Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/k_vhB5_3qCVFObqyqQnKa3GCBnI.roa
File: k_vhB5_3qCVFObqyqQnKa3GCBnI.roa (raw, json)
Hash identifier: TyIsTVUg/LGiZ0jJZq0fV/C2BWG/PB83V3Ra7JSKNSo=
Subject key identifier: 93:FB:E1:07:9F:F7:A8:25:45:39:BA:B2:A9:09:CA:6B:71:82:06:72
Certificate issuer: /CN=624c494f56193b4e9adf3db72e4f01978c587f18
Certificate serial: 01841022942FCAF75503D0B551B42A495241
Authority key identifier: 62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/k_vhB5_3qCVFObqyqQnKa3GCBnI.roa
Signing time: Tue 25 Oct 2022 17:13:32 +0000
ROA not before: Tue 25 Oct 2022 17:13:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204720
IP address blocks: 185.31.113.0/24 maxlen: 24
91.231.238.0/24 maxlen: 24
91.238.111.0/24 maxlen: 24
151.236.110.0/24 maxlen: 24
151.236.108.0/24 maxlen: 24
151.236.112.0/24 maxlen: 24
151.236.118.0/24 maxlen: 24
151.236.117.0/24 maxlen: 24
151.236.116.0/24 maxlen: 24
151.236.115.0/24 maxlen: 24
151.236.114.0/24 maxlen: 24
151.236.124.0/24 maxlen: 24
151.236.121.0/24 maxlen: 24
151.236.120.0/24 maxlen: 24
151.236.119.0/24 maxlen: 24
151.236.127.0/24 maxlen: 24
151.236.126.0/24 maxlen: 24
151.236.71.0/24 maxlen: 24
151.236.70.0/24 maxlen: 24
151.236.69.0/24 maxlen: 24
151.236.68.0/24 maxlen: 24
151.236.66.0/24 maxlen: 24
151.236.82.0/24 maxlen: 24
151.236.79.0/24 maxlen: 24
151.236.98.0/24 maxlen: 24
151.236.97.0/24 maxlen: 24
151.236.92.0/24 maxlen: 24
151.236.105.0/24 maxlen: 24
151.236.104.0/24 maxlen: 24
151.236.103.0/24 maxlen: 24
151.236.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:22:94:2f:ca:f7:55:03:d0:b5:51:b4:2a:49:52:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624c494f56193b4e9adf3db72e4f01978c587f18
Validity
Not Before: Oct 25 17:13:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93fbe1079ff7a8254539bab2a909ca6b71820672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7e:1e:99:7e:ef:16:f6:78:6f:f0:2b:52:4b:
fc:5a:89:32:94:b9:c6:d6:78:c8:c3:b7:d0:07:b8:
5f:37:ca:5b:eb:d1:75:78:34:11:f4:68:99:7a:36:
23:e9:cb:ad:e3:d0:8c:25:0e:9e:5b:69:e5:65:fc:
10:04:81:66:71:25:ac:1e:92:56:4b:c4:bf:31:1a:
3c:da:3a:82:7c:6f:97:f4:55:1c:5e:b5:e0:37:db:
e1:0a:e2:43:00:71:89:79:d1:b6:04:df:82:f4:1c:
6e:78:29:47:fb:50:bb:df:55:5d:b3:64:3d:a2:f8:
a6:03:1f:a8:56:08:01:05:21:16:fd:a3:5c:0a:ba:
a5:1c:3e:f7:85:d2:88:6a:71:22:eb:28:9a:15:22:
68:d1:82:3e:ae:34:53:61:f2:67:34:8a:3e:52:c6:
f1:9d:37:0e:c7:e0:f7:0a:ef:2f:97:ab:5f:44:8b:
28:b3:9b:e8:4a:16:74:07:d7:92:17:3d:6a:5a:7d:
65:8b:95:3e:fa:bb:1c:03:5d:00:76:18:f5:12:b5:
a9:45:4d:0d:dd:f4:96:f1:37:d7:cf:5c:78:d7:15:
48:d0:3b:58:9a:d0:94:76:e3:b1:f9:09:e3:c9:6a:
12:ee:55:66:0f:01:e4:b7:47:b5:ac:5d:4c:77:04:
d5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FB:E1:07:9F:F7:A8:25:45:39:BA:B2:A9:09:CA:6B:71:82:06:72
X509v3 Authority Key Identifier:
keyid:62:4C:49:4F:56:19:3B:4E:9A:DF:3D:B7:2E:4F:01:97:8C:58:7F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkxJT1YZO06a3z23Lk8Bl4xYfxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/k_vhB5_3qCVFObqyqQnKa3GCBnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0988af-8d7f-4c29-b5cc-7aab6ef955a1/1/YkxJT1YZO06a3z23Lk8Bl4xYfxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.238.0/24
91.238.111.0/24
151.236.66.0/24
151.236.68.0/22
151.236.79.0/24
151.236.82.0/24
151.236.92.0/24
151.236.97.0-151.236.98.255
151.236.101.0/24
151.236.103.0-151.236.105.255
151.236.108.0/24
151.236.110.0/24
151.236.112.0/24
151.236.114.0-151.236.121.255
151.236.124.0/24
151.236.126.0/23
185.31.113.0/24
Signature Algorithm: sha256WithRSAEncryption
45:4d:b8:f3:52:0f:0b:1d:2f:93:1d:9f:5e:fc:09:58:0a:92:
35:e5:40:9a:2c:00:7a:07:19:ab:fb:05:78:f9:5d:99:f6:ba:
68:56:12:81:d9:b0:08:a6:e1:44:ca:aa:86:1a:bb:bf:f0:5e:
97:b3:fd:35:4e:2c:26:44:64:f6:cb:92:b0:aa:f0:68:d9:3d:
ef:b0:1f:35:5a:28:db:87:67:c2:e1:5b:b7:f5:16:16:de:3a:
d9:84:15:db:50:0c:07:e0:8a:a1:07:92:4f:2b:00:9f:0c:91:
dd:2b:40:e1:ab:6a:a0:47:57:7a:55:bf:b8:10:49:fb:50:12:
b2:fb:c8:37:be:2a:d1:e1:0b:b8:d7:24:9b:1e:b7:b4:45:a9:
88:d3:26:85:f4:49:ac:d0:e4:60:de:01:3c:8d:8a:bf:2b:62:
87:bd:82:a2:ec:70:0c:f3:0a:e0:78:8f:3c:74:f7:f3:fe:bf:
be:2e:65:4f:56:bb:f3:0e:43:98:cf:fa:2e:a5:76:96:ab:f2:
20:f1:7e:01:ff:75:03:60:62:12:d2:2a:a2:86:34:d7:f9:f2:
d4:d2:7e:43:b3:2e:3b:39:28:fb:c0:2f:c2:cb:fc:2f:9d:38:
ca:92:8f:96:b6:5c:c6:77:cb:a2:be:39:1e:e8:57:fa:7c:a0:
18:23:73:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:22 2024 by rpki-client on console-ams.rpki-client.org