Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/IetvAr97BnN3OFTw4BzAwrAyNL0.roa
File: IetvAr97BnN3OFTw4BzAwrAyNL0.roa (raw, json)
Hash identifier: lHJimA6LwW10Ed3nM9tz5jZH3JICwM59VISMAbXzSNg=
Subject key identifier: 21:EB:6F:02:BF:7B:06:73:77:38:54:F0:E0:1C:C0:C2:B0:32:34:BD
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 054AA76D
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/IetvAr97BnN3OFTw4BzAwrAyNL0.roa
Signing time: Thu 26 May 2022 15:51:13 +0000
ROA not before: Thu 26 May 2022 15:51:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.114.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88778605 (0x54aa76d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: May 26 15:51:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21eb6f02bf7b0673773854f0e01cc0c2b03234bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:49:1d:22:69:e6:59:d0:7d:a0:79:63:65:09:
70:ee:72:58:ee:a2:f7:a4:25:89:d0:94:18:db:fb:
07:41:05:e0:21:53:f0:d0:e7:e9:55:5d:95:ab:7f:
d0:4e:df:5e:86:7c:d9:25:6b:76:81:75:38:4a:7c:
c2:f8:a6:f5:3e:34:cf:20:c2:ee:34:f6:a9:1c:56:
cc:77:8d:34:57:33:dc:d5:ff:c9:60:5b:1a:51:c6:
b3:9f:f3:77:c2:9c:8c:30:3c:eb:79:c5:92:e5:ed:
ca:c6:66:9b:7f:e8:dd:5e:f4:c0:0f:0e:68:60:55:
bf:e3:1b:e1:5c:37:49:e3:d3:5d:c9:34:22:40:22:
95:d0:c7:a9:c3:0b:29:21:b2:54:a7:09:ff:6c:35:
17:a1:48:f6:68:f3:80:5e:a8:84:af:54:08:14:f9:
87:6a:f0:28:78:a6:ac:8e:f9:9c:48:ea:a3:40:f8:
7e:08:50:a6:a8:e7:a8:cc:41:49:2c:92:02:34:76:
ff:bb:c6:08:7b:73:30:39:e4:d2:dd:6c:35:af:f6:
3a:a2:81:1d:72:f6:4e:63:a0:bf:0c:e9:36:06:f5:
b2:01:32:d6:e2:ee:2d:92:4b:0c:a7:66:fd:b8:bd:
a2:57:ac:9d:fd:af:0b:28:d2:5b:54:19:0e:6b:79:
4f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EB:6F:02:BF:7B:06:73:77:38:54:F0:E0:1C:C0:C2:B0:32:34:BD
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/IetvAr97BnN3OFTw4BzAwrAyNL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.112.0/22
80.66.120.0/23
89.42.70.0/24
89.44.150.0/24
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
12:61:e4:26:b9:13:f9:77:d4:ff:00:61:fc:cf:c1:20:e1:fc:
a4:fd:67:72:b2:e9:63:71:11:bd:02:51:81:b8:28:2e:55:27:
73:01:a3:93:d6:cd:c1:3e:c0:0a:62:0c:7e:81:60:e0:e8:60:
c9:2c:fc:61:d6:6a:b4:20:cb:53:b6:61:d7:9d:1e:b4:3d:02:
a4:eb:aa:d7:7b:62:3e:b3:99:4e:d1:f9:ea:7a:9a:cf:7e:6a:
57:dd:5b:1e:a9:16:7d:7b:66:53:68:de:90:00:7c:07:1a:c0:
49:87:fd:bb:bc:31:85:b6:02:b1:04:d9:68:a4:b0:4e:34:72:
b1:97:4e:31:5f:ac:51:be:f5:04:68:2b:46:4e:fe:1b:af:5a:
78:62:07:95:18:9a:24:a9:ac:3b:72:bd:48:f9:28:a7:ab:0f:
92:c0:41:24:ec:4d:39:7e:47:6a:de:02:6d:dd:20:9d:ad:86:
88:2f:21:c8:f2:2d:6c:f3:a8:5d:a2:18:e6:9d:c5:86:ab:a9:
2f:e3:91:e0:9f:0f:24:7c:7d:da:c6:30:41:3c:be:6f:dc:6d:
15:c3:77:05:0e:48:c0:c6:09:f2:5b:7a:2e:d2:e2:32:8c:15:
05:06:0f:4d:e0:ee:2e:1f:05:7f:e1:e3:43:07:58:c9:bc:49:
8d:71:19:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:56 2024 by rpki-client on console-fra.rpki-client.org