Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/lWVgEDfouUejWmKxjovCJ6Y_EB0.roa
File: lWVgEDfouUejWmKxjovCJ6Y_EB0.roa (raw, json)
Hash identifier: 91v127pSF5DAdUa0EnPvd4x7qZlU6R/qCftwTorvrb4=
Subject key identifier: 95:65:60:10:37:E8:B9:47:A3:5A:62:B1:8E:8B:C2:27:A6:3F:10:1D
Certificate issuer: /CN=8d2ec5b40c7172754255d626bf6c9213a3dafe6f
Certificate serial: 0AEAAE5D
Authority key identifier: 8D:2E:C5:B4:0C:71:72:75:42:55:D6:26:BF:6C:92:13:A3:DA:FE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jS7FtAxxcnVCVdYmv2ySE6Pa_m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/lWVgEDfouUejWmKxjovCJ6Y_EB0.roa
Signing time: Thu 13 Jan 2022 10:31:11 +0000
ROA not before: Thu 13 Jan 2022 10:31:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 213.148.64.0/24 maxlen: 24
213.148.71.0/24 maxlen: 24
213.148.68.0/24 maxlen: 24
213.148.69.0/24 maxlen: 24
213.148.70.0/24 maxlen: 24
213.148.65.0/24 maxlen: 24
213.148.66.0/24 maxlen: 24
213.148.67.0/24 maxlen: 24
213.148.75.0/24 maxlen: 24
213.148.76.0/24 maxlen: 24
213.148.77.0/24 maxlen: 24
213.148.72.0/24 maxlen: 24
213.148.73.0/24 maxlen: 24
213.148.74.0/24 maxlen: 24
213.148.78.0/24 maxlen: 24
213.148.85.0/24 maxlen: 24
213.148.82.0/24 maxlen: 24
213.148.83.0/24 maxlen: 24
213.148.84.0/24 maxlen: 24
213.148.79.0/24 maxlen: 24
213.148.80.0/24 maxlen: 24
213.148.81.0/24 maxlen: 24
213.148.89.0/24 maxlen: 24
213.148.90.0/24 maxlen: 24
213.148.91.0/24 maxlen: 24
213.148.86.0/24 maxlen: 24
213.148.87.0/24 maxlen: 24
213.148.88.0/24 maxlen: 24
213.148.92.0/24 maxlen: 24
213.148.93.0/24 maxlen: 24
213.148.94.0/24 maxlen: 24
213.148.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183152221 (0xaeaae5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d2ec5b40c7172754255d626bf6c9213a3dafe6f
Validity
Not Before: Jan 13 10:31:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9565601037e8b947a35a62b18e8bc227a63f101d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6a:f2:36:a0:49:81:cf:6b:ed:0e:ac:68:3b:
37:ba:35:f7:ae:68:0c:75:21:41:58:90:c5:af:45:
b5:56:62:ff:1f:3e:cc:82:5e:54:8e:33:04:75:1e:
65:75:c2:4f:c0:55:90:33:43:e7:31:71:d0:22:37:
3c:fe:19:86:0a:27:15:f6:de:c9:88:f3:ad:ae:b3:
67:d2:ee:ee:11:f9:c3:2f:c8:09:45:6e:be:c8:c6:
a4:da:d2:3a:14:24:97:54:23:88:34:72:47:49:97:
ec:d6:55:6c:2f:4d:50:f7:3e:61:01:af:b8:5f:da:
c4:41:cb:29:bd:49:14:9b:ad:a4:4b:4c:33:1c:8f:
0f:4d:0a:4e:be:5f:f6:4d:92:f9:f4:fc:91:66:85:
ed:5a:9c:44:88:51:f2:f9:0d:b0:ea:b9:0c:8b:cd:
83:10:43:d0:4b:24:51:cc:37:fe:ee:ad:e3:a0:eb:
55:cd:f7:88:15:b6:74:59:c2:99:cd:8d:36:75:41:
fa:26:54:76:2f:cb:60:69:c1:90:97:25:b0:49:61:
ec:cf:7d:d7:1f:7e:6f:05:81:ee:32:f4:40:9d:20:
1d:c9:5a:ea:34:70:58:fd:11:d2:0d:81:cf:1d:3b:
58:71:91:79:50:81:88:63:a1:30:d6:a3:d8:05:6d:
58:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:65:60:10:37:E8:B9:47:A3:5A:62:B1:8E:8B:C2:27:A6:3F:10:1D
X509v3 Authority Key Identifier:
keyid:8D:2E:C5:B4:0C:71:72:75:42:55:D6:26:BF:6C:92:13:A3:DA:FE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jS7FtAxxcnVCVdYmv2ySE6Pa_m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/lWVgEDfouUejWmKxjovCJ6Y_EB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/75cfaa-59dc-4821-86b5-415cb5f0ba7e/1/jS7FtAxxcnVCVdYmv2ySE6Pa_m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.148.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:27:1e:0f:24:aa:65:f3:f2:7d:66:d5:fe:7e:6d:f7:86:c2:
bd:c6:02:2a:72:be:c4:8c:ee:94:49:20:5a:86:7f:be:c8:92:
ff:11:fd:7e:22:dd:4a:7a:0a:1c:c2:da:8a:2b:85:f5:d4:4c:
47:1c:00:8c:5b:87:31:0d:d3:06:d9:5c:39:02:ad:07:84:69:
38:e7:f2:08:ff:6a:64:1f:9c:59:49:da:09:fe:a5:e9:49:80:
59:a9:1e:00:3b:c3:30:cc:e1:eb:d9:2a:23:8c:48:d6:b6:83:
e7:0f:b4:51:bc:85:c9:56:01:20:46:d8:5c:9b:b8:db:71:63:
a5:5b:b3:12:71:79:c0:75:8e:bd:ad:2d:6c:4f:63:9c:bf:49:
d5:c9:b7:a1:27:f1:9b:c7:2c:36:38:1e:53:fc:d0:5a:87:6d:
61:f9:7d:a0:ce:c4:39:05:57:9e:20:b9:17:f4:8b:60:41:fe:
e7:bc:2d:94:61:ac:ff:79:48:3f:55:88:99:a9:bf:99:68:13:
51:02:4f:b9:6f:9b:04:61:57:c7:5c:77:10:51:26:b0:73:0f:
76:6b:7b:27:b3:45:f1:4b:7a:bf:1a:c2:fc:23:9c:b5:37:4a:
4b:1b:30:a3:3b:68:27:d9:1c:8a:70:92:f5:b3:88:90:5d:49:
b4:0b:36:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:00 2024 by rpki-client on console-fra.rpki-client.org