Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L8pYjqlhjoI_CcAc6h1IW_O1szM.roa
File: L8pYjqlhjoI_CcAc6h1IW_O1szM.roa (raw, json)
Hash identifier: wUQw0H5I/mcwIyNLgSG0L4n36yiLaOgypyP0bVfxi90=
Subject key identifier: 2F:CA:58:8E:A9:61:8E:82:3F:09:C0:1C:EA:1D:48:5B:F3:B5:B3:33
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1F4F618F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L8pYjqlhjoI_CcAc6h1IW_O1szM.roa
Signing time: Tue 28 Jun 2022 10:32:02 +0000
ROA not before: Tue 28 Jun 2022 10:32:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 212.87.204.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
85.31.44.0/24 maxlen: 24
85.31.46.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
194.48.250.0/24 maxlen: 24
109.206.241.0/24 maxlen: 24
185.216.71.0/24 maxlen: 24
94.103.124.0/24 maxlen: 24
79.110.62.0/24 maxlen: 24
185.218.138.0/24 maxlen: 24
185.225.73.0/24 maxlen: 24
94.154.160.0/24 maxlen: 24
94.154.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 525296015 (0x1f4f618f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 28 10:32:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fca588ea9618e823f09c01cea1d485bf3b5b333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:26:97:7c:8b:b0:62:6b:bb:9c:45:fb:23:4d:
fa:c7:c9:d5:c7:60:9e:b7:8e:85:af:33:b2:68:ee:
f3:bc:1f:97:3b:75:1a:c7:24:73:3b:c1:68:a3:63:
05:81:3a:c3:95:d3:a4:d4:8a:3c:9f:72:2d:04:1e:
17:da:69:a5:e4:3c:45:4f:d4:ed:da:fd:af:7f:5e:
85:ba:79:09:9d:82:5d:ea:1d:b6:63:fd:79:0b:3a:
c1:b2:a1:29:42:5a:fe:7b:49:fa:af:89:bc:4a:5a:
8f:c8:6c:f6:77:92:ed:ce:96:d9:44:c9:d0:d2:05:
9a:b4:51:c1:2d:0e:17:fb:04:d4:cc:f2:c2:7e:cb:
9c:48:c4:62:6d:ef:2a:90:72:2b:6f:7c:ba:ad:c6:
7c:8d:8f:7b:a9:11:8b:5c:83:6e:f3:a0:de:9c:7f:
f9:f5:50:03:27:90:b1:af:40:ec:88:86:5a:2a:d3:
95:c8:7b:f6:09:67:10:a2:a9:c2:4c:53:09:11:78:
16:30:68:d8:98:cd:a6:c0:c3:07:d3:72:04:0c:a3:
f0:ac:98:54:57:05:b3:4e:93:73:00:37:d7:4a:66:
ae:02:a1:4d:07:c8:d0:2d:07:b9:dc:88:0a:41:4e:
2e:7a:4a:ea:5c:f9:6e:6a:72:1b:4d:2e:b3:61:72:
a3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:CA:58:8E:A9:61:8E:82:3F:09:C0:1C:EA:1D:48:5B:F3:B5:B3:33
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L8pYjqlhjoI_CcAc6h1IW_O1szM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.62.0/24
80.76.51.0/24
85.31.44.0/24
85.31.46.0/24
94.103.124.0/24
94.154.160.0/24
94.154.173.0/24
109.206.241.0/24
185.216.71.0/24
185.218.138.0/24
185.225.73.0/24
185.246.223.0/24
194.48.250.0/24
194.55.186.0/24
212.87.204.0/24
Signature Algorithm: sha256WithRSAEncryption
07:e8:35:2b:be:14:e0:28:6d:6a:2b:c5:34:6e:93:d2:c6:dd:
d6:cd:f0:d8:9d:23:fc:64:e9:fb:3d:ed:12:32:b6:11:95:53:
9d:7a:df:e8:6e:e9:d9:4b:c1:a2:bd:bd:82:db:cb:f8:c1:f9:
34:85:5c:76:31:6a:87:f4:67:be:5d:20:2c:d1:6f:26:3d:34:
1a:25:f6:94:10:04:c6:b6:40:7e:b4:fa:19:36:7f:4e:63:f1:
0e:09:62:43:5f:3d:af:62:5d:bb:e8:90:27:32:ca:b3:b2:3a:
2e:6f:4a:de:80:af:7d:a0:83:46:bf:c4:be:31:fc:22:08:75:
33:b4:5b:46:35:73:0b:03:9b:b6:5e:74:b0:8f:7e:99:4a:93:
4f:99:08:1e:a2:73:f2:69:d0:fd:6d:ed:34:0b:82:60:ee:ae:
ff:0a:d7:bb:a6:be:2a:21:fb:3b:54:35:8c:76:ec:7a:4a:05:
9e:62:a9:2e:70:0e:65:54:a6:f3:f5:8c:80:da:4f:10:32:8d:
ca:2b:da:b1:81:9a:23:48:b2:56:02:9b:93:ad:f2:de:80:f6:
58:2b:98:43:a1:cd:f8:16:53:91:47:1c:1f:ef:6b:7c:48:e4:
76:50:62:b3:ff:cc:2e:e0:3b:ea:da:c5:a9:58:6a:bb:c8:18:
40:2f:da:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-ams.rpki-client.org