Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/DA8hkFCTs4bGOFzvcuqS9OgTF8I.roa
File: DA8hkFCTs4bGOFzvcuqS9OgTF8I.roa (raw, json)
Hash identifier: aNU7aiXukB1HVdOr/fWEqZqUxQrtVKwImguW5mR54lA=
Subject key identifier: 0C:0F:21:90:50:93:B3:86:C6:38:5C:EF:72:EA:92:F4:E8:13:17:C2
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 11F933C4
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/DA8hkFCTs4bGOFzvcuqS9OgTF8I.roa
Signing time: Wed 29 Jun 2022 10:22:23 +0000
ROA not before: Wed 29 Jun 2022 10:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 93.176.64.0/18 maxlen: 18
193.105.149.0/24 maxlen: 24
80.88.128.0/20 maxlen: 20
80.243.112.0/20 maxlen: 20
5.56.144.0/20 maxlen: 20
89.221.160.0/20 maxlen: 20
193.105.116.0/24 maxlen: 24
87.116.0.0/18 maxlen: 18
212.60.120.0/21 maxlen: 21
83.151.128.0/18 maxlen: 18
83.136.88.0/21 maxlen: 21
77.233.224.0/19 maxlen: 19
130.185.128.0/20 maxlen: 20
94.18.211.0/24 maxlen: 24
217.195.176.0/20 maxlen: 20
217.195.178.0/24 maxlen: 24
62.12.32.0/20 maxlen: 20
78.153.160.0/19 maxlen: 19
62.12.48.0/21 maxlen: 21
185.67.128.0/22 maxlen: 22
82.192.160.0/19 maxlen: 19
37.49.128.0/20 maxlen: 20
212.98.96.0/24 maxlen: 24
185.20.240.0/22 maxlen: 22
195.140.132.0/22 maxlen: 22
217.74.208.0/20 maxlen: 20
188.120.80.0/21 maxlen: 21
5.179.80.0/20 maxlen: 20
92.62.192.0/20 maxlen: 20
62.116.192.0/19 maxlen: 19
217.116.208.0/20 maxlen: 20
46.32.156.0/22 maxlen: 22
2a02:188::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301544388 (0x11f933c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jun 29 10:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c0f21905093b386c6385cef72ea92f4e81317c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ee:fe:07:e8:97:d1:ca:a1:e2:d7:5c:2c:76:
ca:4c:5f:00:8e:cd:62:5f:ca:37:05:62:1f:dc:1e:
24:df:85:69:9a:51:4e:a9:26:8c:47:bf:7c:20:43:
5b:8f:65:2e:c4:21:e9:46:ed:9a:09:b1:70:45:a1:
ac:e5:45:e1:c8:72:75:14:11:f8:4e:41:83:89:7e:
6c:f5:ff:33:b3:a0:0d:67:af:26:05:58:66:6e:df:
6f:cd:91:b2:ea:5e:36:59:5a:52:b5:8e:eb:8d:91:
56:ac:e4:9e:e6:1f:48:eb:d4:35:af:14:06:c6:38:
da:cd:80:98:d9:7b:8c:ba:c7:a3:4c:12:af:3a:94:
12:78:36:49:ae:ed:d1:47:28:a6:0c:5b:06:9b:90:
96:6b:50:17:c2:46:61:b3:3b:d4:f5:06:25:b0:88:
a9:56:5c:be:be:ed:1b:fb:da:8e:30:b0:2a:11:6d:
51:86:e8:a9:1e:5d:1f:3c:f1:b8:f4:5d:89:8b:b2:
4c:de:1d:92:41:57:fd:97:ba:0e:be:ce:e6:cb:f4:
66:b0:35:82:3a:a4:26:47:c7:0e:40:bd:65:11:f0:
c4:d4:66:6d:1c:a6:5c:93:c8:d0:86:4c:bb:9c:32:
cc:7f:81:58:fb:5f:eb:db:59:39:6b:e0:c9:bb:1b:
d2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0F:21:90:50:93:B3:86:C6:38:5C:EF:72:EA:92:F4:E8:13:17:C2
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/DA8hkFCTs4bGOFzvcuqS9OgTF8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.144.0/20
5.179.80.0/20
37.49.128.0/20
46.32.156.0/22
62.12.32.0-62.12.55.255
62.116.192.0/19
77.233.224.0/19
78.153.160.0/19
80.88.128.0/20
80.243.112.0/20
82.192.160.0/19
83.136.88.0/21
83.151.128.0/18
87.116.0.0/18
89.221.160.0/20
92.62.192.0/20
93.176.64.0/18
94.18.211.0/24
130.185.128.0/20
185.20.240.0/22
185.67.128.0/22
188.120.80.0/21
193.105.116.0/24
193.105.149.0/24
195.140.132.0/22
212.60.120.0/21
212.98.96.0/24
217.74.208.0/20
217.116.208.0/20
217.195.176.0/20
IPv6:
2a02:188::/29
Signature Algorithm: sha256WithRSAEncryption
80:0f:d7:5a:32:ea:d1:0b:3c:d8:27:63:56:c1:9a:21:05:94:
d1:54:f9:0e:c3:11:8c:fb:66:00:4c:08:55:81:a5:2d:e0:b2:
02:81:15:ae:37:57:c4:95:f8:4c:48:fb:e5:60:b7:03:3a:48:
a1:07:c7:21:df:ce:39:99:03:57:9b:97:23:3d:e4:7d:97:fc:
27:37:3a:b6:90:04:5e:64:79:5c:31:1e:c1:5a:4c:3b:5e:a3:
38:d7:fe:16:71:9d:cc:ad:91:d0:85:4d:5f:58:9c:96:48:03:
99:a7:92:84:f2:61:33:a8:7c:69:ee:4c:b9:9b:ff:4a:46:89:
9e:d1:71:0f:ed:a3:a2:0f:d5:f0:86:50:4f:d9:1e:87:20:59:
38:8a:d1:09:e2:c6:b6:c3:d0:99:90:8d:2f:f2:72:b1:6f:8d:
18:58:df:fe:b9:1d:63:d8:c5:9d:51:c1:b2:dd:0b:4d:81:b4:
1b:1c:15:c4:05:45:ae:07:95:70:bc:54:95:ab:fb:83:af:05:
fe:50:49:29:03:18:6e:e1:4a:95:11:41:bf:db:08:1c:f3:61:
56:a4:f6:9e:fe:69:41:a2:e6:3a:0a:c3:ad:2f:8a:55:f2:8f:
eb:27:5a:47:19:58:45:e1:75:ec:2f:7f:d8:a1:f5:6c:d9:c2:
8b:e2:7b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org