Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/19aWHaWzQmnYGq1ObBXx53gL4WU.roa
File: 19aWHaWzQmnYGq1ObBXx53gL4WU.roa (raw, json)
Hash identifier: 4EDM2GMJv9/9Qn2+Ge2g7C/j66lEYwpwPsS24pWvikI=
Subject key identifier: D7:D6:96:1D:A5:B3:42:69:D8:1A:AD:4E:6C:15:F1:E7:78:0B:E1:65
Certificate issuer: /CN=8a38d1191f66f1f0315de5f45cc194d1cd19d1fb
Certificate serial: 0FC82806
Authority key identifier: 8A:38:D1:19:1F:66:F1:F0:31:5D:E5:F4:5C:C1:94:D1:CD:19:D1:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/19aWHaWzQmnYGq1ObBXx53gL4WU.roa
Signing time: Sat 01 Jan 2022 04:02:40 +0000
ROA not before: Sat 01 Jan 2022 04:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198279
IP address blocks: 37.26.85.0/24 maxlen: 24
37.26.80.0/21 maxlen: 21
37.26.82.0/24 maxlen: 24
37.26.84.0/24 maxlen: 24
37.26.83.0/24 maxlen: 24
37.26.86.0/24 maxlen: 24
37.26.87.0/24 maxlen: 24
185.89.156.0/24 maxlen: 24
185.89.156.0/22 maxlen: 22
185.89.157.0/24 maxlen: 24
185.89.159.0/24 maxlen: 24
185.89.158.0/24 maxlen: 24
2a00:4940::/32 maxlen: 32
2a00:4940::/48 maxlen: 48
2a00:4940:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 264775686 (0xfc82806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a38d1191f66f1f0315de5f45cc194d1cd19d1fb
Validity
Not Before: Jan 1 04:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7d6961da5b34269d81aad4e6c15f1e7780be165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c8:9b:10:22:89:4c:9e:25:4c:a0:01:ac:78:
18:e0:c8:23:e1:9c:69:a4:58:b5:da:bf:43:c5:22:
66:fc:bc:cf:9b:2e:fb:8e:0a:21:f0:2b:33:6d:e4:
cc:47:b5:0b:66:ee:c1:d4:27:03:fb:bd:61:28:5b:
63:76:44:66:c7:1c:63:49:50:12:30:22:a7:f0:e0:
2b:6f:fe:1a:e3:29:05:47:d2:17:61:74:09:cb:c8:
ea:8a:f9:01:5b:01:b7:1d:e8:79:35:27:04:09:9c:
af:7d:d0:47:be:4a:59:66:c4:de:cf:18:ac:9d:c8:
bb:e5:46:94:ab:6e:82:15:17:a9:98:57:48:b6:a3:
02:26:03:e0:65:46:69:9d:55:15:2e:31:03:a9:1c:
9e:26:66:98:47:6d:d7:83:3a:7b:05:7c:55:f1:8b:
bb:a1:fa:51:2d:5d:a9:4f:a6:63:21:3a:8a:8c:75:
d6:da:4d:dd:ed:28:ed:cd:df:24:bd:57:2a:db:7c:
48:b0:45:9a:4b:b3:2d:70:4b:b4:e1:b8:0c:9f:ec:
1f:77:5a:4f:5c:fa:65:4d:9c:4d:54:0f:59:ac:82:
b8:8d:ea:26:70:5e:49:df:83:c3:5d:18:ee:0d:32:
d9:e6:b1:e8:cb:8b:c0:08:ef:11:a2:9e:78:dd:d6:
03:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D6:96:1D:A5:B3:42:69:D8:1A:AD:4E:6C:15:F1:E7:78:0B:E1:65
X509v3 Authority Key Identifier:
keyid:8A:38:D1:19:1F:66:F1:F0:31:5D:E5:F4:5C:C1:94:D1:CD:19:D1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/19aWHaWzQmnYGq1ObBXx53gL4WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/87206f-33d0-4f33-b781-84f8fdc0c698/1/ijjRGR9m8fAxXeX0XMGU0c0Z0fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.80.0/21
185.89.156.0/22
IPv6:
2a00:4940::/32
Signature Algorithm: sha256WithRSAEncryption
39:56:4c:99:60:31:65:02:46:8f:66:52:50:93:f2:10:62:d5:
60:c9:e4:33:2e:84:6c:df:90:20:0d:3d:7d:7f:cf:b6:12:9e:
05:3c:1d:46:38:ee:5a:0e:e9:d9:b0:36:8c:05:b9:23:db:20:
79:f8:7c:f4:6a:51:56:60:e2:9b:b1:fd:1b:76:a3:aa:54:a9:
80:80:74:b0:0a:14:3b:a9:70:08:de:8d:a6:4a:b3:77:79:e7:
28:68:43:6c:ed:5b:ac:61:78:6f:e9:e8:c7:93:6f:4f:e4:02:
f7:da:10:03:e0:f4:e9:06:8d:a3:12:16:c2:2a:be:d2:bb:10:
df:3b:01:8a:15:fa:48:9b:29:65:7c:60:21:74:fb:71:26:6f:
67:39:2c:e3:d5:a1:0b:56:d0:9b:61:51:6b:c6:1a:42:51:5c:
b5:3b:5d:e0:2f:84:8e:d4:e9:7e:17:9c:2e:f3:26:43:7d:b2:
52:0d:1d:a5:0c:3d:8b:ad:7f:43:37:bb:f7:26:8a:94:f0:fd:
18:1f:fd:e3:69:d0:46:d1:99:a3:49:97:21:cd:92:8b:62:ba:
65:8e:38:21:b0:2a:95:9a:64:e8:12:83:9a:47:0f:f8:99:3b:
8b:71:61:69:b0:d6:a5:06:c4:ab:3f:c5:fe:e7:c3:46:c4:1f:
6a:90:b9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:19 2023 by rpki-client on console.sobornost.net