Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/E7msl09aliSCBnqAz2_PT3Iz_r8.roa
File: E7msl09aliSCBnqAz2_PT3Iz_r8.roa (raw, json)
Hash identifier: 1kOEOf0izz+VYjPvxNh3PBjyhR0ABUl+2Tmlk+r2Rtg=
Subject key identifier: 13:B9:AC:97:4F:5A:96:24:82:06:7A:80:CF:6F:CF:4F:72:33:FE:BF
Certificate issuer: /CN=97ecfbb3550bf2c7674cc52e9cbbf3a933f5e778
Certificate serial: 076B94AF
Authority key identifier: 97:EC:FB:B3:55:0B:F2:C7:67:4C:C5:2E:9C:BB:F3:A9:33:F5:E7:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-z7s1UL8sdnTMUunLvzqTP153g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/E7msl09aliSCBnqAz2_PT3Iz_r8.roa
Signing time: Sat 01 Jan 2022 14:00:25 +0000
ROA not before: Sat 01 Jan 2022 14:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205362
IP address blocks: 188.212.251.0/24 maxlen: 24
188.215.32.0/24 maxlen: 24
185.216.4.0/24 maxlen: 24
80.240.106.0/24 maxlen: 24
185.216.4.0/22 maxlen: 22
185.216.5.0/24 maxlen: 24
185.216.6.0/24 maxlen: 24
185.216.7.0/24 maxlen: 24
128.0.42.0/23 maxlen: 23
128.0.42.0/24 maxlen: 24
128.0.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124490927 (0x76b94af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ecfbb3550bf2c7674cc52e9cbbf3a933f5e778
Validity
Not Before: Jan 1 14:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13b9ac974f5a962482067a80cf6fcf4f7233febf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f1:1b:05:9d:55:c9:33:3b:f3:21:42:b9:86:
4d:54:2a:8c:c5:63:e3:0a:a6:ed:2e:d4:75:0d:80:
3d:83:10:cc:2e:09:23:9a:c0:2b:85:8f:13:26:e7:
00:fa:44:0e:c7:c0:a2:b0:94:74:9a:e3:78:43:f9:
1d:b0:57:9e:19:79:ef:e5:a0:40:91:a0:d9:4b:63:
cf:b4:14:ec:2b:ce:2f:86:04:30:ba:d8:dc:ca:63:
52:36:af:4d:de:29:ef:a4:df:2c:16:f5:1d:a7:8b:
1f:ab:22:fa:88:2a:d8:c6:29:ec:6b:b0:99:ca:b6:
53:71:7c:1b:6e:dc:4f:b0:d3:46:1e:a4:03:bc:1f:
40:80:a2:21:f6:08:f8:c2:3b:f4:7d:ea:b4:5a:e2:
a3:9b:47:5c:5b:f9:30:50:8c:65:a8:b4:2a:20:c7:
bf:07:a7:33:1f:7f:1c:c5:b5:65:ea:d3:1f:c7:42:
21:74:65:91:df:7b:8b:8b:95:29:0b:12:94:0b:56:
5f:3b:b5:96:5d:aa:d0:2d:01:e4:7e:83:05:bd:58:
5c:3b:23:68:63:76:d5:76:ab:f3:d2:ed:bf:23:47:
f6:49:8e:5a:77:82:b7:2d:c0:6e:9a:8b:50:bf:0d:
ec:b1:e4:fb:f0:28:fe:10:83:9e:25:25:f5:85:0e:
c7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B9:AC:97:4F:5A:96:24:82:06:7A:80:CF:6F:CF:4F:72:33:FE:BF
X509v3 Authority Key Identifier:
keyid:97:EC:FB:B3:55:0B:F2:C7:67:4C:C5:2E:9C:BB:F3:A9:33:F5:E7:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-z7s1UL8sdnTMUunLvzqTP153g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/E7msl09aliSCBnqAz2_PT3Iz_r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/l-z7s1UL8sdnTMUunLvzqTP153g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.240.106.0/24
128.0.42.0/23
185.216.4.0/22
188.212.251.0/24
188.215.32.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:49:68:61:e7:0f:d7:31:8d:c9:2a:30:97:4f:24:d9:58:b5:
02:c9:7f:02:56:06:31:3a:69:12:6e:23:9d:65:84:dc:dd:5c:
b3:c1:19:d2:b2:61:5b:56:1c:a6:c2:ce:bc:81:5c:16:5d:70:
f1:e1:df:52:2f:3b:77:2b:12:5a:69:a2:0d:94:c7:7a:ea:21:
1c:67:38:a1:6a:73:8e:b8:a6:80:38:f6:fa:44:ef:df:c6:a7:
51:0a:59:57:6c:27:d7:a8:a3:14:41:dd:54:4f:9f:08:1a:d7:
d7:01:97:56:97:bc:24:31:da:fc:df:44:6c:60:ed:58:45:40:
29:92:6a:49:72:49:3d:f3:3e:98:7a:9d:63:6e:ea:55:f0:4e:
a5:27:df:02:76:2e:16:ea:7c:a6:5e:66:17:49:83:54:fb:11:
41:b1:47:48:08:58:1b:06:05:56:bc:33:98:3c:4a:d3:10:65:
2e:c3:84:00:d6:60:b4:14:25:54:01:38:29:aa:b4:c3:3a:90:
d0:fb:b0:a5:e8:3a:21:a3:30:52:f9:18:0d:7e:53:d4:45:18:
fe:d0:11:0d:0a:8d:75:ec:db:5f:03:c3:e5:e1:19:84:93:f0:
5f:d5:26:5e:54:6f:ed:8c:3c:9d:28:c4:3e:20:6a:0a:ab:16:
d6:a9:3e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:05 2024 by rpki-client on console-fra.rpki-client.org