Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/FuNCL4QRlSVCaMh-WLizpxgTNBY.roa
File: FuNCL4QRlSVCaMh-WLizpxgTNBY.roa (raw, json)
Hash identifier: SKEiuBWBVpViQ4uf2U6RIK2+Th+L8xcJiMpvBxXop90=
Subject key identifier: 16:E3:42:2F:84:11:95:25:42:68:C8:7E:58:B8:B3:A7:18:13:34:16
Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Certificate serial: 0183C0B5799688FC5052DEF2D95E469C5480
Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/FuNCL4QRlSVCaMh-WLizpxgTNBY.roa
Signing time: Mon 10 Oct 2022 07:04:22 +0000
ROA not before: Mon 10 Oct 2022 07:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35197
IP address blocks: 109.110.98.0/24 maxlen: 24
109.110.101.0/24 maxlen: 24
109.110.100.0/24 maxlen: 24
109.110.99.0/24 maxlen: 24
109.110.104.0/24 maxlen: 24
109.110.103.0/24 maxlen: 24
109.110.102.0/24 maxlen: 24
80.83.16.0/20 maxlen: 20
80.83.17.0/24 maxlen: 24
80.83.16.0/24 maxlen: 24
80.83.16.0/22 maxlen: 22
80.83.20.0/22 maxlen: 22
80.83.21.0/24 maxlen: 24
80.83.20.0/24 maxlen: 24
80.83.19.0/24 maxlen: 24
80.83.18.0/24 maxlen: 24
80.83.24.0/24 maxlen: 24
80.83.23.0/24 maxlen: 24
80.83.22.0/24 maxlen: 24
80.83.31.0/24 maxlen: 24
80.83.30.0/24 maxlen: 24
80.83.29.0/24 maxlen: 24
80.83.28.0/24 maxlen: 24
80.83.27.0/24 maxlen: 24
80.83.26.0/24 maxlen: 24
80.83.25.0/24 maxlen: 24
2a0d:6340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c0:b5:79:96:88:fc:50:52:de:f2:d9:5e:46:9c:54:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a
Validity
Not Before: Oct 10 07:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16e3422f841195254268c87e58b8b3a718133416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:91:ed:8e:c6:ae:96:e4:50:03:77:dc:03:4e:
a7:df:fd:cb:2d:0b:81:b1:a5:1d:f7:d5:e2:c7:8b:
d6:b1:80:d3:92:24:ae:d3:a5:07:eb:18:b5:38:81:
73:15:e6:55:45:02:95:f1:ee:46:99:5b:cf:b2:8b:
6b:85:0d:f6:6f:89:ad:9c:b9:d9:e1:cb:36:5b:93:
24:22:56:0d:bd:e4:89:2c:48:48:b5:b6:90:82:96:
53:04:ec:61:1d:37:0c:07:64:e1:ab:61:39:9b:e9:
a9:3d:9c:2a:fe:ae:4f:81:3d:e0:e6:63:36:30:e7:
36:22:4d:47:95:9d:37:81:cf:9f:f6:8b:84:44:c2:
c6:d3:05:8f:a6:f6:7e:23:56:70:d3:ec:9a:dc:a0:
4a:95:73:5b:34:20:f9:82:a8:ee:49:be:be:05:a3:
55:8a:eb:4a:48:a7:73:ac:8c:c2:b2:82:76:16:0d:
15:2b:8b:5d:a8:b0:a6:80:5a:2e:3a:fc:33:ec:cc:
e0:75:58:3c:8f:1f:ea:a9:b1:cc:37:ec:3a:25:1c:
bb:37:09:d8:6c:a0:4a:ff:b7:fd:59:92:96:c1:26:
59:a8:21:f0:09:21:db:14:c4:c3:d6:f5:a2:59:78:
48:db:32:62:d4:c0:b7:8f:42:ce:f4:ea:0f:7f:ad:
6d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E3:42:2F:84:11:95:25:42:68:C8:7E:58:B8:B3:A7:18:13:34:16
X509v3 Authority Key Identifier:
keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/FuNCL4QRlSVCaMh-WLizpxgTNBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.16.0/20
109.110.98.0-109.110.104.255
IPv6:
2a0d:6340::/29
Signature Algorithm: sha256WithRSAEncryption
2e:43:1b:72:95:5f:84:f6:e3:25:22:62:04:96:a6:bf:2a:eb:
35:3a:73:bf:f3:d4:87:a0:99:6a:27:91:a5:67:e7:0d:a6:a7:
5d:c3:52:8d:86:23:78:0a:26:32:13:78:8f:6a:3f:07:1f:4a:
92:bb:02:93:8c:e0:0c:16:a0:68:56:f0:1b:15:b9:98:8d:69:
f0:d1:29:61:65:e4:77:c0:14:4d:44:3f:a6:50:7e:f3:53:5c:
a4:e5:35:04:18:b0:fa:19:59:00:6a:3a:c0:ed:69:a9:9c:1f:
80:c8:78:b7:87:2c:58:37:a8:b2:63:c9:b3:64:ef:65:cb:4c:
f5:7f:ef:14:74:38:af:bf:43:fb:5e:ab:56:9e:fc:fb:66:66:
10:f0:af:11:be:f6:58:47:54:17:06:1e:19:ef:4b:01:57:64:
a3:b0:1b:03:79:67:7b:39:2a:6e:44:e9:9a:f4:d7:92:f4:e7:
a8:1b:5b:01:2f:aa:99:50:8e:b4:d9:80:3b:4e:66:53:3a:8f:
21:96:d1:0f:e0:0f:b1:f6:c9:b6:53:59:96:ac:92:d4:ba:c1:
d1:fb:3e:19:15:30:83:ef:23:ca:5f:ca:39:a3:d4:4b:ab:fd:
cb:0b:8b:cc:4f:da:92:35:36:ef:6a:0f:c6:3b:e6:99:93:f7:
e1:13:e4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:53 2024 by rpki-client on console-ams.rpki-client.org