Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1b1df-750a-4732-b783-e8619aa75680/1/11omLymBtuK6fbizKiDrl42FT2M.roa
File: 11omLymBtuK6fbizKiDrl42FT2M.roa (raw, json)
Hash identifier: zl9kxE1wLd61AyP1DTfoi8KUX/ZjzbTt6fhREoO7DJU=
Subject key identifier: D7:5A:26:2F:29:81:B6:E2:BA:7D:B8:B3:2A:20:EB:97:8D:85:4F:63
Certificate issuer: /CN=0ff8f94454f6ca6a7d70be455b2d6405f98fbcce
Certificate serial: 086AAA85
Authority key identifier: 0F:F8:F9:44:54:F6:CA:6A:7D:70:BE:45:5B:2D:64:05:F9:8F:BC:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_j5RFT2ymp9cL5FWy1kBfmPvM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1b1df-750a-4732-b783-e8619aa75680/1/11omLymBtuK6fbizKiDrl42FT2M.roa
Signing time: Tue 01 Feb 2022 09:04:32 +0000
ROA not before: Tue 01 Feb 2022 09:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42807
IP address blocks: 94.199.200.0/23 maxlen: 23
94.199.200.0/22 maxlen: 22
94.199.205.0/24 maxlen: 24
94.199.204.0/24 maxlen: 24
94.199.206.0/24 maxlen: 24
94.199.207.0/24 maxlen: 24
141.98.204.0/22 maxlen: 22
88.218.129.0/24 maxlen: 24
88.218.128.0/24 maxlen: 24
37.230.104.0/21 maxlen: 21
37.230.106.0/23 maxlen: 23
37.230.110.0/23 maxlen: 23
178.157.8.0/21 maxlen: 21
185.99.196.0/22 maxlen: 22
185.15.40.0/22 maxlen: 22
31.207.84.0/24 maxlen: 24
31.207.83.0/24 maxlen: 24
31.207.85.0/24 maxlen: 24
31.207.80.0/24 maxlen: 24
31.207.82.0/24 maxlen: 24
31.207.81.0/24 maxlen: 24
31.207.87.0/24 maxlen: 24
31.207.86.0/24 maxlen: 24
213.159.0.0/21 maxlen: 21
213.159.28.0/22 maxlen: 22
213.159.31.0/24 maxlen: 24
109.232.216.0/21 maxlen: 21
109.232.216.0/23 maxlen: 23
109.232.219.0/24 maxlen: 24
109.232.218.0/24 maxlen: 24
109.232.222.0/24 maxlen: 24
109.232.221.0/24 maxlen: 24
109.232.223.0/24 maxlen: 24
2a03:adc0:1::/48 maxlen: 48
2a03:adc1::/32 maxlen: 32
2a03:adc0:2::/48 maxlen: 48
2a03:adc0::/48 maxlen: 48
2a03:adc2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141208197 (0x86aaa85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff8f94454f6ca6a7d70be455b2d6405f98fbcce
Validity
Not Before: Feb 1 09:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d75a262f2981b6e2ba7db8b32a20eb978d854f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:80:af:78:38:13:57:ee:04:91:0e:e5:33:f1:
cf:37:bd:05:84:b4:75:5f:d2:09:b6:1e:d8:a2:15:
c7:ee:5e:fb:30:27:e3:03:c5:fb:88:08:c5:3a:29:
f7:00:76:28:4e:98:d4:47:11:9d:32:b3:c1:7b:84:
6e:9a:25:8c:91:7c:bd:31:70:6c:ab:d0:4a:04:85:
ff:f4:17:2a:0d:eb:2b:00:54:fd:d3:7b:3c:3b:9a:
47:d4:16:30:dc:cc:97:e2:8c:26:eb:13:9d:a8:d4:
7b:eb:aa:af:27:81:89:8f:3a:c6:73:4c:db:dc:f9:
b9:43:06:02:3a:ba:26:cc:dd:07:34:e1:e3:e0:6e:
75:4a:50:dc:b7:5f:e6:10:e2:15:a3:e0:7f:c6:d8:
6a:85:e3:82:ff:60:4e:36:eb:ba:d8:d0:b3:88:69:
e1:a8:46:14:fd:4f:a4:62:a5:a3:73:f0:e6:ce:24:
d6:ff:ef:b4:8a:1e:41:af:27:7b:6b:06:fc:8e:b9:
2e:88:e0:23:7a:cb:a8:30:2a:e4:6f:62:1c:0f:7e:
da:38:8f:29:45:55:54:38:48:4e:43:f2:57:4b:8f:
4b:5a:6d:a4:d2:4d:30:dd:bc:2d:6e:d1:d7:4d:f5:
0d:17:18:c9:f8:6b:4e:a2:3d:f8:a8:67:24:18:b6:
97:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5A:26:2F:29:81:B6:E2:BA:7D:B8:B3:2A:20:EB:97:8D:85:4F:63
X509v3 Authority Key Identifier:
keyid:0F:F8:F9:44:54:F6:CA:6A:7D:70:BE:45:5B:2D:64:05:F9:8F:BC:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_j5RFT2ymp9cL5FWy1kBfmPvM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1b1df-750a-4732-b783-e8619aa75680/1/11omLymBtuK6fbizKiDrl42FT2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1b1df-750a-4732-b783-e8619aa75680/1/D_j5RFT2ymp9cL5FWy1kBfmPvM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.207.80.0/21
37.230.104.0/21
88.218.128.0/23
94.199.200.0/21
109.232.216.0/21
141.98.204.0/22
178.157.8.0/21
185.15.40.0/22
185.99.196.0/22
213.159.0.0/21
213.159.28.0/22
IPv6:
2a03:adc0::-2a03:adc0:2:ffff:ffff:ffff:ffff:ffff
2a03:adc1::-2a03:adc2:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0a:98:ad:d7:3b:80:20:5b:59:a2:5d:cd:b1:59:ea:af:38:9c:
41:a5:90:5b:38:6e:f6:ad:b5:48:c5:83:f1:f7:47:6c:82:2b:
8c:7d:ba:23:d2:d6:d4:3c:26:0d:f1:f7:34:00:64:58:d2:0f:
ab:75:98:36:d3:c0:7c:d3:ea:bc:b3:c9:10:6c:7d:23:96:e4:
71:7a:10:1e:16:ad:37:14:f8:5e:0b:df:0f:9a:c2:a4:62:7e:
c3:8c:40:b1:28:df:1a:68:40:2b:96:b5:2f:0d:9c:a1:64:9c:
d3:4f:78:4e:5c:8d:2f:a1:9b:6b:ce:68:70:30:ac:cd:f2:6b:
65:79:b0:4f:4b:94:ca:5b:a0:9f:26:1c:b8:0f:52:3a:8b:da:
25:f7:e4:ff:12:35:20:88:b6:92:99:30:87:14:c0:d3:bf:eb:
38:5b:1f:91:47:5f:b1:75:81:a3:30:fc:d2:a0:8f:e6:78:74:
34:f2:d0:af:cd:55:5d:a4:db:82:b0:fc:6b:b7:c2:e5:f7:89:
52:2b:ae:4c:1e:ba:8c:4e:22:d4:6e:cb:e4:fe:3a:8a:0c:6a:
ec:48:fa:54:5c:e5:69:16:f2:fa:43:7c:72:cd:04:8b:15:85:
46:1d:0a:14:da:bc:7f:a0:b6:27:a8:c6:f0:7a:5a:6a:83:d3:
5b:49:7e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:16 2023 by rpki-client on console-ams.rpki-client.org