Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/rfSS3_5Nar_Hxfpayf6U1Ub3Gy8.roa
File: rfSS3_5Nar_Hxfpayf6U1Ub3Gy8.roa (raw, json)
Hash identifier: 7VDk+xRKDRNuteL1yQJatU4jeLIgFt6nOWVY+Ebf48g=
Subject key identifier: AD:F4:92:DF:FE:4D:6A:BF:C7:C5:FA:5A:C9:FE:94:D5:46:F7:1B:2F
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 3453E3F9
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/rfSS3_5Nar_Hxfpayf6U1Ub3Gy8.roa
Signing time: Tue 15 Feb 2022 08:18:02 +0000
ROA not before: Tue 15 Feb 2022 08:18:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8517
IP address blocks: 193.140.244.0/22 maxlen: 22
193.140.248.0/22 maxlen: 22
193.140.252.0/23 maxlen: 23
193.255.58.0/24 maxlen: 24
193.140.183.0/24 maxlen: 24
193.140.4.0/22 maxlen: 22
193.140.1.0/24 maxlen: 24
193.140.2.0/23 maxlen: 23
193.140.0.0/16 maxlen: 24
193.140.24.0/22 maxlen: 22
193.140.35.0/24 maxlen: 24
193.255.0.0/16 maxlen: 24
193.140.134.0/24 maxlen: 24
193.140.152.0/22 maxlen: 22
193.140.159.0/24 maxlen: 24
193.140.68.0/23 maxlen: 23
193.140.83.0/24 maxlen: 24
79.123.128.0/17 maxlen: 24
193.140.88.0/24 maxlen: 24
193.140.98.0/23 maxlen: 23
194.27.232.0/22 maxlen: 22
194.27.236.0/23 maxlen: 23
95.183.128.0/17 maxlen: 24
194.27.43.0/24 maxlen: 24
185.7.0.0/22 maxlen: 22
194.27.0.0/16 maxlen: 24
2001:a98:1b0::/48 maxlen: 48
2001:a98:230::/48 maxlen: 48
2001:a98:1f0::/48 maxlen: 48
2001:a98:130::/48 maxlen: 48
2001:a98:170::/48 maxlen: 48
2001:a98:1c0::/48 maxlen: 48
2001:a98:240::/48 maxlen: 48
2001:a98:200::/48 maxlen: 48
2001:a98:180::/48 maxlen: 48
2001:a98:280::/48 maxlen: 48
2001:a98:1e::/48 maxlen: 48
2001:a98:250::/48 maxlen: 48
2001:a98:1d0::/48 maxlen: 48
2001:a98:1050::/48 maxlen: 48
2001:a98:150::/48 maxlen: 48
2001:a98:190::/48 maxlen: 48
2001:a98:210::/48 maxlen: 48
2001:a98:290::/48 maxlen: 48
2001:a98::/32 maxlen: 32
2001:a98:220::/48 maxlen: 48
2001:a98:1a0::/48 maxlen: 48
2001:a98:160::/48 maxlen: 48
2001:a98:120::/48 maxlen: 48
2001:a98:20::/48 maxlen: 48
2001:a98:1e0::/48 maxlen: 48
2001:a98:260::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 877913081 (0x3453e3f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Feb 15 08:18:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adf492dffe4d6abfc7c5fa5ac9fe94d546f71b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4a:e9:5b:c4:0b:db:42:c6:95:80:f0:47:01:
ee:12:45:61:d7:35:7a:7e:15:58:ac:1a:7d:67:57:
63:f2:14:d4:ad:84:6c:c2:d3:43:16:90:2d:8c:ca:
23:ec:99:0a:d5:42:cf:b9:d2:31:57:e6:9f:6b:a8:
17:29:ea:c3:5e:f6:54:c9:b9:4b:41:82:e9:a8:ab:
41:9e:ea:df:62:3f:7e:35:aa:4f:28:aa:20:ea:15:
a1:b1:cd:0a:16:f8:b2:3e:73:ce:bb:f7:ed:55:3e:
3a:37:14:c7:d0:73:7f:9e:d3:c1:b7:d9:97:0f:6e:
1b:18:c5:5e:0a:4e:9e:8c:0f:02:35:f3:b8:ef:c3:
db:c6:0f:0f:e3:da:7f:6d:3a:24:05:b2:f2:b8:e7:
bf:4d:dc:f3:89:b6:27:12:36:dc:45:9d:61:44:58:
69:e4:0f:ef:33:15:8d:98:fb:1b:e3:0a:f2:2e:9b:
22:71:62:1b:56:75:e0:3a:01:a9:16:cb:87:6b:e0:
33:7d:03:27:14:f6:37:b9:6c:0c:9f:61:37:87:c2:
11:b6:74:07:fb:53:40:d6:0b:d8:da:51:71:76:8a:
ed:09:8f:78:9d:f3:3f:69:1d:b6:63:7b:85:23:05:
f0:1b:cb:63:28:f6:27:90:47:27:d6:af:5d:79:78:
89:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F4:92:DF:FE:4D:6A:BF:C7:C5:FA:5A:C9:FE:94:D5:46:F7:1B:2F
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/rfSS3_5Nar_Hxfpayf6U1Ub3Gy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.128.0/17
95.183.128.0/17
185.7.0.0/22
193.140.0.0/16
193.255.0.0/16
194.27.0.0/16
IPv6:
2001:a98::/32
Signature Algorithm: sha256WithRSAEncryption
43:a9:98:91:96:f5:55:6a:46:2d:3b:b1:b7:fc:fb:98:78:d8:
c9:0d:aa:b8:a1:4c:8e:d2:f6:b7:bd:b3:3d:6d:d1:db:34:6e:
09:de:99:4f:30:f0:a3:42:30:44:4c:62:4a:2a:78:99:ac:1e:
67:b1:39:2b:13:b2:81:e6:4f:24:cb:72:fa:4e:71:aa:77:42:
0d:54:9e:c5:0f:83:e0:c3:ef:ac:2f:58:bc:13:f8:bc:db:cd:
28:0a:49:00:f3:3e:00:11:ab:44:36:77:49:06:d5:88:3d:b8:
13:f3:c0:8a:d5:23:5f:4d:ec:f3:e4:c7:8d:51:c4:5b:64:6c:
59:c9:4e:db:cd:b6:e8:a5:50:28:46:21:74:5b:c3:6a:7c:2b:
e9:b6:5f:16:c7:6b:30:b5:6d:c3:99:13:bb:3c:23:2d:ef:d8:
2a:b5:65:dc:18:84:0b:25:db:77:cc:f3:75:97:52:66:8d:4f:
c6:c6:57:14:fa:f1:4c:75:20:c3:ec:2b:54:a7:19:0d:f9:a7:
4b:cd:da:f9:d9:1f:28:b0:c2:e5:b6:88:ff:78:f1:d3:da:9f:
35:8e:0b:bd:42:db:cf:5f:88:21:8d:08:63:54:66:4d:03:91:
6e:ad:9b:11:11:18:42:d7:a9:27:bc:69:10:1c:8f:27:f8:a1:
94:5e:7c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org