:c3:61:74:4e:
83:1c:2e:67:80:89:ea:c3:43:89:8c:86:cb:d8:a8:86:bc:14:
66:dc:a8:65:c8:67:33:7a:95:5f:2e:d9:50:85:b8:90:c2:49:
de:e4:a8:45:ea:3a:d0:67:a2:9f:38:1d:6b:0d:68:c5:72:b1:
ef:c7:39:31:b6:00:a9:d2:17:c3:59:c3:95:e7:05:cb:47:33:
be:3e:e9:67:7f:43:69:c0:18:e4:4c:a4:80:15:9b:7d:01:47:
da:95:f8:80:df:a6:15:94:2a:ab:e9:b7:00:43:0b:99:b3:75:
1c:58:12:95:f0:61:5c:cf:59:f4:04:7a:50:4f:55:b9:9e:a0:
11:43:a5:37:8b:ea:d2:16:6b:e2:c3:0d:5a:f1:7d:45:d9:0c:
ae:14:6f:38:10:d3:67:1e:00:ed:e0:e9:ee:96:3a:e4:ae:57:
8c:b1:89:44:e8:47:74:ef:d4:68:2f:7f:5e:60:84:3b:96:50:
54:37:d0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:36 2024 by rpki-client on console-fra.rpki-client.org