Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/pBTllIsILPY85dQ0RqD3l-QbHtc.roa
File: pBTllIsILPY85dQ0RqD3l-QbHtc.roa (raw, json)
Hash identifier: YehU9eCua65r4/UuSLBHkvZ+O2HyEJ+itKBTYFfNwVU=
Subject key identifier: A4:14:E5:94:8B:08:2C:F6:3C:E5:D4:34:46:A0:F7:97:E4:1B:1E:D7
Certificate issuer: /CN=73635ae36f2df4f68d3e572a313e1a18aa20b757
Certificate serial: 142F717E
Authority key identifier: 73:63:5A:E3:6F:2D:F4:F6:8D:3E:57:2A:31:3E:1A:18:AA:20:B7:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2Na428t9PaNPlcqMT4aGKogt1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/pBTllIsILPY85dQ0RqD3l-QbHtc.roa
Signing time: Mon 07 Feb 2022 10:05:18 +0000
ROA not before: Mon 07 Feb 2022 10:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49278
IP address blocks: 158.112.71.0/24 maxlen: 24
158.112.66.0/23 maxlen: 23
158.112.64.0/18 maxlen: 18
158.112.84.0/22 maxlen: 22
158.112.88.0/24 maxlen: 24
158.112.93.0/24 maxlen: 24
158.112.96.0/21 maxlen: 21
158.112.0.0/18 maxlen: 18
158.112.0.0/16 maxlen: 16
158.112.20.0/22 maxlen: 22
158.112.24.0/21 maxlen: 21
158.112.32.0/22 maxlen: 22
144.84.0.0/18 maxlen: 18
158.112.164.0/23 maxlen: 23
144.84.0.0/16 maxlen: 16
158.112.192.0/18 maxlen: 18
158.112.208.0/23 maxlen: 23
158.112.128.0/18 maxlen: 18
144.84.128.0/18 maxlen: 18
185.155.24.0/23 maxlen: 23
158.112.255.0/24 maxlen: 24
185.155.26.0/23 maxlen: 23
144.84.232.0/22 maxlen: 22
144.84.164.0/23 maxlen: 23
144.84.174.0/23 maxlen: 23
144.84.192.0/18 maxlen: 18
144.84.208.0/23 maxlen: 23
2a02:27b8:1112::/48 maxlen: 48
2a02:27ba:4000::/34 maxlen: 34
2a02:27b8:2003::/48 maxlen: 48
2a02:27b8:1::/48 maxlen: 48
2a02:27b8:2004::/48 maxlen: 48
2a02:27b8:2002::/48 maxlen: 48
2a02:27b8:1111::/48 maxlen: 48
2a02:27b8:4000::/48 maxlen: 48
2a02:27b8:2000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338653566 (0x142f717e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73635ae36f2df4f68d3e572a313e1a18aa20b757
Validity
Not Before: Feb 7 10:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a414e5948b082cf63ce5d43446a0f797e41b1ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d3:ee:c8:b3:36:41:7a:f3:3a:c5:5e:fe:49:
65:6c:d4:01:24:f9:5f:17:93:84:9e:78:aa:00:78:
1a:6d:9b:3a:90:38:12:2b:e2:b8:65:7e:97:17:33:
22:54:43:0a:ac:a3:1f:e4:14:b8:1f:dd:ed:df:dc:
4f:c7:9c:eb:70:6e:ea:06:3c:7d:59:25:c5:e7:f9:
78:cb:6d:db:9f:83:3e:82:d6:12:db:2c:32:17:a3:
9b:ce:72:6d:d5:8a:25:3f:ef:91:7b:84:4e:6d:12:
fe:3f:97:01:dc:22:8c:ce:d7:61:99:8d:14:48:d6:
69:f9:ad:30:62:09:ff:ab:e6:83:49:58:96:05:16:
86:00:d6:1f:aa:ca:ef:8b:f2:35:52:dc:50:37:48:
0a:3f:8a:db:c6:76:84:91:31:dd:6d:5e:55:85:f2:
cb:3b:dc:1a:2f:64:c5:44:02:ac:b6:b5:0e:eb:cb:
8a:57:93:9d:b9:01:79:b5:25:01:e3:4f:19:5f:4a:
fd:09:c2:e2:31:ac:6f:66:ef:e1:5a:10:57:d1:31:
1a:3c:15:c6:d3:5f:55:9d:d2:28:7f:e8:ba:4d:bf:
02:3a:38:a4:45:ee:ac:05:37:1f:fb:59:5f:19:04:
b5:3e:95:b1:b1:91:16:bb:0b:ce:b1:b3:94:f1:5c:
d6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:14:E5:94:8B:08:2C:F6:3C:E5:D4:34:46:A0:F7:97:E4:1B:1E:D7
X509v3 Authority Key Identifier:
keyid:73:63:5A:E3:6F:2D:F4:F6:8D:3E:57:2A:31:3E:1A:18:AA:20:B7:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2Na428t9PaNPlcqMT4aGKogt1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/pBTllIsILPY85dQ0RqD3l-QbHtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/c0d281-d40d-40e0-93ea-5bae375cf85a/1/c2Na428t9PaNPlcqMT4aGKogt1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.84.0.0/16
158.112.0.0/16
185.155.24.0/22
IPv6:
2a02:27b8:1::/48
2a02:27b8:1111::-2a02:27b8:1112:ffff:ffff:ffff:ffff:ffff
2a02:27b8:2000::/48
2a02:27b8:2002::-2a02:27b8:2004:ffff:ffff:ffff:ffff:ffff
2a02:27b8:4000::/48
2a02:27ba:4000::/34
Signature Algorithm: sha256WithRSAEncryption
8f:64:c6:9a:d8:60:9f:72:4a:85:c3:7b:3e:0d:97:37:aa:b2:
92:fd:f5:76:4f:4f:ed:49:db:dd:3d:af:22:ea:e9:94:65:03:
d0:60:81:7c:21:43:c8:74:ab:d4:f8:38:0c:be:29:2f:e3:10:
86:13:ef:61:03:8e:2b:df:7b:38:d8:96:cb:e5:69:59:40:10:
f0:fc:26:81:32:a1:d7:04:0b:2c:2a:08:ce:51:11:0d:8c:af:
ef:c2:10:4e:23:29:18:69:7a:13:4e:d7:4e:21:69:d2:a6:51:
9d:49:88:7f:52:ae:ab:f0:28:6d:fe:d8:40:b1:0e:ba:60:84:
89:b3:dc:71:85:21:19:d1:ca:6f:86:36:72:28:fa:b5:c6:93:
8b:56:f7:0a:68:23:5d:5a:33:24:c4:39:e2:ef:0e:48:e4:15:
34:c7:1c:b3:1f:4e:da:8e:67:54:ec:43:41:72:45:d4:de:fb:
30:52:73:42:49:82:1f:08:b2:60:b7:7a:0a:a2:c3:16:fa:bc:
e7:6b:b5:0b:86:c0:e2:61:d2:a6:74:9b:c8:31:28:ba:fb:97:
47:11:17:bb:00:93:e7:dd:dd:32:21:57:c4:64:f0:ad:b1:ea:
bf:e7:4c:c1:8d:a1:c4:70:6f:a5:d5:69:9b:97:4d:43:31:14:
e0:33:61:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:52 2024 by rpki-client on console-ams.rpki-client.org