Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/SA9IXkNxU10IwzFx-WXsnRCLFEM.roa
File: SA9IXkNxU10IwzFx-WXsnRCLFEM.roa (raw, json)
Hash identifier: Z0PDvad8CBoYFQXRabRUsz4t91hkg+qNy0tDoiBCcjc=
Subject key identifier: 48:0F:48:5E:43:71:53:5D:08:C3:31:71:F9:65:EC:9D:10:8B:14:43
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 1A51F0EB
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/SA9IXkNxU10IwzFx-WXsnRCLFEM.roa
Signing time: Tue 01 Feb 2022 13:49:39 +0000
ROA not before: Tue 01 Feb 2022 13:49:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210001
IP address blocks: 93.187.39.0/24 maxlen: 24
185.52.116.0/24 maxlen: 24
185.52.119.0/24 maxlen: 24
93.187.33.0/24 maxlen: 24
93.187.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 441577707 (0x1a51f0eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Feb 1 13:49:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=480f485e4371535d08c33171f965ec9d108b1443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:e7:cd:c9:85:d0:bd:58:b2:8b:86:d8:12:
72:d1:7b:5f:7e:94:41:24:a9:be:cc:4e:7d:17:e0:
59:45:ed:13:6b:4f:61:32:d3:93:c6:e6:cf:98:fc:
cd:8b:e5:47:ba:fa:90:fe:8c:1b:c9:d2:0c:82:ec:
5c:b7:06:b5:19:af:d7:f6:ec:b3:02:29:5d:d6:16:
bd:35:83:bf:ce:26:c0:c6:d7:c1:22:4d:a7:54:20:
53:ae:49:62:34:c1:3b:78:5c:44:ec:ef:4d:37:04:
21:12:20:07:64:bf:c1:33:6c:84:4b:ec:9e:64:3e:
07:dc:43:eb:9d:ca:c4:2e:57:e3:32:ec:65:29:58:
d3:3e:95:5b:26:19:e6:8e:d3:b3:98:4e:82:be:3e:
2c:5d:b1:9e:27:5f:0e:a0:b9:09:d8:10:91:fd:54:
62:50:d4:c3:51:7c:29:ed:c9:73:c6:3b:3c:db:57:
2f:27:99:68:55:59:ec:0c:ff:c4:aa:da:dc:57:91:
a0:d7:2e:d2:41:24:9a:f7:e4:8b:e1:c2:1e:39:b5:
a8:af:5c:4c:22:07:ae:12:d1:e1:7a:ea:3f:86:f2:
14:f8:c1:ca:3b:5e:7d:2b:9f:70:b0:38:db:c2:aa:
03:29:2a:be:30:11:e6:a7:bf:bc:74:12:5d:fe:07:
3a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0F:48:5E:43:71:53:5D:08:C3:31:71:F9:65:EC:9D:10:8B:14:43
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/SA9IXkNxU10IwzFx-WXsnRCLFEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.187.33.0/24
93.187.36.0/24
93.187.39.0/24
185.52.116.0/24
185.52.119.0/24
Signature Algorithm: sha256WithRSAEncryption
34:17:6e:e4:39:f3:35:d9:9f:8c:79:ff:8c:fd:5d:fc:7b:eb:
4a:7e:72:88:a0:9c:e4:6f:90:0f:31:82:98:ed:f1:a8:f9:29:
4d:70:ec:91:21:bc:26:32:74:49:36:42:22:0d:c2:05:11:d9:
98:34:a0:e8:99:a2:7f:c5:d3:46:90:37:25:ab:fe:48:15:ab:
fd:72:38:78:f3:be:47:2d:5f:14:3a:f5:a2:6d:20:55:59:bb:
63:a7:b5:07:15:44:0d:e2:11:c1:5e:c1:9d:ce:e8:1f:72:58:
1b:17:fb:c0:03:88:2b:88:a4:d2:88:d0:6b:01:da:1d:ba:49:
f9:d7:ba:50:72:d0:f9:60:e5:ee:a6:94:f3:85:18:07:85:31:
1b:0a:e4:73:c3:d7:c9:9f:f1:60:95:32:08:20:c1:30:a2:6d:
6f:d0:4d:49:df:c0:bb:fc:5f:8a:bd:e8:fe:9b:c2:60:23:9f:
ce:1d:38:20:84:a0:15:84:7d:e5:e7:c1:ff:d5:51:d2:1d:93:
4e:3c:8b:c4:06:12:03:c7:31:f3:86:d2:14:7b:40:44:a8:db:
42:8d:cc:92:a4:e3:bd:1e:dc:0c:c3:07:4a:0f:c1:93:8e:67:
20:d5:61:75:4d:b7:92:5d:87:41:39:a0:80:d9:f6:4d:16:32:
03:f2:62:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:42 2024 by rpki-client on console-ams.rpki-client.org