Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/uwdDSrzQtM6n8-9F5Wwr9wAr4Bg.roa
File: uwdDSrzQtM6n8-9F5Wwr9wAr4Bg.roa (raw, json)
Hash identifier: 8ayJGZYOhLlgkC79tmE+KHWsILPggc35LgI6o49uHOI=
Subject key identifier: BB:07:43:4A:BC:D0:B4:CE:A7:F3:EF:45:E5:6C:2B:F7:00:2B:E0:18
Certificate issuer: /CN=afec4f4a16cc51bd51621011539ceb574ac15d02
Certificate serial: 30274D44
Authority key identifier: AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/uwdDSrzQtM6n8-9F5Wwr9wAr4Bg.roa
Signing time: Sat 01 Jan 2022 09:06:26 +0000
ROA not before: Sat 01 Jan 2022 09:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198385
IP address blocks: 89.249.40.0/23 maxlen: 23
185.63.36.0/22 maxlen: 22
37.35.104.0/21 maxlen: 21
5.1.96.0/21 maxlen: 21
185.75.32.0/22 maxlen: 22
2a03:2040::/29 maxlen: 29
2a00:e6c0::/32 maxlen: 32
2a03:2040::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 807882052 (0x30274d44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afec4f4a16cc51bd51621011539ceb574ac15d02
Validity
Not Before: Jan 1 09:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb07434abcd0b4cea7f3ef45e56c2bf7002be018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:13:92:eb:78:d1:06:89:8d:60:b4:f3:36:11:
af:82:b7:41:8e:63:6a:99:f4:db:d1:28:77:67:64:
d5:ea:99:78:71:6b:32:1d:50:95:63:3a:88:30:90:
24:87:77:40:d3:e2:e4:66:10:d7:48:56:e4:a4:4f:
b7:37:fd:ff:5b:10:88:bc:f8:f3:51:67:67:d0:0d:
a8:cc:6e:52:a9:ef:c8:26:60:ee:c1:88:7b:ff:65:
20:da:46:ab:44:c2:4d:70:b1:e0:bd:80:33:7e:e5:
d9:17:b9:ba:b3:83:56:b5:4e:e0:8c:e3:9b:31:31:
44:cc:97:49:bc:b8:a4:ed:91:72:eb:99:3d:6d:03:
28:dd:c9:d6:18:73:23:11:75:de:ea:58:fd:2d:fc:
59:8d:4c:2c:a3:29:62:fc:58:b4:bf:52:0c:4d:bc:
db:29:fa:56:8b:15:5d:b2:94:74:8d:09:d1:b7:78:
4d:64:6e:73:fc:5b:08:ce:fc:06:10:ae:6e:c0:a4:
4d:3f:80:7b:84:b7:a1:ba:f1:10:b6:0c:5c:f1:f0:
a8:d2:f8:f0:64:16:da:c9:28:81:5a:68:1a:7f:c1:
87:55:f4:d1:73:c3:36:d7:ae:38:5a:44:83:a3:65:
79:f2:4b:c7:a5:5f:6c:2f:7a:e7:5f:f5:46:e1:86:
3c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:07:43:4A:BC:D0:B4:CE:A7:F3:EF:45:E5:6C:2B:F7:00:2B:E0:18
X509v3 Authority Key Identifier:
keyid:AF:EC:4F:4A:16:CC:51:BD:51:62:10:11:53:9C:EB:57:4A:C1:5D:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-xPShbMUb1RYhARU5zrV0rBXQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/uwdDSrzQtM6n8-9F5Wwr9wAr4Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9f7b6b-b29d-486e-8478-27efc13aff1e/1/r-xPShbMUb1RYhARU5zrV0rBXQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.96.0/21
37.35.104.0/21
89.249.40.0/23
185.63.36.0/22
185.75.32.0/22
IPv6:
2a00:e6c0::/32
2a03:2040::/29
Signature Algorithm: sha256WithRSAEncryption
18:57:43:32:36:03:58:bb:04:86:f0:d6:12:f5:33:c5:84:f3:
0f:3d:c3:1c:77:59:b6:ee:57:7e:99:7e:54:86:94:08:13:ff:
6c:1e:33:9f:59:1c:bb:fe:59:26:5a:7e:d7:52:4d:30:f0:80:
0a:0a:92:d7:2c:97:f4:78:72:0b:96:04:e5:bb:72:ac:d1:fd:
6c:42:c5:45:05:93:19:f2:61:bb:a4:17:11:3b:33:94:01:91:
e2:28:0a:74:cf:14:66:c5:67:04:e9:db:3f:c7:9f:c8:dc:09:
c7:13:91:a0:fa:76:b5:1d:70:7f:b6:f3:eb:24:79:54:cb:ef:
f9:b7:87:17:43:f9:c6:37:e4:79:17:7d:c2:37:51:6c:df:08:
f4:99:37:bb:c8:87:5e:ed:4f:18:1b:f0:f8:bb:75:13:c9:b0:
df:c8:0b:9c:a7:20:91:f2:6a:e2:f6:1e:9d:1d:b6:b8:51:3c:
7b:96:d3:7f:c7:39:dd:df:49:c7:84:ae:59:4f:45:f5:1a:2a:
c8:cf:1a:c7:e2:99:35:81:d6:2f:01:87:01:44:91:62:6f:1a:
80:53:fc:79:7e:82:1a:4a:94:8f:d6:b1:d4:84:5e:e2:7a:28:
71:cd:e4:9f:5d:b8:81:c9:92:6d:1f:6d:fe:20:7b:58:6d:70:
29:e3:72:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:40 2023 by rpki-client on console.sobornost.net