Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/9E-DhPOQE3ydMpAMN3cJGakUIdo.roa
File: 9E-DhPOQE3ydMpAMN3cJGakUIdo.roa (raw, json)
Hash identifier: jp56YV4ZyemOuIcNTvHWT+pp8z5/as/MlSHaVXthm7M=
Subject key identifier: F4:4F:83:84:F3:90:13:7C:9D:32:90:0C:37:77:09:19:A9:14:21:DA
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 1A894489
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/9E-DhPOQE3ydMpAMN3cJGakUIdo.roa
Signing time: Sat 01 Jan 2022 11:03:41 +0000
ROA not before: Sat 01 Jan 2022 11:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 185.121.137.0/24 maxlen: 24
109.69.104.0/24 maxlen: 24
195.206.167.0/24 maxlen: 24
109.69.111.0/24 maxlen: 24
185.216.144.0/24 maxlen: 24
185.216.146.0/24 maxlen: 24
89.37.174.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
217.146.85.0/24 maxlen: 24
109.70.145.0/24 maxlen: 24
109.70.146.0/24 maxlen: 24
217.146.93.0/24 maxlen: 24
185.223.235.0/24 maxlen: 24
193.32.211.0/24 maxlen: 24
213.166.84.0/24 maxlen: 24
81.19.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445203593 (0x1a894489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 11:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f44f8384f390137c9d32900c37770919a91421da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dd:2b:02:ae:e6:e8:0b:4c:34:58:5f:c1:c5:
33:1c:36:4a:04:5d:02:af:93:ff:22:58:9e:73:a1:
a2:40:9b:1a:b5:b3:a4:58:8e:ab:ba:0b:ee:64:c8:
d1:53:fe:94:4a:5d:57:6d:87:99:4d:31:2b:92:a7:
7b:5e:69:5e:6a:5e:04:10:d2:c8:23:26:5f:fa:17:
8f:c3:74:cd:1f:d0:85:76:44:e6:ba:a4:21:da:57:
8b:c4:b3:28:ae:c3:cf:d7:53:81:e3:99:4c:2f:2f:
f0:fd:ae:5e:49:d4:ab:2a:d3:31:bd:99:de:02:2f:
01:98:7c:b3:df:35:95:41:3f:fa:b5:d5:07:b6:6b:
73:de:8b:01:5d:3b:5b:fc:f3:d4:f4:58:bc:91:01:
6a:0b:eb:64:43:84:a3:a1:9a:ad:b9:43:98:b1:d0:
b1:dd:38:b9:31:6f:9d:53:61:b6:29:3b:c9:72:41:
77:0f:ac:da:09:37:fc:b8:1e:b5:7d:9a:bd:ea:43:
60:5b:aa:e5:21:4d:a3:37:85:41:22:e3:cf:d8:40:
55:f2:42:00:e4:30:a2:d5:48:86:d0:33:26:b6:40:
54:89:ca:8f:36:a7:e0:f9:9b:7f:1f:70:02:62:fd:
b4:5c:21:e3:07:79:28:8b:7e:c2:a5:30:a8:a9:b4:
e2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4F:83:84:F3:90:13:7C:9D:32:90:0C:37:77:09:19:A9:14:21:DA
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/9E-DhPOQE3ydMpAMN3cJGakUIdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.216.0/24
89.37.174.0/24
109.69.104.0/24
109.69.111.0/24
109.70.145.0-109.70.146.255
185.121.137.0/24
185.158.242.0/24
185.216.144.0/24
185.216.146.0/24
185.223.235.0/24
193.32.211.0/24
195.206.167.0/24
213.166.84.0/24
217.146.85.0/24
217.146.93.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6d:cc:d4:6e:02:fe:0a:41:75:b6:f0:14:51:0a:72:d4:1c:
1c:73:7e:ba:d6:a8:8c:c6:18:f9:ec:5b:5a:e7:3b:02:98:0c:
30:e4:32:2c:5b:ce:68:11:3d:a4:4b:05:db:f4:ed:4b:89:01:
26:84:31:c7:cd:ec:25:00:e0:6a:99:30:fe:62:a6:b5:d2:c4:
49:d0:e4:04:43:eb:78:c4:02:fe:da:30:a5:e3:2e:34:03:ae:
00:5e:44:a6:8a:89:6a:56:81:ec:1c:c4:c7:a7:58:a7:15:16:
bc:65:41:0e:22:05:c3:80:7d:5e:58:bd:ab:c8:ec:88:e1:25:
ca:97:6d:94:14:9b:75:71:f3:90:58:a8:ea:88:7e:46:80:f3:
ec:b6:9e:47:73:8c:a6:59:75:a1:0e:28:44:8c:c4:d4:94:44:
09:43:41:9f:df:5c:a3:4c:27:28:1e:23:36:d1:44:f5:78:ad:
5d:bd:f1:17:c4:e8:38:90:df:b5:05:3a:d1:1b:74:cb:9f:81:
3a:88:8a:f8:07:5f:d1:df:39:a3:04:94:a6:31:76:01:87:84:
cc:bb:8f:b9:dd:2f:6c:07:2c:7c:2e:a8:46:0d:22:7f:4d:a6:
64:fc:40:c3:e3:be:d2:bc:db:21:2a:de:a3:5a:f0:28:6c:61:
f8:99:a7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org