Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/F_8-6A11jf86KxDiV-erA0gQUu8.roa
File: F_8-6A11jf86KxDiV-erA0gQUu8.roa (raw, json)
Hash identifier: e6ZJDgPlo23ClRabCTJ8eyw6R18jmH47RbM9OydPBT0=
Subject key identifier: 17:FF:3E:E8:0D:75:8D:FF:3A:2B:10:E2:57:E7:AB:03:48:10:52:EF
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018410455F835B132040F84C0F94B9371B66
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/F_8-6A11jf86KxDiV-erA0gQUu8.roa
Signing time: Tue 25 Oct 2022 17:51:32 +0000
ROA not before: Tue 25 Oct 2022 17:51:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 85.8.162.0/23 maxlen: 23
85.8.160.0/23 maxlen: 23
62.182.34.0/23 maxlen: 23
62.182.32.0/23 maxlen: 23
139.28.240.0/23 maxlen: 23
139.28.242.0/23 maxlen: 23
5.133.102.0/23 maxlen: 23
5.133.100.0/23 maxlen: 23
31.40.206.0/23 maxlen: 23
31.40.204.0/23 maxlen: 23
212.107.4.0/23 maxlen: 23
212.107.6.0/23 maxlen: 23
84.54.2.0/23 maxlen: 23
84.54.0.0/23 maxlen: 23
85.8.144.0/23 maxlen: 23
85.8.146.0/23 maxlen: 23
92.249.62.0/23 maxlen: 23
92.249.60.0/23 maxlen: 23
176.53.158.0/23 maxlen: 23
176.53.156.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:45:5f:83:5b:13:20:40:f8:4c:0f:94:b9:37:1b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Oct 25 17:51:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17ff3ee80d758dff3a2b10e257e7ab03481052ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:61:c5:8d:fa:7b:9d:8d:27:11:7b:69:d3:98:
13:09:af:bc:c4:02:08:bb:d6:4e:4c:eb:9a:f3:8c:
a6:4e:d1:2d:7d:cb:32:43:0e:02:5a:c7:bc:15:53:
9a:a3:b9:e9:6c:9b:cf:a7:03:45:9c:1d:be:be:de:
f9:a8:a8:5c:be:1a:ce:c7:15:80:b9:c7:77:fe:c9:
b9:10:e5:63:47:fd:a9:93:7d:17:7c:fd:2d:9f:0c:
63:ae:f4:9f:6d:0a:a9:f9:05:1d:25:04:43:2f:9e:
73:fb:74:37:83:d4:d5:99:a8:e7:19:85:f7:36:00:
78:a1:f4:aa:60:79:27:04:0c:35:db:73:58:75:51:
7c:88:08:c2:72:a0:9a:4b:37:b1:3c:c4:20:75:0f:
99:63:ff:3b:5a:81:51:f4:30:f3:73:68:98:c8:7f:
b0:fa:b0:21:12:c7:f9:1b:1d:13:7a:a2:bc:88:8b:
b3:7f:e6:ed:f0:c1:ab:0b:df:d6:3d:f8:37:f0:b8:
74:fb:7f:e3:1b:38:6a:e8:c9:e0:83:bc:0c:70:8a:
2c:19:1f:8a:dc:52:bf:ab:1d:2f:5c:d1:8b:99:67:
a5:9c:21:0c:55:b8:9d:4f:d1:e5:90:de:33:1b:e5:
2b:39:44:11:69:30:fa:41:5a:bc:26:a3:f5:9f:78:
80:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FF:3E:E8:0D:75:8D:FF:3A:2B:10:E2:57:E7:AB:03:48:10:52:EF
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/F_8-6A11jf86KxDiV-erA0gQUu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.100.0/22
31.40.204.0/22
62.182.32.0/22
84.54.0.0/22
85.8.144.0/22
85.8.160.0/22
92.249.60.0/22
139.28.240.0/22
176.53.156.0/22
212.107.4.0/22
Signature Algorithm: sha256WithRSAEncryption
22:41:2e:8b:a8:68:3f:d1:90:01:b9:96:0e:89:fc:94:e4:74:
0c:86:57:0d:ea:2a:4b:dc:c2:e4:b3:9d:c4:45:4d:05:30:a8:
4f:29:54:23:2a:54:87:b0:50:33:f5:02:44:28:e5:7a:0d:12:
e3:9f:c5:34:e3:4d:bf:61:f6:39:6c:66:69:93:2b:b4:d3:b4:
20:42:82:8b:9c:5b:0e:a8:5a:1f:a3:df:63:ef:f7:cf:cc:f7:
b5:c2:1a:89:81:54:05:b5:de:b8:0e:22:ed:b2:38:46:60:df:
6c:76:50:ff:e3:dc:37:af:e2:f0:84:53:f2:e5:e5:40:15:bc:
a3:35:75:67:23:d6:ee:75:00:3e:1d:36:94:69:18:e9:17:76:
11:9f:1b:ea:03:20:5d:6b:85:59:68:f9:98:d2:78:aa:db:fb:
a8:a7:87:45:dc:b3:ff:0b:bc:36:9f:9d:0c:01:f4:77:cc:c7:
71:4b:4a:ef:67:06:f3:8d:4a:b9:ff:d3:e9:ef:11:01:51:be:
4c:4b:ca:8b:a0:bc:75:cd:50:e3:3f:8f:17:41:12:92:51:3b:
06:47:62:77:bd:09:d6:f5:f0:39:0f:79:12:62:8b:d4:63:d7:
7c:00:74:d7:dc:76:e2:89:90:4e:8f:29:c3:c4:25:e9:f4:a7:
5d:93:de:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:49 2024 by rpki-client on console-ams.rpki-client.org