Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/miv4D0C-seBeZ9t9N01E-E-6vqo.roa
File: miv4D0C-seBeZ9t9N01E-E-6vqo.roa (raw, json)
Hash identifier: rkDCujQS7SubEHWw/kb486KR+3yJQpd58O4rcGf60Jo=
Subject key identifier: 9A:2B:F8:0F:40:BE:B1:E0:5E:67:DB:7D:37:4D:44:F8:4F:BA:BE:AA
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0184AD78E334259C011842A457B3F8203971
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/miv4D0C-seBeZ9t9N01E-E-6vqo.roa
Signing time: Fri 25 Nov 2022 06:28:11 +0000
ROA not before: Fri 25 Nov 2022 06:28:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 194.55.224.0/24 maxlen: 24
194.55.225.0/24 maxlen: 24
178.215.225.0/24 maxlen: 24
194.55.227.0/24 maxlen: 24
178.215.227.0/24 maxlen: 24
178.215.239.0/24 maxlen: 24
80.76.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
85.31.45.0/24 maxlen: 24
84.21.173.0/24 maxlen: 24
185.216.70.0/24 maxlen: 24
185.216.69.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
193.35.19.0/24 maxlen: 24
94.154.172.0/24 maxlen: 24
193.25.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ad:78:e3:34:25:9c:01:18:42:a4:57:b3:f8:20:39:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 25 06:28:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a2bf80f40beb1e05e67db7d374d44f84fbabeaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:91:ff:af:bd:78:fc:41:aa:f4:bc:f0:72:97:
36:d0:19:f2:0d:85:8b:d6:ed:fe:4f:9b:b4:73:12:
b1:78:95:7b:50:fe:fb:ec:c2:53:d8:e3:15:d0:59:
c0:c1:26:c1:cf:df:cc:e1:c9:dc:36:74:bb:b1:43:
c5:f5:24:f5:a1:10:dc:1d:01:50:b6:ab:1d:37:d1:
09:0f:1c:eb:e4:e4:41:2e:bb:4f:74:a7:9c:cc:f9:
db:f8:15:4e:b8:70:9c:87:9b:89:42:8c:95:fa:40:
56:e6:bc:40:3c:c4:6d:4b:4e:4b:bc:d5:e4:a5:d5:
7e:e2:42:55:7f:a3:47:22:12:5f:bf:de:5d:64:54:
22:ec:d7:b4:33:6e:48:92:71:fb:ca:b6:d6:a2:3f:
2d:c0:3b:86:b0:70:d9:cf:c1:d4:d4:35:37:eb:31:
3f:7a:24:51:0d:b5:68:f9:89:6a:59:e1:22:fa:26:
68:cf:c0:bd:5c:3e:c5:b5:eb:5d:81:bc:06:da:fc:
e7:d5:27:4f:fb:8e:d5:16:06:22:34:ad:8d:6a:58:
0e:dd:03:97:b6:b8:a6:f9:22:cd:7b:db:21:80:7f:
d1:b6:7a:9d:0d:ee:77:82:1d:73:a6:07:06:6d:79:
5b:43:f6:08:0f:80:81:24:83:42:8f:85:7b:44:51:
ea:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:2B:F8:0F:40:BE:B1:E0:5E:67:DB:7D:37:4D:44:F8:4F:BA:BE:AA
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/miv4D0C-seBeZ9t9N01E-E-6vqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.48.0/24
84.21.173.0/24
85.31.45.0/24
85.31.47.0/24
87.120.87.0/24
94.154.172.0/24
178.215.225.0/24
178.215.227.0/24
178.215.239.0/24
185.216.69.0-185.216.70.255
193.25.217.0/24
193.35.19.0/24
194.55.224.0/23
194.55.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:a4:9f:46:6f:45:13:9c:f0:b4:c9:27:04:7c:23:22:58:db:
58:81:5a:3a:16:59:8c:d4:77:8b:4a:57:2b:35:eb:30:5b:6f:
49:35:40:50:1e:62:f4:49:21:3a:52:07:40:73:c5:78:a0:6d:
7a:3b:de:df:5d:0a:de:8a:e3:57:5d:64:b5:3a:fc:d4:e2:72:
b3:ac:99:57:79:63:dc:1c:9f:ad:e7:e2:b0:26:2c:ef:67:bf:
66:98:29:29:fe:9e:51:2d:2a:98:3c:b8:f0:58:72:3c:87:74:
a6:36:35:2f:0a:a6:e6:f9:89:52:07:d1:bc:e2:68:e9:7b:aa:
c1:bf:dc:1e:cc:fc:3e:3c:ee:4b:90:42:3b:03:48:ab:91:c7:
3a:c4:4f:b1:2b:07:c8:f4:1b:c7:94:ca:37:47:6a:81:a0:ca:
f4:6f:5b:19:7a:4e:3c:8b:6e:62:c9:1b:c3:a9:db:02:95:e0:
8f:ad:28:20:4c:f6:58:7e:1b:fd:46:25:e4:5f:32:34:05:84:
8f:e3:72:24:c0:60:88:a3:01:51:53:53:b1:b1:75:af:46:77:
94:7d:f9:5a:b1:4b:a4:75:f4:54:66:03:43:a4:8a:a0:19:c6:
1c:83:8f:4a:1d:8e:a4:80:0d:0a:04:51:2c:cd:eb:be:ee:5d:
fa:cd:f5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-ams.rpki-client.org