Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/530625-4e46-4563-ae2c-cd49264eaf0b/1/8n-KHFC1ZgWzeq28Ej1uPmdnM0U.roa
File: 8n-KHFC1ZgWzeq28Ej1uPmdnM0U.roa (raw, json)
Hash identifier: Ij9riceOyvvlLbAPUaA2fb1rNTteRhx7F76VWTJMP1w=
Subject key identifier: F2:7F:8A:1C:50:B5:66:05:B3:7A:AD:BC:12:3D:6E:3E:67:67:33:45
Certificate issuer: /CN=a333114cbfc6bf668371c5687ee98a442fd8ea36
Certificate serial: 0182157D4EB6F48EC81F1AF65CFD8FFAC96A
Authority key identifier: A3:33:11:4C:BF:C6:BF:66:83:71:C5:68:7E:E9:8A:44:2F:D8:EA:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ozMRTL_Gv2aDccVofumKRC_Y6jY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/530625-4e46-4563-ae2c-cd49264eaf0b/1/8n-KHFC1ZgWzeq28Ej1uPmdnM0U.roa
Signing time: Tue 19 Jul 2022 08:05:09 +0000
ROA not before: Tue 19 Jul 2022 08:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35228
IP address blocks: 93.97.12.0/22 maxlen: 24
87.194.202.0/24 maxlen: 24
87.194.216.0/23 maxlen: 24
93.97.44.0/22 maxlen: 24
93.97.48.0/22 maxlen: 24
93.97.60.0/22 maxlen: 24
93.97.176.0/22 maxlen: 24
93.97.180.0/22 maxlen: 24
93.97.212.0/22 maxlen: 24
93.97.0.0/22 maxlen: 24
93.97.216.0/22 maxlen: 24
93.97.8.0/22 maxlen: 24
87.194.102.0/23 maxlen: 24
87.194.100.0/23 maxlen: 24
87.194.118.0/24 maxlen: 24
87.194.116.0/24 maxlen: 24
87.194.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:15:7d:4e:b6:f4:8e:c8:1f:1a:f6:5c:fd:8f:fa:c9:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a333114cbfc6bf668371c5687ee98a442fd8ea36
Validity
Not Before: Jul 19 08:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f27f8a1c50b56605b37aadbc123d6e3e67673345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:84:14:1c:b3:74:56:a7:d0:c0:58:88:98:37:
63:12:1d:a7:de:87:79:7d:2a:03:97:2d:38:aa:55:
58:da:9c:e0:d6:8e:4f:73:28:3c:43:ce:d4:3b:91:
93:73:a7:15:c9:56:36:bd:f0:dd:ea:6b:d8:46:f2:
76:ef:b6:9c:64:78:6a:ed:d9:8f:8d:9b:9d:a8:ea:
a8:43:5b:ee:cb:5c:46:92:79:b9:8e:2f:2a:2c:12:
e4:42:46:6f:c7:88:c3:32:0f:22:2a:6c:cb:21:d1:
54:f3:38:06:3b:d8:cc:54:2d:bc:56:df:5a:19:0a:
5a:51:66:08:aa:34:54:76:90:12:5b:96:5c:be:e4:
5e:bf:83:77:24:a2:e6:38:f5:e5:f6:04:bf:3e:47:
fd:3e:87:12:99:95:4e:0f:9d:ed:c0:02:8c:d2:4c:
d9:74:7c:d3:b8:15:d4:b9:d0:0c:2c:3e:f9:3e:23:
68:5d:c6:da:c7:3a:ab:9e:81:18:36:fb:fe:4a:a2:
48:48:0b:7a:3f:74:9d:c3:a8:27:52:5a:d0:59:19:
00:02:0c:95:8a:34:99:17:f9:1d:6e:0f:8b:93:00:
59:9b:4e:a2:10:d6:f6:72:0a:22:db:9c:c1:e7:07:
91:9a:bc:4a:97:fd:9d:69:96:74:46:67:77:1e:34:
e8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7F:8A:1C:50:B5:66:05:B3:7A:AD:BC:12:3D:6E:3E:67:67:33:45
X509v3 Authority Key Identifier:
keyid:A3:33:11:4C:BF:C6:BF:66:83:71:C5:68:7E:E9:8A:44:2F:D8:EA:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ozMRTL_Gv2aDccVofumKRC_Y6jY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/530625-4e46-4563-ae2c-cd49264eaf0b/1/8n-KHFC1ZgWzeq28Ej1uPmdnM0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/530625-4e46-4563-ae2c-cd49264eaf0b/1/ozMRTL_Gv2aDccVofumKRC_Y6jY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.194.100.0/22
87.194.116.0-87.194.118.255
87.194.202.0/24
87.194.216.0/23
93.97.0.0/22
93.97.8.0/21
93.97.44.0-93.97.51.255
93.97.60.0/22
93.97.176.0/21
93.97.212.0-93.97.219.255
Signature Algorithm: sha256WithRSAEncryption
13:39:43:a8:28:bc:75:20:ab:b0:95:92:8c:2f:6c:96:ef:59:
dd:8c:45:d2:cc:3a:0f:e0:2a:57:fc:c4:fc:50:aa:18:bc:53:
9b:6c:b8:64:68:18:44:03:d1:4b:ff:ba:9b:a5:af:e3:8e:c5:
df:95:6c:eb:8e:57:48:93:e6:97:7f:0e:bc:d2:0c:13:d1:98:
71:f0:5d:b1:d7:db:52:80:b5:01:48:c4:d7:02:c6:bb:c9:fc:
ae:b4:73:fd:89:b1:f5:c0:b3:dc:7b:2e:8c:79:ff:d0:c7:00:
0c:25:5b:e6:5a:55:df:c6:23:5e:a0:42:39:3c:1b:59:eb:d8:
29:cf:60:1b:23:bb:21:45:c7:4b:54:50:e7:2b:87:69:56:cf:
b8:d3:5a:79:b6:61:aa:4e:60:8f:ff:52:85:b1:a1:2d:e5:08:
9a:35:14:32:55:53:de:19:6c:b6:b8:f1:f3:41:ab:97:b7:81:
98:af:83:50:93:de:5c:62:85:ca:5f:2e:00:27:18:8f:b6:c4:
b3:39:45:ca:bd:e0:fa:62:f0:7e:ea:d7:41:02:23:77:2e:5e:
ea:74:4c:10:fa:91:b9:8d:8f:bd:7a:fc:59:45:3f:06:a0:da:
f7:7f:b9:93:bd:3d:6a:c6:3d:7e:f3:1c:f8:f4:e5:18:59:4d:
ab:18:44:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:05 2024 by rpki-client on console-fra.rpki-client.org