Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/I02Jd8MZVHMuuenwh-PInG8u8bs.roa
File: I02Jd8MZVHMuuenwh-PInG8u8bs.roa (raw, json)
Hash identifier: AwG4x/mgABYNJgBhXVXPpcwhR7rpj+uHhbz/bJnEu4M=
Subject key identifier: 23:4D:89:77:C3:19:54:73:2E:B9:E9:F0:87:E3:C8:9C:6F:2E:F1:BB
Certificate issuer: /CN=7d15cfedb9aeab42bf8ac5b24cb1aeec2a660943
Certificate serial: 0BA16063
Authority key identifier: 7D:15:CF:ED:B9:AE:AB:42:BF:8A:C5:B2:4C:B1:AE:EC:2A:66:09:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRXP7bmuq0K_isWyTLGu7CpmCUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/I02Jd8MZVHMuuenwh-PInG8u8bs.roa
Signing time: Sat 01 Jan 2022 12:02:16 +0000
ROA not before: Sat 01 Jan 2022 12:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 194.207.96.0/19 maxlen: 24
213.249.128.0/18 maxlen: 24
185.188.232.0/22 maxlen: 24
83.100.128.0/17 maxlen: 24
194.207.128.0/19 maxlen: 24
94.72.192.0/18 maxlen: 24
194.207.64.0/19 maxlen: 24
5.198.0.0/17 maxlen: 24
87.102.0.0/17 maxlen: 24
77.86.0.0/17 maxlen: 24
212.50.160.0/19 maxlen: 24
194.207.0.0/19 maxlen: 24
194.207.224.0/19 maxlen: 24
178.78.64.0/18 maxlen: 24
194.207.160.0/19 maxlen: 24
213.249.192.0/18 maxlen: 24
194.207.192.0/19 maxlen: 24
159.253.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195125347 (0xba16063)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d15cfedb9aeab42bf8ac5b24cb1aeec2a660943
Validity
Not Before: Jan 1 12:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=234d8977c31954732eb9e9f087e3c89c6f2ef1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:10:92:29:7e:13:28:d5:d6:ca:28:80:43:13:
d2:72:d9:80:91:65:c2:11:47:ad:18:b0:9e:f6:94:
01:e2:67:ed:d5:c4:e8:a5:3c:a9:ea:51:7a:04:06:
c0:33:79:31:c9:c0:67:40:b2:58:49:2c:1f:c0:a8:
8a:58:d3:e9:50:43:7b:a0:ce:d8:37:e3:71:c1:9e:
92:af:b1:83:e9:08:bd:12:66:6e:00:7e:53:bb:20:
fe:09:e1:4f:e6:39:16:42:fe:dc:c3:9a:de:7a:93:
28:04:b7:c5:2d:84:eb:b2:cc:2c:22:06:84:89:89:
d6:3f:58:6c:c3:a7:ef:0f:8b:68:ed:5e:69:7e:1e:
38:86:ea:5f:94:d5:45:cc:39:d5:65:46:60:3d:28:
cf:8a:1f:b1:ec:0e:84:44:cc:31:58:71:3f:cc:b6:
0b:ba:70:46:ed:90:3c:ab:bb:15:bb:4d:ae:0f:33:
5c:29:9f:79:5b:4c:64:51:13:8d:c2:8a:79:28:04:
bf:d6:6f:af:3f:2c:81:f1:d3:0a:39:8b:d6:68:34:
92:79:0b:9d:10:96:2c:99:39:ef:3c:40:98:32:fc:
83:31:7f:12:b6:95:86:8e:93:92:a5:09:81:b8:6b:
fb:36:05:dc:36:6c:70:88:7c:11:5a:cf:90:0d:ee:
4f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4D:89:77:C3:19:54:73:2E:B9:E9:F0:87:E3:C8:9C:6F:2E:F1:BB
X509v3 Authority Key Identifier:
keyid:7D:15:CF:ED:B9:AE:AB:42:BF:8A:C5:B2:4C:B1:AE:EC:2A:66:09:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRXP7bmuq0K_isWyTLGu7CpmCUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/I02Jd8MZVHMuuenwh-PInG8u8bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/fRXP7bmuq0K_isWyTLGu7CpmCUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.198.0.0/17
77.86.0.0/17
83.100.128.0/17
87.102.0.0/17
94.72.192.0/18
159.253.64.0/20
178.78.64.0/18
185.188.232.0/22
194.207.0.0/19
194.207.64.0-194.207.255.255
212.50.160.0/19
213.249.128.0/17
Signature Algorithm: sha256WithRSAEncryption
4e:d8:db:59:6f:d9:7e:d5:19:2f:aa:a5:85:e8:10:ec:ad:31:
07:2c:2e:38:19:9c:85:b5:03:b7:ae:14:c1:30:91:07:42:5b:
dd:54:d5:1f:5e:96:a6:03:a8:36:91:00:36:3b:40:07:5a:9f:
38:d4:66:17:2b:a3:85:b6:3e:6a:ff:92:3f:b4:e5:56:c5:62:
55:9f:5a:fd:1d:59:da:a4:d9:48:45:c7:38:a8:6d:d2:51:7a:
da:f1:bb:02:b7:7a:ee:c3:f7:94:00:07:28:ff:a7:67:bc:1b:
3e:61:71:86:4a:97:46:1f:2e:18:bb:ba:05:b4:ec:07:ab:84:
3e:20:52:2e:9b:96:4d:ca:c6:77:8a:c0:67:e4:bf:05:6c:ec:
63:24:28:ac:69:9b:85:1c:45:0a:c8:e4:46:1b:c9:fa:bd:48:
8e:f2:59:89:5f:09:64:47:8d:a3:32:cd:88:9a:04:f4:aa:48:
79:5c:41:07:d3:7d:24:3c:1a:56:5d:df:c2:81:64:23:3a:2f:
3e:be:fa:f7:21:2d:b9:20:21:93:73:3e:bf:2a:49:83:be:06:
e8:b2:3d:50:e1:42:6d:f7:25:64:0a:f9:f5:7d:9d:c8:26:ae:
00:82:62:73:4b:8a:1c:be:1d:47:c9:4d:92:51:60:38:d5:21:
ab:a6:7f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:20 2024 by rpki-client on console-fra.rpki-client.org