Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/40GHpwd4vafve1kJhQ1zV5Te3sA.roa
File: 40GHpwd4vafve1kJhQ1zV5Te3sA.roa (raw, json)
Hash identifier: mHMDbWAPdbdKoR0ZOO291g/BSBErLLiwv15LW48dZeM=
Subject key identifier: E3:41:87:A7:07:78:BD:A7:EF:7B:59:09:85:0D:73:57:94:DE:DE:C0
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 031DA4F3
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/40GHpwd4vafve1kJhQ1zV5Te3sA.roa
Signing time: Tue 31 May 2022 07:09:13 +0000
ROA not before: Tue 31 May 2022 07:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9145
IP address blocks: 212.95.96.0/19 maxlen: 19
92.252.0.0/17 maxlen: 17
212.6.64.0/18 maxlen: 18
85.16.0.0/16 maxlen: 16
95.33.0.0/16 maxlen: 16
85.8.64.0/18 maxlen: 18
37.138.0.0/16 maxlen: 16
82.149.160.0/19 maxlen: 19
90.153.0.0/17 maxlen: 17
89.166.128.0/17 maxlen: 17
80.66.0.0/19 maxlen: 19
213.168.192.0/19 maxlen: 19
213.183.160.0/19 maxlen: 19
91.96.0.0/15 maxlen: 15
31.150.0.0/16 maxlen: 16
80.228.0.0/16 maxlen: 16
87.245.0.0/18 maxlen: 18
89.233.64.0/19 maxlen: 19
31.184.0.0/18 maxlen: 18
91.248.0.0/15 maxlen: 15
213.182.96.0/19 maxlen: 19
31.187.112.0/20 maxlen: 20
213.170.160.0/19 maxlen: 19
178.142.0.0/16 maxlen: 16
188.118.128.0/18 maxlen: 18
2a02:8200::/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52274419 (0x31da4f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: May 31 07:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e34187a70778bda7ef7b5909850d735794dedec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:76:a4:30:d7:ab:1a:b3:fd:4d:32:43:3d:a3:
dd:2e:5e:bd:4c:8d:23:7e:15:08:cd:0f:b5:4f:fc:
96:4d:78:1a:a6:9c:8d:d6:92:ad:67:9e:c8:b7:c5:
f3:15:bd:f1:3e:b6:91:bc:57:8d:f6:21:5c:a9:ab:
65:ff:25:42:60:5b:ff:5c:6c:f3:78:58:81:fb:af:
47:b3:67:76:7e:34:d5:30:c7:95:d8:5a:3f:66:25:
b2:04:1f:4b:ef:0e:69:93:63:44:9d:31:3c:cd:ce:
f0:6d:b0:d6:38:80:97:c8:12:77:12:98:33:97:10:
97:78:6a:6a:8d:ca:c7:e9:c1:fd:e4:d2:19:16:20:
65:9c:7b:1a:ba:44:04:61:73:dd:d6:55:5e:26:75:
f6:2a:ca:8f:42:17:bb:30:af:e1:79:a6:0e:f6:df:
31:87:3e:5b:ca:4a:de:76:b4:cf:d9:d4:cc:ad:9e:
fd:ec:f2:6e:68:a7:bb:31:8c:9e:da:e8:18:e0:e3:
32:d5:c9:6b:a5:b3:7e:9f:59:8d:bc:3b:cd:25:fb:
0d:02:d8:4c:e9:75:cf:9f:3a:89:d1:47:36:92:79:
2a:ee:83:cc:3c:ca:e1:b1:67:21:03:a0:09:0d:52:
da:70:08:35:10:84:5b:cf:68:6d:4e:1a:e6:46:8f:
68:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:41:87:A7:07:78:BD:A7:EF:7B:59:09:85:0D:73:57:94:DE:DE:C0
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/40GHpwd4vafve1kJhQ1zV5Te3sA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
IPv6:
2a02:8200::/27
Signature Algorithm: sha256WithRSAEncryption
7c:42:36:c0:58:37:81:d3:ae:0e:d2:db:15:56:d4:4a:47:0e:
27:5e:cb:56:37:d3:c5:c3:76:81:6d:6b:56:3a:9f:56:c8:6a:
e1:77:44:80:f4:a3:03:e4:00:ed:09:c6:c0:9e:4e:f8:98:93:
d2:97:ef:eb:9a:2d:93:a1:3a:e6:06:37:08:a6:bb:95:b8:2e:
21:59:1e:49:e4:70:8e:92:a5:bc:80:7e:48:79:d2:7b:7d:37:
b8:5b:42:a1:2e:a9:ff:05:64:34:ca:64:d6:b0:de:76:23:65:
fd:b4:ba:30:8f:df:25:d4:f8:46:4f:20:a7:1f:5d:ef:71:34:
9d:1a:ae:4a:c6:f9:32:64:3e:5b:f9:da:60:74:d0:e5:0b:7f:
59:46:c4:0f:c9:ef:3c:6e:37:62:bd:28:45:91:c7:12:a5:bb:
33:a4:ec:75:c7:f3:7f:c6:a7:e4:e9:89:8c:fc:7a:05:be:6d:
57:25:b8:c8:73:20:9e:6d:08:9c:55:a2:d0:b4:2a:9b:e7:48:
38:62:51:ae:dd:d8:9c:ff:6c:42:8a:bc:cd:7e:4a:87:01:de:
47:63:18:6d:25:58:3e:e3:e2:52:86:16:1f:17:e5:72:26:09:
46:33:09:7e:f2:96:90:ce:33:8e:80:20:99:ed:46:06:fd:41:
57:63:7a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:54 2024 by rpki-client on console-fra.rpki-client.org