Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/jWtK-OZrL3MA8mIr-AAuKWaWwOI.roa
File: jWtK-OZrL3MA8mIr-AAuKWaWwOI.roa (raw, json)
Hash identifier: Gt5CHFl5wnqHONXnq6fUv8nWTVoXaaMvWBjxQ1iPL5M=
Subject key identifier: 8D:6B:4A:F8:E6:6B:2F:73:00:F2:62:2B:F8:00:2E:29:66:96:C0:E2
Certificate issuer: /CN=7d15cfedb9aeab42bf8ac5b24cb1aeec2a660943
Certificate serial: 0BA02818
Authority key identifier: 7D:15:CF:ED:B9:AE:AB:42:BF:8A:C5:B2:4C:B1:AE:EC:2A:66:09:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRXP7bmuq0K_isWyTLGu7CpmCUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/jWtK-OZrL3MA8mIr-AAuKWaWwOI.roa
Signing time: Sat 01 Jan 2022 12:02:16 +0000
ROA not before: Sat 01 Jan 2022 12:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12390
IP address blocks: 194.207.96.0/19 maxlen: 19
213.249.128.0/18 maxlen: 18
185.188.232.0/22 maxlen: 22
83.100.128.0/17 maxlen: 17
94.72.192.0/18 maxlen: 18
194.207.128.0/19 maxlen: 19
194.207.64.0/19 maxlen: 19
5.198.0.0/17 maxlen: 17
87.102.0.0/17 maxlen: 17
212.50.160.0/19 maxlen: 19
77.86.0.0/17 maxlen: 17
194.207.224.0/19 maxlen: 19
178.78.64.0/18 maxlen: 18
194.207.160.0/19 maxlen: 19
213.249.192.0/18 maxlen: 18
194.207.192.0/19 maxlen: 19
159.253.64.0/20 maxlen: 20
2a00:4900::/32 maxlen: 32
2a00:4902::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195045400 (0xba02818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d15cfedb9aeab42bf8ac5b24cb1aeec2a660943
Validity
Not Before: Jan 1 12:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d6b4af8e66b2f7300f2622bf8002e296696c0e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e1:b1:fd:a2:6d:0f:54:eb:4a:18:09:84:2d:
b0:71:1a:40:ba:f5:d4:3b:a5:c1:37:cd:1f:36:b6:
d2:fd:fd:10:47:1c:42:61:e9:4d:a5:bc:19:aa:85:
bd:b2:ca:be:d7:e7:07:f0:e5:0e:89:06:d4:ef:aa:
c7:e5:08:e7:8c:e3:22:06:64:96:52:51:6a:d9:0e:
da:5c:4f:d6:91:a3:6e:29:26:cd:61:72:e8:4a:40:
2a:15:f6:54:cc:8e:91:77:a1:d6:41:58:71:a8:4a:
33:c6:5c:c8:ad:1d:d4:f6:6b:98:6b:86:9c:66:d3:
5e:c4:b8:8d:2a:e1:3a:5f:bc:b8:e9:83:c2:96:f5:
53:ba:ae:f0:c4:a4:80:ff:20:9d:1b:ff:0b:be:4b:
63:a4:02:17:db:0b:8b:ce:53:c1:e3:e4:6b:79:f1:
7e:92:d0:13:e8:b2:84:a0:d5:cd:f6:44:47:ad:79:
80:05:db:aa:53:ce:75:6b:4e:d0:9f:91:66:dd:3f:
aa:8e:87:f5:bf:4b:c3:e8:02:41:9e:33:6d:02:d3:
b0:36:e9:e3:4d:b9:81:32:b7:53:95:25:7f:05:7d:
be:c0:62:ed:ae:cd:79:a3:41:8e:16:a9:f5:79:2e:
40:80:f6:a0:3a:56:31:e4:f8:6c:6f:a4:54:97:8b:
0c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6B:4A:F8:E6:6B:2F:73:00:F2:62:2B:F8:00:2E:29:66:96:C0:E2
X509v3 Authority Key Identifier:
keyid:7D:15:CF:ED:B9:AE:AB:42:BF:8A:C5:B2:4C:B1:AE:EC:2A:66:09:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRXP7bmuq0K_isWyTLGu7CpmCUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/jWtK-OZrL3MA8mIr-AAuKWaWwOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ad6b73-0e8c-4a45-b6bb-42281f5518a9/1/fRXP7bmuq0K_isWyTLGu7CpmCUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.198.0.0/17
77.86.0.0/17
83.100.128.0/17
87.102.0.0/17
94.72.192.0/18
159.253.64.0/20
178.78.64.0/18
185.188.232.0/22
194.207.64.0-194.207.255.255
212.50.160.0/19
213.249.128.0/17
IPv6:
2a00:4900::/32
2a00:4902::/32
Signature Algorithm: sha256WithRSAEncryption
80:c3:fb:a6:63:94:dc:28:ce:2a:16:e0:d3:83:f7:08:97:64:
b9:26:31:06:14:cf:f8:f3:53:96:e9:c6:1f:5c:28:dc:a6:b2:
cb:9c:53:5e:d9:43:21:04:71:db:96:ab:d6:20:3f:c5:34:69:
16:8f:6b:db:3f:87:70:84:3e:ad:d8:8f:ce:e4:3a:00:e1:f6:
79:15:fe:9b:98:a7:c6:9c:52:b7:30:54:41:c4:8d:13:70:f5:
48:e1:5a:83:03:9c:46:06:b9:84:9b:9c:b4:1d:27:42:ef:44:
02:19:d6:fe:0b:10:c4:fd:ae:de:de:72:24:d9:00:48:50:74:
f8:21:51:7e:53:37:88:1d:b7:68:d2:44:27:a8:a3:c5:4e:d9:
ce:f4:fc:13:3d:b5:9b:ea:68:ec:99:5e:8c:07:11:c0:97:9e:
12:ef:4f:8b:c0:51:64:50:2a:10:af:7a:5d:bf:c3:53:67:2d:
eb:91:de:27:36:dd:55:cb:57:c2:2d:4e:79:92:b9:53:4b:b1:
41:39:c4:d6:95:ca:27:96:1e:b5:60:48:ab:0e:8c:ee:9a:d0:
37:e0:7b:63:b7:08:e3:da:95:cf:b6:1d:a1:37:fe:fb:df:21:
c0:1a:c7:9b:f6:bb:cd:c4:0d:8c:54:1f:42:75:68:f1:14:5f:
b6:a7:84:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:20 2024 by rpki-client on console-fra.rpki-client.org