Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/cBdf9pgyTRkaxNP4gYz-wD7Z0uo.roa
File: cBdf9pgyTRkaxNP4gYz-wD7Z0uo.roa (raw, json)
Hash identifier: Nvb+tBAV6zJGZOHpHdgkzttJiZ3ARUt8SZMl8gbaW4k=
Subject key identifier: 70:17:5F:F6:98:32:4D:19:1A:C4:D3:F8:81:8C:FE:C0:3E:D9:D2:EA
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 0AE977DF
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/cBdf9pgyTRkaxNP4gYz-wD7Z0uo.roa
Signing time: Sat 01 Jan 2022 15:55:05 +0000
ROA not before: Sat 01 Jan 2022 15:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48747
IP address blocks: 178.75.196.0/24 maxlen: 24
178.75.197.0/24 maxlen: 24
178.75.199.0/24 maxlen: 24
178.75.198.0/24 maxlen: 24
94.139.204.0/22 maxlen: 22
94.139.206.0/24 maxlen: 24
94.139.205.0/24 maxlen: 24
94.139.204.0/24 maxlen: 24
94.139.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183072735 (0xae977df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 1 15:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70175ff698324d191ac4d3f8818cfec03ed9d2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:0c:a1:05:ac:0a:ee:94:2f:4e:cb:81:15:a8:
a9:1a:8f:98:af:1a:17:b1:d3:11:6d:32:ab:81:93:
a4:e8:08:da:93:d3:6b:a0:75:59:62:5d:b0:2d:09:
75:1f:e6:b4:6e:aa:31:5e:2a:c1:de:e4:58:e3:0a:
32:04:8f:cc:af:22:28:70:a0:f8:ca:53:df:a1:dd:
4a:59:24:de:ff:f8:3d:dd:9e:d7:be:52:57:fe:ee:
04:22:72:98:4e:68:2b:73:1a:43:54:d2:bd:46:de:
c4:56:8f:a9:24:a4:34:84:00:8e:1c:44:9c:01:99:
68:e4:b5:23:9f:83:d3:19:e9:c1:39:24:2f:44:78:
22:ce:de:e6:6d:d1:18:6c:cc:76:48:9f:9f:74:61:
11:54:34:90:2c:60:18:3e:d3:93:a6:e6:2a:60:0e:
91:27:f3:a4:24:59:bd:e2:c9:f4:db:1f:41:85:66:
0c:c8:57:65:fa:5c:5b:07:47:f3:05:26:39:f4:a0:
15:d8:62:7e:dc:c1:2b:da:b1:22:5c:4c:c2:9d:9d:
4e:d3:b3:c8:08:1b:dc:07:6b:a4:fd:8c:7f:de:f5:
8e:2a:8c:b4:17:6a:d5:ae:2f:9a:1f:53:f8:e0:32:
9d:88:d6:ee:82:eb:98:ad:1c:b7:3d:9d:3e:3d:a3:
bb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:17:5F:F6:98:32:4D:19:1A:C4:D3:F8:81:8C:FE:C0:3E:D9:D2:EA
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/cBdf9pgyTRkaxNP4gYz-wD7Z0uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.139.204.0/22
178.75.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:ce:d6:b7:02:65:87:c1:ed:14:fb:a6:16:0a:14:6b:dd:54:
9b:b3:89:2e:e6:a4:50:57:ba:77:ac:30:f6:64:9b:ec:2f:9d:
45:c3:1f:22:9f:04:eb:c2:4b:22:1c:61:dc:29:d7:13:6d:74:
