Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/E54RujkPf1rsRHbjvxmk_hHU54Q.roa
File: E54RujkPf1rsRHbjvxmk_hHU54Q.roa (raw, json)
Hash identifier: fxyouO9BUXmUqb+Hw2qjobM4Hg0LGb2r/6B4Pml91bc=
Subject key identifier: 13:9E:11:BA:39:0F:7F:5A:EC:44:76:E3:BF:19:A4:FE:11:D4:E7:84
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 01CA413D
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/E54RujkPf1rsRHbjvxmk_hHU54Q.roa
Signing time: Sat 01 Jan 2022 15:57:34 +0000
ROA not before: Sat 01 Jan 2022 15:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9145
IP address blocks: 212.95.96.0/19 maxlen: 19
92.252.0.0/17 maxlen: 17
212.6.64.0/18 maxlen: 18
85.16.0.0/16 maxlen: 16
95.33.0.0/16 maxlen: 16
85.8.64.0/18 maxlen: 18
37.138.0.0/16 maxlen: 16
82.149.160.0/19 maxlen: 19
90.153.0.0/17 maxlen: 17
89.166.128.0/17 maxlen: 17
80.66.0.0/19 maxlen: 19
213.168.192.0/19 maxlen: 19
213.183.160.0/19 maxlen: 19
91.96.0.0/15 maxlen: 15
31.150.0.0/16 maxlen: 16
80.228.0.0/16 maxlen: 16
87.245.0.0/18 maxlen: 18
89.233.64.0/19 maxlen: 19
91.248.0.0/15 maxlen: 15
213.182.96.0/19 maxlen: 19
31.187.112.0/20 maxlen: 20
213.170.160.0/19 maxlen: 19
178.142.0.0/16 maxlen: 16
188.118.128.0/18 maxlen: 18
2a02:8200::/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30032189 (0x1ca413d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Jan 1 15:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=139e11ba390f7f5aec4476e3bf19a4fe11d4e784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:bf:91:1c:c4:32:4c:1e:0e:d1:d8:d6:d4:
6f:b0:a0:e3:a2:ad:f9:48:ee:5a:09:6e:ff:55:0f:
09:73:3f:39:6b:3b:cd:89:11:ab:f6:6a:42:4e:dc:
7c:00:cf:6e:71:a1:3d:b2:a0:fe:9b:60:f1:90:75:
c7:d7:c0:9d:78:f5:52:ab:d8:ca:0a:fc:2c:b2:9b:
e5:b1:84:77:99:1f:19:84:07:e5:56:19:15:a6:47:
39:4b:e7:2e:68:a4:8f:e5:34:9a:04:32:fb:09:3c:
b3:a5:87:26:f2:4a:c2:0d:54:c5:4a:c7:a9:a2:f7:
c5:e2:3e:c7:da:3a:97:21:ee:0b:e4:c9:ac:19:a4:
9f:1c:6d:62:85:3a:d6:d3:e0:d8:25:8c:14:0f:17:
83:66:b8:19:c5:1a:82:0c:a6:c1:6f:4d:a4:b3:b1:
5f:a2:2a:7c:01:57:a8:d1:bd:4d:33:10:b2:e8:74:
ff:3e:8f:7a:80:5a:82:e4:b8:b3:b6:b0:1e:78:38:
42:99:7c:18:e7:7c:55:86:a8:e4:31:03:8e:a6:af:
5e:03:19:50:a2:f2:5c:0d:33:4b:34:ce:98:c9:7e:
26:45:89:39:c6:f1:d2:a4:17:8b:e3:ad:4b:7f:6f:
36:dd:c0:a2:b1:56:cd:b0:c7:0e:7b:2b:d1:bd:31:
e8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9E:11:BA:39:0F:7F:5A:EC:44:76:E3:BF:19:A4:FE:11:D4:E7:84
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/E54RujkPf1rsRHbjvxmk_hHU54Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.187.112.0/20
37.138.0.0/16
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
IPv6:
2a02:8200::/27
Signature Algorithm: sha256WithRSAEncryption
9b:0f:27:ab:43:0d:56:04:4d:75:3a:85:c7:84:6a:b1:12:ed:
81:cc:55:30:e5:0c:39:18:75:fd:92:40:28:c2:b5:62:da:9f:
3d:e6:ab:c7:c8:59:71:7c:e5:33:97:b9:19:13:e3:8f:04:cc:
42:f9:ff:0a:17:bd:ad:bd:1f:f2:54:bd:72:25:f9:96:9b:d0:
85:a1:d6:a4:e7:fe:fb:46:c4:28:c3:d2:1a:59:a1:d2:cc:7b:
df:b8:e8:1f:5a:82:40:3e:f4:cf:75:33:38:79:a6:25:ec:94:
db:db:10:02:62:d1:59:97:4f:90:d8:4f:e0:7c:4c:3b:bc:1b:
f8:4f:3e:71:e1:e4:c3:80:d3:b0:88:df:cb:3e:4a:41:74:fe:
f4:97:75:de:29:d3:f3:91:56:da:06:6c:d6:fa:65:b9:82:a1:
a7:49:b8:be:50:b8:00:47:1a:ca:9c:73:91:8b:4a:35:f1:c6:
ad:95:1b:9a:aa:bf:43:06:3c:e5:b7:25:dc:43:60:67:29:d3:
87:06:55:35:50:cd:bc:0e:90:88:36:f4:c4:31:9c:e4:39:d4:
70:ba:f0:79:09:92:2c:31:90:68:6c:a1:a2:5c:1f:53:d8:03:
77:62:97:61:4b:f3:a6:5e:3b:59:f9:94:3e:93:66:49:3b:72:
b1:1a:11:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:06 2024 by rpki-client on console-ams.rpki-client.org