Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oACQMGhB1IJNWpnYtZ69i2I75hA.roa
File: oACQMGhB1IJNWpnYtZ69i2I75hA.roa (raw, json)
Hash identifier: u78FRGR+i/dVxZ3GFxwC0SvEMpWYACg8xBGkLsZ3lQI=
Subject key identifier: A0:00:90:30:68:41:D4:82:4D:5A:99:D8:B5:9E:BD:8B:62:3B:E6:10
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0181DCB788EF2A20AAF36075197CAAA5479A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oACQMGhB1IJNWpnYtZ69i2I75hA.roa
Signing time: Fri 08 Jul 2022 07:30:24 +0000
ROA not before: Fri 08 Jul 2022 07:30:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 212.87.204.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
85.31.44.0/24 maxlen: 24
85.31.46.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
194.48.250.0/24 maxlen: 24
109.206.241.0/24 maxlen: 24
109.206.242.0/24 maxlen: 24
185.216.71.0/24 maxlen: 24
94.103.124.0/24 maxlen: 24
79.110.62.0/24 maxlen: 24
185.218.138.0/24 maxlen: 24
185.225.73.0/24 maxlen: 24
185.225.74.0/24 maxlen: 24
94.154.160.0/24 maxlen: 24
94.154.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dc:b7:88:ef:2a:20:aa:f3:60:75:19:7c:aa:a5:47:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 8 07:30:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a00090306841d4824d5a99d8b59ebd8b623be610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b7:92:2b:ff:26:5a:11:38:96:05:9b:46:dc:
02:d8:af:f3:c5:5e:f6:49:12:6b:7d:b9:05:25:cd:
66:b6:ac:ba:1f:7c:a1:dc:16:08:40:43:b5:a7:d2:
f9:18:fa:15:3e:e1:d6:a6:55:30:4c:e7:a4:58:2b:
f4:5e:cb:f2:12:58:a4:2f:2d:c0:9f:3c:9c:13:5f:
e8:e3:d9:8c:43:38:b9:dd:fb:2e:8f:5c:c2:2e:68:
03:49:b7:9c:9b:08:74:9c:f8:59:f6:52:eb:18:db:
b7:c1:1d:bd:a8:cc:85:9e:4c:f1:94:53:15:81:8e:
bc:ca:66:3f:d2:53:25:81:d6:c8:fc:44:30:47:52:
ec:eb:ac:82:68:c0:76:32:c3:6c:77:43:92:42:5e:
eb:46:9e:58:f7:72:c8:dd:8a:ef:f7:c2:16:36:80:
48:25:4b:10:95:a9:b7:32:f0:ac:cd:f7:a0:68:9d:
22:8c:1a:f0:8c:d1:f0:29:1b:88:d0:22:e0:47:14:
26:39:b3:b0:c3:2b:11:bf:2d:9e:fb:47:79:14:d7:
60:1c:b7:7a:05:62:1d:a7:89:4e:c1:4c:c9:3a:f1:
b5:b2:6c:51:e3:88:12:d9:99:63:30:a2:02:c0:33:
45:34:e7:25:22:79:ad:3f:f9:34:23:18:73:ec:50:
9b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:00:90:30:68:41:D4:82:4D:5A:99:D8:B5:9E:BD:8B:62:3B:E6:10
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oACQMGhB1IJNWpnYtZ69i2I75hA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.62.0/24
80.76.51.0/24
85.31.44.0/24
85.31.46.0/24
94.103.124.0/24
94.154.160.0/24
94.154.173.0/24
109.206.241.0-109.206.242.255
185.216.71.0/24
185.218.138.0/24
185.225.73.0-185.225.74.255
185.246.222.0/23
194.48.250.0/24
194.55.186.0/24
212.87.204.0/24
Signature Algorithm: sha256WithRSAEncryption
08:4d:86:22:60:d8:43:7f:04:9e:42:02:b2:a0:21:6a:6f:48:
de:11:ef:bf:1b:55:92:1e:aa:20:2b:c2:f1:47:10:a4:43:f1:
c8:fc:b8:62:08:aa:db:8f:bb:86:9f:e1:02:52:1d:54:2a:57:
3e:28:99:3e:7a:e7:c7:4c:89:a0:c7:bd:58:10:be:7e:93:23:
17:f6:96:2c:e5:dd:ed:fe:89:60:a6:cb:74:ad:45:ff:f0:65:
40:bc:e8:6e:77:c4:24:1d:0a:a2:d1:9d:e2:e0:c0:d1:9e:ff:
93:2e:b5:a7:e0:d8:07:e8:64:d6:32:83:6a:80:a2:f2:d2:60:
b0:2e:8c:6a:97:17:58:39:5a:3e:e6:95:ce:a7:67:7b:3d:6b:
3f:b3:ca:97:44:25:da:1f:4d:fb:bf:93:85:8b:e4:4c:13:09:
f6:16:2c:af:79:61:4c:4f:a3:88:db:d0:9e:5c:5b:40:7e:47:
fc:a0:81:56:e5:25:46:5a:b2:c2:f3:7b:98:14:d1:33:ee:03:
b5:4e:59:c1:c9:54:c7:b7:83:65:88:13:44:7c:9b:12:a3:57:
07:87:ac:29:4b:21:2c:65:61:58:4c:19:ad:b3:ed:32:80:8c:
9e:db:39:4e:c3:b0:ea:94:b0:15:9c:e1:1d:96:20:70:7f:36:
ae:b7:7f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-ams.rpki-client.org