Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/7AdeKppteOylRdxgzMnk-DFHPXQ.roa
File: 7AdeKppteOylRdxgzMnk-DFHPXQ.roa (raw, json)
Hash identifier: V2IYblilWnp0sygJjmjMsL90L+8NgrXQA7fKiyNAm+8=
Subject key identifier: EC:07:5E:2A:9A:6D:78:EC:A5:45:DC:60:CC:C9:E4:F8:31:47:3D:74
Certificate issuer: /CN=f0d5dfdde4d679c711cce06edf4036ca4e5cc103
Certificate serial: 01B40C
Authority key identifier: F0:D5:DF:DD:E4:D6:79:C7:11:CC:E0:6E:DF:40:36:CA:4E:5C:C1:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8NXf3eTWeccRzOBu30A2yk5cwQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/7AdeKppteOylRdxgzMnk-DFHPXQ.roa
Signing time: Tue 01 Mar 2022 01:43:43 +0000
ROA not before: Tue 01 Mar 2022 01:43:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41096
IP address blocks: 176.98.82.0/24 maxlen: 24
176.98.84.0/24 maxlen: 24
176.98.83.0/24 maxlen: 24
176.98.79.0/24 maxlen: 24
176.98.81.0/24 maxlen: 24
176.98.80.0/24 maxlen: 24
176.98.85.0/24 maxlen: 24
176.98.89.0/24 maxlen: 24
176.98.91.0/24 maxlen: 24
176.98.90.0/24 maxlen: 24
176.98.86.0/24 maxlen: 24
176.98.88.0/24 maxlen: 24
176.98.87.0/24 maxlen: 24
176.98.93.0/24 maxlen: 24
176.98.92.0/24 maxlen: 24
176.98.95.0/24 maxlen: 24
176.98.94.0/24 maxlen: 24
195.189.104.0/24 maxlen: 24
195.189.104.0/22 maxlen: 22
195.189.105.0/24 maxlen: 24
195.189.107.0/24 maxlen: 24
195.189.106.0/24 maxlen: 24
176.98.64.0/19 maxlen: 19
176.98.64.0/24 maxlen: 24
176.98.69.0/24 maxlen: 24
176.98.68.0/24 maxlen: 24
176.98.70.0/24 maxlen: 24
176.98.65.0/24 maxlen: 24
176.98.67.0/24 maxlen: 24
176.98.66.0/24 maxlen: 24
176.98.71.0/24 maxlen: 24
176.98.78.0/24 maxlen: 24
176.98.76.0/24 maxlen: 24
176.98.75.0/24 maxlen: 24
176.98.77.0/24 maxlen: 24
176.98.72.0/24 maxlen: 24
176.98.74.0/24 maxlen: 24
176.98.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111628 (0x1b40c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0d5dfdde4d679c711cce06edf4036ca4e5cc103
Validity
Not Before: Mar 1 01:43:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec075e2a9a6d78eca545dc60ccc9e4f831473d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:6e:0a:f4:cf:bc:4a:e7:f9:f0:6f:4a:80:
38:b0:c6:8c:22:de:72:89:ba:24:fe:0d:f0:0a:33:
9a:c6:62:d3:0e:c0:39:06:67:28:23:7b:88:1e:d7:
09:cc:49:69:72:59:b5:14:d1:25:66:da:87:95:7c:
3e:9a:67:15:cd:99:f9:9b:08:0f:ef:df:3b:09:d4:
f7:46:48:32:63:74:2e:52:b2:34:1c:65:c7:75:7e:
7f:43:d3:0d:69:08:4a:ee:ff:c0:b8:ba:95:fd:43:
f6:6b:c1:3d:7b:fb:e4:25:30:01:88:39:11:a3:56:
ec:7e:e6:46:11:02:19:e5:2a:ca:e8:67:de:a3:66:
a1:08:e6:0c:4e:5b:bd:9a:0c:d2:25:54:ba:d5:1a:
68:bd:3a:5c:d6:93:5e:96:a0:32:43:61:86:f1:c4:
a6:50:c6:7d:16:f2:a7:ba:2f:6d:01:96:c6:68:07:
0a:80:da:44:0b:ac:40:ac:5d:7b:18:f5:b3:fa:c0:
09:31:fe:82:a1:9e:87:20:7c:81:48:69:45:c6:39:
c4:e9:7d:37:03:a4:98:aa:d3:9b:32:8b:d0:13:d8:
82:56:64:8c:d8:cb:90:86:82:92:e8:3a:c7:0b:1c:
7f:5f:29:4e:b5:7e:fc:a0:77:f7:ae:8c:4e:45:3b:
47:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:07:5E:2A:9A:6D:78:EC:A5:45:DC:60:CC:C9:E4:F8:31:47:3D:74
X509v3 Authority Key Identifier:
keyid:F0:D5:DF:DD:E4:D6:79:C7:11:CC:E0:6E:DF:40:36:CA:4E:5C:C1:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8NXf3eTWeccRzOBu30A2yk5cwQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/7AdeKppteOylRdxgzMnk-DFHPXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/8NXf3eTWeccRzOBu30A2yk5cwQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.64.0/19
195.189.104.0/22
Signature Algorithm: sha256WithRSAEncryption
63:db:86:13:54:ab:c0:5f:67:50:19:09:e3:10:d4:e9:c7:ec:
0c:2d:95:6f:ea:60:ea:c9:05:5a:88:98:fd:b6:88:80:0f:13:
7b:da:92:af:02:9b:47:5a:f5:b3:fa:e6:d8:83:27:a2:94:0a:
6a:24:18:5c:7e:44:6d:43:51:5a:2b:6b:9c:69:8b:84:5f:ef:
5d:a1:be:b5:00:c9:e4:28:5c:cc:b7:a9:45:1e:b2:ea:e4:90:
50:36:71:d1:ac:94:a0:c0:d2:13:83:27:20:87:fc:f1:61:00:
32:ef:05:2f:f0:9c:bd:7d:97:80:5f:5f:6a:39:36:f0:e1:34:
1e:4b:1b:19:7e:27:78:7e:7a:47:58:4e:72:a0:6a:01:94:98:
0c:9b:92:02:f5:03:0f:27:81:71:48:74:10:8a:c7:42:5d:10:
b2:0e:4e:8e:9e:96:be:e3:c4:b7:21:4e:83:ae:38:06:78:9f:
ac:14:6a:b2:38:3e:1b:c9:85:64:d8:5f:a8:fd:e9:90:92:9d:
bd:0e:f2:a6:b9:23:3b:e9:9f:81:1e:dc:b4:16:1d:02:c2:18:
6f:b8:2f:dd:8e:56:b3:76:21:a6:b1:27:6d:42:d9:2b:49:f1:
a8:d9:d2:82:f8:42:12:02:69:78:ac:16:6f:f0:b9:62:49:e0:
84:82:a0:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:20 2024 by rpki-client on console-ams.rpki-client.org