Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/xHn074igltpvB-p1SrGkG4IGuhc.roa
File: xHn074igltpvB-p1SrGkG4IGuhc.roa (raw, json)
Hash identifier: 7T2FDn2Up6WSBMSV5aH8+us6B4oM9hUcVcUeja7EQwk=
Subject key identifier: C4:79:F4:EF:88:A0:96:DA:6F:07:EA:75:4A:B1:A4:1B:82:06:BA:17
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 1BB27623
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/xHn074igltpvB-p1SrGkG4IGuhc.roa
Signing time: Tue 03 May 2022 19:16:20 +0000
ROA not before: Tue 03 May 2022 19:16:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212914
IP address blocks: 185.158.243.0/24 maxlen: 24
89.21.66.0/24 maxlen: 24
185.223.232.0/24 maxlen: 24
213.166.85.0/24 maxlen: 24
193.176.28.0/24 maxlen: 24
178.239.174.0/24 maxlen: 24
185.3.236.0/24 maxlen: 24
89.37.64.0/24 maxlen: 24
2a01:4020:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464680483 (0x1bb27623)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: May 3 19:16:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c479f4ef88a096da6f07ea754ab1a41b8206ba17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:34:26:be:a2:a2:94:fc:19:2f:57:4a:a8:c9:
67:98:0a:11:b2:4c:8b:86:84:76:e7:21:38:85:e9:
6c:7b:3d:c1:bc:75:df:f0:e2:d1:42:c6:b8:09:40:
22:c9:2c:f5:8d:0e:99:0e:f9:10:22:39:74:9a:bc:
f3:4f:48:7a:49:f4:54:4b:e0:f0:13:c0:4e:1d:11:
46:86:97:2a:f5:d8:da:c7:e9:0f:ca:bb:a6:0a:c7:
d2:22:ea:13:81:03:88:67:27:20:6d:41:23:aa:36:
bc:95:d3:eb:5a:49:05:e8:9f:d4:59:02:14:72:03:
98:3f:cc:97:49:1b:c2:58:4d:37:b7:81:10:04:13:
af:0a:b6:ef:65:44:1a:d1:77:ad:81:28:37:5f:9c:
0c:e4:38:fe:b5:79:0d:be:63:5e:99:f6:d9:36:03:
5d:4c:55:e0:8a:e4:65:44:a8:9d:a5:45:e4:09:84:
2e:e7:b1:b6:4e:75:71:5f:d4:2f:c2:fa:c2:1e:2c:
0c:53:84:f9:7b:20:cd:7f:1c:89:25:77:33:49:9f:
6e:19:09:45:47:28:3d:88:72:1e:f0:13:8b:25:11:
e0:fc:ad:38:f9:b2:a9:9d:1f:f4:36:8c:63:d5:65:
4d:3e:b7:ce:91:bb:04:af:fe:ba:39:ff:37:e8:db:
43:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:79:F4:EF:88:A0:96:DA:6F:07:EA:75:4A:B1:A4:1B:82:06:BA:17
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/xHn074igltpvB-p1SrGkG4IGuhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.21.66.0/24
89.37.64.0/24
178.239.174.0/24
185.3.236.0/24
185.158.243.0/24
185.223.232.0/24
193.176.28.0/24
213.166.85.0/24
IPv6:
2a01:4020:6::/48
Signature Algorithm: sha256WithRSAEncryption
74:38:c1:3e:7a:ae:67:73:e1:21:b6:76:1d:f1:10:ea:2a:93:
35:9d:01:cb:1b:32:ed:1b:23:57:54:89:b2:c8:c1:e4:bb:6e:
5f:53:61:8d:c5:e4:d2:6b:e6:af:85:a2:a0:20:dc:22:b8:34:
93:27:4a:a7:65:37:cc:17:26:45:da:7b:a0:cd:e9:9d:4f:df:
d7:03:bf:61:df:e0:24:80:c4:b2:14:ce:f8:d3:7b:63:aa:95:
e9:8f:8b:b8:c0:3c:85:b4:3b:9f:3d:4c:05:77:5c:57:b3:21:
1e:fe:25:48:3f:c6:52:18:b6:78:f8:c6:d5:c6:32:c7:88:9e:
de:27:9e:b3:25:33:ad:5f:f7:16:3e:92:5c:1a:7c:43:30:2e:
fb:29:23:11:5d:4f:b7:43:c5:08:3c:66:3e:21:28:af:57:8f:
2e:6b:e0:2e:65:6e:27:f9:af:91:a8:db:c7:8b:2c:85:2c:6c:
01:f9:dd:d8:de:ef:58:6f:10:91:98:5c:ab:63:8e:d4:af:05:
ac:54:e0:b8:3b:76:fd:1d:5d:ea:0f:c1:6c:c2:91:11:bd:68:
41:44:99:0e:98:03:1d:24:06:df:1f:f1:3f:f9:5a:cc:c7:72:
6b:e3:0c:63:d0:6f:cb:7e:6f:6f:c1:e6:de:98:13:52:73:8a:
3f:84:2a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org