Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c5467b-3962-4b74-ae0d-34473bc91d80/1/KuWNKxR2qETpZ1yI3AQh9nlyhsM.roa
File: KuWNKxR2qETpZ1yI3AQh9nlyhsM.roa (raw, json)
Hash identifier: mRG6vVYilhqdVxUH+2eiBbLtwEvUBDu38wI+81JdD+c=
Subject key identifier: 2A:E5:8D:2B:14:76:A8:44:E9:67:5C:88:DC:04:21:F6:79:72:86:C3
Certificate issuer: /CN=7f35d5ae417f45ee8505d76ceaa1b34c458394a0
Certificate serial: 013C1994
Authority key identifier: 7F:35:D5:AE:41:7F:45:EE:85:05:D7:6C:EA:A1:B3:4C:45:83:94:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzXVrkF_Re6FBdds6qGzTEWDlKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/c5467b-3962-4b74-ae0d-34473bc91d80/1/KuWNKxR2qETpZ1yI3AQh9nlyhsM.roa
Signing time: Tue 29 Mar 2022 12:47:32 +0000
ROA not before: Tue 29 Mar 2022 12:47:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50554
IP address blocks: 139.28.112.0/22 maxlen: 24
185.3.176.0/23 maxlen: 23
185.3.178.0/24 maxlen: 24
185.3.179.0/24 maxlen: 24
89.106.160.0/21 maxlen: 21
2a00:1bc8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20715924 (0x13c1994)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f35d5ae417f45ee8505d76ceaa1b34c458394a0
Validity
Not Before: Mar 29 12:47:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ae58d2b1476a844e9675c88dc0421f6797286c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:59:74:30:81:8c:a8:41:ef:96:c9:c3:93:a8:
9b:c4:37:06:78:58:a7:2c:fb:e3:5a:9b:6d:0f:f3:
bb:59:cd:86:b3:f2:fb:79:05:c6:9e:c9:0b:63:a6:
f1:54:ca:c0:43:75:76:30:d2:b4:e5:58:66:3d:6f:
72:89:f9:37:f0:8d:e6:22:42:24:a6:b9:fc:63:ca:
df:e2:9d:ae:59:0c:2d:01:0f:64:2b:7f:44:c0:8d:
ef:67:a6:3c:f9:94:5a:04:ae:74:ff:91:4d:da:f8:
db:3d:2a:fe:dd:d9:2b:82:ed:8e:83:31:ba:a3:d8:
c2:4e:c8:ce:f0:a9:54:52:83:0e:8e:01:7d:cb:57:
14:bd:0c:1e:02:43:38:a5:4a:7c:ed:b3:6c:ba:37:
7e:ba:b7:76:fc:24:5a:89:87:b7:bd:8f:82:06:c4:
66:df:2a:66:2d:12:18:00:e6:96:a3:d1:59:82:35:
12:85:2b:3a:10:4c:08:00:9a:7e:bb:87:32:c2:9a:
9f:18:bd:ea:19:58:de:cc:97:14:72:29:78:b2:a7:
b0:85:56:2a:b2:36:ea:cd:ef:38:3e:ee:1c:40:d1:
18:ee:a3:bc:9c:01:96:94:d1:7d:c6:7a:2f:d1:86:
77:ea:37:72:3a:32:23:8a:62:bd:8c:d8:56:a3:b1:
4e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E5:8D:2B:14:76:A8:44:E9:67:5C:88:DC:04:21:F6:79:72:86:C3
X509v3 Authority Key Identifier:
keyid:7F:35:D5:AE:41:7F:45:EE:85:05:D7:6C:EA:A1:B3:4C:45:83:94:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzXVrkF_Re6FBdds6qGzTEWDlKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c5467b-3962-4b74-ae0d-34473bc91d80/1/KuWNKxR2qETpZ1yI3AQh9nlyhsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c5467b-3962-4b74-ae0d-34473bc91d80/1/fzXVrkF_Re6FBdds6qGzTEWDlKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.160.0/21
139.28.112.0/22
185.3.176.0/22
IPv6:
2a00:1bc8::/32
Signature Algorithm: sha256WithRSAEncryption
74:e8:36:aa:b9:73:d0:8f:03:a0:10:5f:53:4b:ab:59:3d:8d:
4c:48:f9:9a:ff:be:b0:dc:98:75:13:6c:72:b4:92:d6:6c:13:
88:99:08:4b:50:c3:a0:ed:1e:c1:06:34:1c:c4:4b:4c:09:8a:
48:64:ee:f9:1b:96:8c:fa:6a:3c:fa:00:9c:85:9b:7e:f6:5f:
fc:f8:90:ff:3b:c7:ec:f0:cb:ce:5a:05:e6:73:8e:b8:3c:29:
f8:40:38:b9:63:74:3d:f3:e5:46:13:aa:a3:fb:0f:17:58:75:
05:9a:40:88:fe:ac:3a:4e:fd:8e:de:df:86:99:02:a8:52:df:
12:41:b2:b7:9e:22:12:6e:87:7a:db:69:20:43:88:21:64:cc:
64:9c:fc:89:ad:7f:83:22:8c:ba:02:5d:de:9f:eb:e9:b0:84:
56:59:5c:a9:7d:d3:ae:f5:87:2e:88:da:1e:54:e4:00:b0:79:
f9:8b:05:eb:0a:b2:b8:56:d5:c0:25:21:42:8e:99:4a:da:a9:
57:7f:29:1c:bb:46:3e:b2:89:5c:f1:a2:f0:8c:37:8c:36:e9:
bc:a4:c7:d7:35:f3:fb:aa:be:f0:9e:4b:8e:54:93:00:38:58:
5d:cc:08:8c:8e:c7:2c:9b:f9:85:ab:af:f8:2a:e8:19:20:84:
8a:a7:85:c6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:53 2024 by rpki-client on console-ams.rpki-client.org