1b:94:0c:4c:fa:0c:93:e1:32:91:c8:e4:03:80:aa:d4:28:d8:
6c:ae:8c:cd:d2:9f:00:b3:12:ff:81:32:cd:d6:63:fc:b1:fa:
10:43:76:89:17:49:e7:27:74:3a:f8:fb:8a:f4:9a:c0:3f:57:
c7:0c:e2:f0:61:a9:ca:4e:0a:de:79:37:e0:25:db:98:06:d9:
36:74:7e:f3:d9:e6:e8:5b:b2:d1:34:c0:8c:2d:4a:c8:91:7c:
65:29:c6:78:a1:19:fd:48:30:3a:64:20:94:c0:b6:98:b1:44:
d5:ec:b3:fc:cf:21:f9:2d:e1:e1:6f:2b:0f:3e:fd:26:e1:11:
ac:83:c9:a7:e1:16:5f:94:8e:5a:ca:93:4f:fb:c9:21:61:b0:
96:64:04:01:0b:3b:38:f1:60:d0:81:77:61:f1:f1:1c:10:e3:
dd:57:fc:27:c1:c5:ea:0f:9a:72:f9:19:81:b5:9c:85:cd:52:
dd:18:19:1e:81:ce:99:77:ff:3e:f4:96:6a:c3:f6:d3:d7:73:
5e:4d:ec:de
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECul33zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NTgxNjc3NGI3YzU2NjVkNjdhODZjMjBjZWI2NDg3YjViNzhiMzhkMB4XDTIyMDEw
MTE1NTUwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzAxNzVmZjY5ODMy
NGQxOTFhYzRkM2Y4ODE4Y2ZlYzAzZWQ5ZDJlYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPUMoQWsCu6UL07LgRWoqRqPmK8aF7HTEW0yq4GTpOgI2pPT
a6B1WWJdsC0JdR/mtG6qMV4qwd7kWOMKMgSPzK8iKHCg+MpT36HdSlkk3v/4Pd2e
175SV/7uBCJymE5oK3MaQ1TSvUbexFaPqSSkNIQAjhxEnAGZaOS1I5+D0xnpwTkk
L0R4Is7e5m3RGGzMdkifn3RhEVQ0kCxgGD7Tk6bmKmAOkSfzpCRZveLJ9NsfQYVm
DMhXZfpcWwdH8wUmOfSgFdhiftzBK9qxIlxMwp2dTtOzyAgb3AdrpP2Mf971jiqM
tBdq1a4vmh9T+OAynYjW7oLrmK0ctz2dPj2ju6UCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRwF1/2mDJNGRrE0/iBjP7APtnS6jAfBgNVHSMEGDAWgBRlgWd0t8VmXWeo
bCDOtkh7W3izjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1pZRm5kTGZGWmwxbnFHd2d6clpJZTF0NHM0MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvZjNiODI1LWNiYzAtNDlkMi04Yjc2LTZiMTQ2OWMzYjk1YS8x
L2NCZGY5cGd5VFJrYXhOUDRnWXotd0Q3WjB1by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
ZjNiODI1LWNiYzAtNDlkMi04Yjc2LTZiMTQ2OWMzYjk1YS8xL1pZRm5kTGZGWmwx
bnFHd2d6clpJZTF0NHM0MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAl6LzAMEArJLxDANBgkqhkiG9w0B
AQsFAAOCAQEADM7WtwJlh8HtFPumFgoUa91Um7OJLuakUFe6d6ww9mSb7C+dRcMf
Ip8E68JLIhxh3CnXE210G5QMTPoMk+EykcjkA4Cq1CjYbK6MzdKfALMS/4EyzdZj
/LH6EEN2iRdJ5yd0Ovj7ivSawD9Xxwzi8GGpyk4K3nk34CXbmAbZNnR+89nm6Fuy
0TTAjC1KyJF8ZSnGeKEZ/UgwOmQglMC2mLFE1eyz/M8h+S3h4W8rDz79JuERrIPJ
p+EWX5SOWsqTT/vJIWGwlmQEAQs7OPFg0IF3YfHxHBDj3Vf8J8HF6g+acvkZgbWc
hc1S3RgZHoHOmXf/PvSWasP209dzXk3s3g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:27 2024 by rpki-client on console-fra.rpki-client.org