Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/vYGPmlhvyX6BM0O2rTbRDXerSZM.roa
File: vYGPmlhvyX6BM0O2rTbRDXerSZM.roa (raw, json)
Hash identifier: rM4vq4jg0FSZcSxfo8KbZKRucAXXCmtJ0lb5S6P8xEM=
Subject key identifier: BD:81:8F:9A:58:6F:C9:7E:81:33:43:B6:AD:36:D1:0D:77:AB:49:93
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1B002C04
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/vYGPmlhvyX6BM0O2rTbRDXerSZM.roa
Signing time: Sat 01 Jan 2022 13:05:44 +0000
ROA not before: Sat 01 Jan 2022 13:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49902
IP address blocks: 213.223.138.0/24 maxlen: 24
213.223.46.0/23 maxlen: 24
213.223.45.0/24 maxlen: 24
78.120.128.0/21 maxlen: 21
195.115.116.0/22 maxlen: 22
86.77.160.0/21 maxlen: 21
77.143.0.0/16 maxlen: 16
195.98.112.0/20 maxlen: 20
213.222.64.0/18 maxlen: 18
88.141.232.0/21 maxlen: 21
84.97.80.0/21 maxlen: 21
79.83.224.0/21 maxlen: 21
88.142.0.0/20 maxlen: 20
109.9.208.0/20 maxlen: 20
88.137.216.0/21 maxlen: 21
77.137.224.0/19 maxlen: 19
88.140.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452996100 (0x1b002c04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 13:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd818f9a586fc97e813343b6ad36d10d77ab4993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b2:29:90:fe:8e:c6:46:24:af:bd:df:52:01:
06:34:57:c5:43:c3:b0:67:90:bc:e1:21:42:8f:65:
a0:e5:32:30:5f:bd:00:6f:cf:c4:b8:5e:6d:33:a6:
84:4d:bc:33:22:05:9b:3f:5c:3d:7f:f3:03:2e:0b:
54:14:b0:55:90:40:47:94:92:a9:b7:47:5b:13:2c:
a9:d6:7b:66:b5:95:08:52:e3:74:01:23:42:b4:56:
a6:de:32:fb:ab:b9:16:e0:bd:aa:38:56:ba:fc:b7:
ee:89:dc:07:db:71:98:ce:3d:bd:68:91:79:c6:b9:
45:8e:a9:c9:1d:93:ae:10:01:db:5a:e7:76:1c:07:
56:7e:d8:6c:a8:75:69:07:63:dc:a5:14:26:6c:38:
a9:0d:cf:06:6e:6e:4b:20:ec:f6:03:0d:d9:03:bc:
f1:f6:95:27:63:7e:7b:19:99:22:a6:2e:17:4b:d1:
04:78:98:24:dd:df:fc:12:8b:f7:46:df:53:3c:25:
06:c3:99:90:e6:47:cc:e5:52:b7:e1:12:81:9f:ba:
c3:b4:3e:0c:a5:cc:48:bd:fc:0e:27:7e:2f:8c:84:
33:5d:a1:72:21:b8:64:a0:f3:6a:6c:f1:ba:47:56:
c9:c5:05:ad:a2:d1:ff:3e:6c:49:45:3a:de:e6:39:
02:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:81:8F:9A:58:6F:C9:7E:81:33:43:B6:AD:36:D1:0D:77:AB:49:93
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/vYGPmlhvyX6BM0O2rTbRDXerSZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.137.224.0/19
77.143.0.0/16
78.120.128.0/21
79.83.224.0/21
84.97.80.0/21
86.77.160.0/21
88.137.216.0/21
88.140.104.0/21
88.141.232.0/21
88.142.0.0/20
109.9.208.0/20
195.98.112.0/20
195.115.116.0/22
213.222.64.0/18
213.223.45.0-213.223.47.255
213.223.138.0/24
Signature Algorithm: sha256WithRSAEncryption
98:16:92:e4:73:00:1b:e7:56:2b:28:98:9a:f3:3a:b9:3c:01:
4f:29:f3:42:ae:50:eb:0e:22:33:62:7d:1d:c0:2b:06:23:ec:
b2:c2:26:fc:fa:e4:fe:63:a0:df:76:15:c0:45:58:9b:12:2e:
1e:5d:30:bc:fc:c4:0f:ea:14:48:73:40:8e:dc:c6:33:c4:d6:
7a:52:dc:33:07:91:7f:c0:07:ec:f4:24:c5:5c:2c:8d:63:a1:
83:9a:55:6c:39:09:b4:81:2a:e8:83:cd:e4:73:8b:b5:c7:d3:
92:b3:c5:a5:c2:cb:b4:5e:79:17:48:78:62:1f:10:dc:a7:ce:
39:6f:04:dd:88:d2:d1:ad:f0:be:c6:b5:a7:7d:fc:fb:93:16:
97:72:9e:ba:13:53:67:23:85:97:12:27:de:c3:81:de:b1:37:
9c:f3:41:3d:48:f6:af:7d:91:66:b4:e6:0d:04:35:c9:d6:fe:
da:22:15:9f:f1:7c:91:20:a6:f9:81:da:59:db:f3:3f:ed:04:
99:bf:3a:0b:13:ad:44:50:d4:ee:f6:8a:36:13:0a:12:8f:7d:
99:46:a6:b3:6b:32:77:32:b4:1f:b1:3f:28:9e:8d:5f:5a:17:
64:a4:70:9b:fc:0d:e2:41:1b:4e:0e:e5:b7:6f:22:79:27:ba:
7b:aa:ba:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org