Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/k15DdJAP0_mHVShCBpBNXERTLJ8.roa
File: k15DdJAP0_mHVShCBpBNXERTLJ8.roa (raw, json)
Hash identifier: Qv1JPb+m0XO105+w8kPYSWVxelvJKGZtWZffT7sv/q8=
Subject key identifier: 93:5E:43:74:90:0F:D3:F9:87:55:28:42:06:90:4D:5C:44:53:2C:9F
Certificate issuer: /CN=19cdd8206c1e352c5065e481797ef77af0c3de8d
Certificate serial: 01DE3D
Authority key identifier: 19:CD:D8:20:6C:1E:35:2C:50:65:E4:81:79:7E:F7:7A:F0:C3:DE:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gc3YIGweNSxQZeSBeX73evDD3o0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/k15DdJAP0_mHVShCBpBNXERTLJ8.roa
Signing time: Fri 13 May 2022 12:54:40 +0000
ROA not before: Fri 13 May 2022 12:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51669
IP address blocks: 176.120.176.0/22 maxlen: 22
176.120.176.0/20 maxlen: 20
176.120.180.0/22 maxlen: 22
176.120.184.0/22 maxlen: 22
176.120.188.0/22 maxlen: 22
176.120.190.0/24 maxlen: 24
178.159.48.0/20 maxlen: 20
178.159.48.0/22 maxlen: 22
178.159.56.0/22 maxlen: 22
178.159.52.0/22 maxlen: 22
178.159.60.0/22 maxlen: 22
31.129.128.0/22 maxlen: 22
31.129.132.0/22 maxlen: 22
31.129.128.0/19 maxlen: 19
185.63.217.0/24 maxlen: 24
185.63.216.0/23 maxlen: 23
185.63.216.0/24 maxlen: 24
31.129.136.0/22 maxlen: 22
185.63.218.0/23 maxlen: 23
185.63.219.0/24 maxlen: 24
185.63.218.0/24 maxlen: 24
31.129.144.0/22 maxlen: 22
31.129.140.0/22 maxlen: 22
31.129.148.0/22 maxlen: 22
31.129.152.0/22 maxlen: 22
31.129.156.0/22 maxlen: 22
31.129.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122429 (0x1de3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19cdd8206c1e352c5065e481797ef77af0c3de8d
Validity
Not Before: May 13 12:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=935e4374900fd3f98755284206904d5c44532c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:70:46:83:97:aa:de:4a:fb:c1:9c:dc:6e:68:
6d:c5:a2:68:1b:5f:dd:ac:13:70:81:49:7e:9e:32:
d6:7d:d8:1b:c0:8d:3f:d3:d0:b1:c2:9c:0c:07:cc:
b5:f9:16:97:da:55:d6:b8:ff:97:0a:ec:6e:76:a6:
75:31:5e:79:2c:b8:0a:51:79:1d:8c:ec:3e:59:be:
51:fd:29:b1:3a:7e:f1:57:a7:54:e3:68:7a:ee:41:
fe:bb:53:f8:79:6b:45:3b:49:86:dc:f9:b8:8a:b6:
4d:a5:45:de:16:c0:4a:86:e3:27:0a:b9:ed:3d:60:
90:e7:a9:e5:53:ec:7b:f5:a2:d3:09:83:81:64:81:
4d:a5:b3:12:45:93:f6:03:27:05:e8:57:e7:0d:8d:
1b:22:9c:2b:eb:22:2c:32:8e:71:b8:ac:c6:87:3a:
4a:3a:7f:d4:d9:54:89:ec:b5:ee:e6:19:6c:2e:fc:
a6:74:43:0d:76:4d:29:ee:b5:1b:3e:3f:be:17:98:
59:b2:3c:e7:c0:a5:89:f7:85:e2:b9:b5:d0:46:30:
de:b9:39:e8:76:12:97:2b:76:5e:df:06:70:6a:21:
79:38:94:9c:5e:69:cf:6d:c9:d7:a7:b3:0f:23:28:
89:a5:a4:d5:98:b2:41:c3:14:a2:03:83:0b:cc:2c:
49:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:5E:43:74:90:0F:D3:F9:87:55:28:42:06:90:4D:5C:44:53:2C:9F
X509v3 Authority Key Identifier:
keyid:19:CD:D8:20:6C:1E:35:2C:50:65:E4:81:79:7E:F7:7A:F0:C3:DE:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gc3YIGweNSxQZeSBeX73evDD3o0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/k15DdJAP0_mHVShCBpBNXERTLJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/f25066-9eba-43ac-bbb4-7b1778ddf7a9/1/Gc3YIGweNSxQZeSBeX73evDD3o0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.128.0/19
176.120.176.0/20
178.159.48.0/20
185.63.216.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:39:77:5e:bd:7a:72:f1:b9:c8:a4:86:6a:6f:3b:74:d5:68:
08:22:4a:9b:58:c8:62:a4:d7:41:bb:c8:0c:c0:1b:58:4c:ae:
2f:7a:6c:83:19:a2:5b:1d:78:13:a8:c9:5c:bf:7b:27:e4:ae:
14:8a:6e:5f:a7:dd:af:a5:09:d4:99:f5:45:d2:02:ca:06:75:
38:79:14:f4:7d:c2:55:12:34:2f:cd:5f:8c:fe:ac:18:24:c6:
90:84:13:38:b0:13:5a:d8:18:18:3d:f0:9b:76:24:14:fc:33:
35:d4:5a:4e:73:70:60:9a:51:02:ae:87:8f:f9:5d:6b:7b:54:
ed:3c:45:05:15:f9:80:94:b3:bf:78:9c:44:e8:0a:bd:1f:d5:
50:cd:58:cb:65:83:94:be:22:72:25:6f:90:db:57:75:37:e1:
87:4e:84:ae:7b:23:14:e7:ac:81:df:1d:dc:1e:d1:0e:91:f3:
b4:fe:96:a4:87:b9:ce:94:72:f6:f8:12:ed:ea:d0:dd:6e:d5:
a9:aa:0c:a8:79:2d:5d:3f:8b:10:fa:85:b0:6e:0f:f3:14:98:
29:fd:7b:b2:04:da:38:ad:9e:de:db:35:9a:c3:ff:c2:d5:ea:
2e:c5:5e:02:a3:17:54:b6:b8:a9:aa:16:af:3c:82:d3:da:12:
1c:49:68:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:58 2024 by rpki-client on console-ams.rpki-client.org