Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/991ad9-d953-43a8-8584-723b33cb0ef9/1/B-6k18yK9WugNGjKkHdQnvuaZX4.roa
File: B-6k18yK9WugNGjKkHdQnvuaZX4.roa (raw, json)
Hash identifier: mO5ZaDjZuQ/I2Phg1/bHhdxTXGwNt72NCyLn4dj0zzs=
Subject key identifier: 07:EE:A4:D7:CC:8A:F5:6B:A0:34:68:CA:90:77:50:9E:FB:9A:65:7E
Certificate issuer: /CN=d7cc56a1f20d5a603296619635786fde26458d12
Certificate serial: 068DAF2F
Authority key identifier: D7:CC:56:A1:F2:0D:5A:60:32:96:61:96:35:78:6F:DE:26:45:8D:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18xWofINWmAylmGWNXhv3iZFjRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/991ad9-d953-43a8-8584-723b33cb0ef9/1/B-6k18yK9WugNGjKkHdQnvuaZX4.roa
Signing time: Sat 01 Jan 2022 10:56:37 +0000
ROA not before: Sat 01 Jan 2022 10:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29037
IP address blocks: 217.17.16.0/20 maxlen: 20
77.236.112.0/21 maxlen: 21
79.171.176.0/21 maxlen: 21
192.54.68.0/22 maxlen: 22
192.54.67.0/24 maxlen: 24
178.248.216.0/21 maxlen: 21
77.236.104.0/21 maxlen: 21
185.5.168.0/22 maxlen: 22
2a01:5580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109948719 (0x68daf2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cc56a1f20d5a603296619635786fde26458d12
Validity
Not Before: Jan 1 10:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07eea4d7cc8af56ba03468ca9077509efb9a657e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:26:43:31:d5:3f:1f:df:e7:76:65:88:85:3d:
87:d2:b5:a1:aa:99:42:ce:fe:1a:7a:8c:bb:15:cd:
97:13:11:26:05:b5:fe:be:dd:ad:92:2d:81:5c:f7:
e8:45:8c:f3:87:eb:c8:59:7a:45:82:5f:55:dc:8c:
e5:ce:fa:74:cd:61:0f:6a:58:25:21:e2:7a:7d:09:
28:d9:fa:c7:e9:4d:f6:a7:01:8b:3f:e7:72:0c:b9:
f2:a0:53:21:5e:c5:3b:64:11:c0:5e:43:47:86:ae:
2d:2e:62:a7:e5:86:25:1c:04:32:00:e3:58:25:db:
ff:33:17:ca:e7:f1:8b:86:d2:fa:ff:54:5c:e4:68:
5f:70:96:80:46:1b:c7:a7:6f:0e:bf:62:c8:5e:f2:
2f:24:64:30:59:2f:bb:c0:7b:c0:a6:6e:67:a1:b5:
28:00:d6:a4:de:3b:5a:14:6c:2a:8e:f8:8d:3a:ba:
cd:a3:cf:69:44:f9:56:ba:09:35:59:90:bd:ab:ea:
c5:59:90:c9:df:aa:7d:30:40:1f:c3:75:15:be:14:
8f:64:a2:de:5e:f4:46:6d:4c:2e:b3:97:a7:4c:d1:
bf:3b:a7:24:20:aa:40:52:cb:2c:24:d1:4c:94:ec:
58:36:dc:e9:be:ac:7d:77:58:2b:07:63:8b:46:17:
66:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EE:A4:D7:CC:8A:F5:6B:A0:34:68:CA:90:77:50:9E:FB:9A:65:7E
X509v3 Authority Key Identifier:
keyid:D7:CC:56:A1:F2:0D:5A:60:32:96:61:96:35:78:6F:DE:26:45:8D:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18xWofINWmAylmGWNXhv3iZFjRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/991ad9-d953-43a8-8584-723b33cb0ef9/1/B-6k18yK9WugNGjKkHdQnvuaZX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/991ad9-d953-43a8-8584-723b33cb0ef9/1/18xWofINWmAylmGWNXhv3iZFjRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.236.104.0-77.236.119.255
79.171.176.0/21
178.248.216.0/21
185.5.168.0/22
192.54.67.0-192.54.71.255
217.17.16.0/20
IPv6:
2a01:5580::/32
Signature Algorithm: sha256WithRSAEncryption
d9:6f:03:10:1d:8c:d9:2b:d9:05:2c:8f:17:45:14:a2:86:ad:
da:f9:0b:34:5c:64:72:9c:d9:cc:5e:33:eb:c3:6b:f1:ca:73:
07:16:58:cd:7b:da:75:f6:a8:61:3b:d0:f1:83:79:85:0b:f7:
d3:2c:a7:e3:44:51:0e:c8:19:85:ef:aa:0e:bb:9b:7b:97:8d:
c1:38:3d:22:81:59:60:0a:54:a6:c2:a9:a5:9b:b6:b3:d7:24:
09:e0:4d:19:18:21:54:0b:2a:d5:76:28:bf:38:87:56:55:7c:
d6:b5:0b:62:e4:ee:b6:a4:90:79:11:b1:54:88:28:93:f8:e4:
cf:a0:23:f0:7e:c4:8e:ab:c3:28:57:f7:0e:a7:68:35:83:a1:
cf:a4:a6:bd:42:e3:6f:3b:b3:ac:ed:2c:b1:4f:e3:22:74:23:
82:c1:4b:c4:50:50:2b:0d:6f:c1:97:c4:4f:87:20:4c:e5:9e:
63:01:32:f2:0b:36:b1:8b:e1:b4:b6:04:7d:c3:89:20:4e:a0:
5d:56:13:f3:bf:56:9d:73:05:5f:06:cf:d4:74:a2:ad:95:eb:
c3:a4:c8:b5:2d:28:c3:77:c4:13:c0:6e:69:72:06:2e:4e:40:
70:77:fc:02:ae:0e:a1:ed:1e:86:35:af:fe:27:14:8f:db:2a:
d1:45:52:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:49 2023 by rpki-client on console-fra.rpki-client.org