Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/w1RWx1n7OsTnfPUcjNcrV3LA38M.roa
File: w1RWx1n7OsTnfPUcjNcrV3LA38M.roa (raw, json)
Hash identifier: BPB1KYxn9Ggrl6SrHSZSa3RHvN34Z9VEkEDu9mcoD3k=
Subject key identifier: C3:54:56:C7:59:FB:3A:C4:E7:7C:F5:1C:8C:D7:2B:57:72:C0:DF:C3
Certificate issuer: /CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Certificate serial: 0184769F547B19B650C874FA08C5F5F82D8F
Authority key identifier: 07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/w1RWx1n7OsTnfPUcjNcrV3LA38M.roa
Signing time: Mon 14 Nov 2022 14:51:04 +0000
ROA not before: Mon 14 Nov 2022 14:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8856
IP address blocks: 195.214.192.0/24 maxlen: 24
195.214.194.0/24 maxlen: 24
195.214.193.0/24 maxlen: 24
195.214.195.0/24 maxlen: 24
212.42.81.0/24 maxlen: 24
212.42.80.0/22 maxlen: 22
212.42.80.0/24 maxlen: 24
212.42.82.0/23 maxlen: 23
212.42.84.0/24 maxlen: 24
212.42.85.0/24 maxlen: 24
212.42.89.0/24 maxlen: 24
212.42.93.0/24 maxlen: 24
212.42.92.0/24 maxlen: 24
212.42.95.0/24 maxlen: 24
212.42.94.0/24 maxlen: 24
212.42.64.0/22 maxlen: 22
212.42.64.0/23 maxlen: 23
212.42.66.0/23 maxlen: 23
212.42.74.0/23 maxlen: 23
212.42.73.0/24 maxlen: 24
212.42.76.0/24 maxlen: 24
212.42.76.0/23 maxlen: 23
212.42.77.0/24 maxlen: 24
212.42.78.0/23 maxlen: 23
212.42.78.0/24 maxlen: 24
212.42.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:9f:54:7b:19:b6:50:c8:74:fa:08:c5:f5:f8:2d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Validity
Not Before: Nov 14 14:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c35456c759fb3ac4e77cf51c8cd72b5772c0dfc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:88:70:27:31:a5:f0:11:a7:5d:8a:5d:4d:10:
90:bf:7b:b9:8a:b3:89:54:96:ea:a7:c5:84:db:ac:
6d:7d:72:84:2e:a9:db:25:1a:f4:4f:9c:ff:62:60:
1a:1a:54:cd:85:9f:7d:38:a9:67:c5:f7:68:df:8b:
a8:98:68:bd:45:0f:f0:e6:89:8a:61:8f:f5:57:c7:
14:f1:0b:fb:36:75:ff:69:1a:71:b6:5b:a2:92:7b:
de:9d:66:4d:36:62:4f:9d:4f:ba:30:0c:57:e3:b7:
67:32:39:a2:07:d9:f1:d3:56:71:a8:92:c9:46:69:
07:1f:c2:40:6b:fa:36:be:4b:67:75:6a:38:a4:86:
92:7d:2e:3a:f1:fd:2c:cc:a3:b3:47:f4:67:d8:b8:
95:19:f7:12:fa:a9:c4:4f:03:8a:42:2a:de:1b:f9:
8e:f4:ed:74:72:56:a8:ad:3e:be:9d:96:78:b2:05:
f2:12:56:a9:eb:56:37:1e:6c:cd:89:e0:c3:a3:e4:
f1:f4:f5:eb:6c:94:21:3d:a5:7a:10:4e:5b:e6:cf:
6f:2a:58:47:a2:7d:c5:32:dd:e1:12:79:98:50:63:
5a:81:7e:f0:87:7d:72:21:1c:25:34:55:42:06:56:
01:d9:b7:31:8b:22:2f:ff:2e:e9:90:d1:a9:40:33:
1a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:54:56:C7:59:FB:3A:C4:E7:7C:F5:1C:8C:D7:2B:57:72:C0:DF:C3
X509v3 Authority Key Identifier:
keyid:07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/w1RWx1n7OsTnfPUcjNcrV3LA38M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.192.0/22
212.42.64.0/22
212.42.72.0-212.42.85.255
212.42.89.0/24
212.42.92.0/22
Signature Algorithm: sha256WithRSAEncryption
91:3d:07:b7:a5:0b:2d:bd:d7:03:8a:b1:3b:ef:a4:f9:d0:c4:
d9:bc:83:2f:6e:c6:b7:bd:d1:fa:cd:2b:37:db:9e:76:62:f6:
6f:d8:99:08:60:93:6e:9a:8a:84:96:07:7a:93:88:1c:76:99:
5e:e6:c2:a1:8a:c6:50:21:e7:c1:e8:2c:69:69:a3:72:88:1a:
be:40:f4:50:76:51:b2:f5:c2:e0:02:cd:ff:e1:72:e8:84:e0:
f6:5a:59:97:9d:64:6b:89:02:9f:12:7c:fb:e0:da:c4:93:b2:
af:74:13:42:81:86:6a:c2:69:ab:8c:43:64:a0:b2:2f:2b:09:
2e:6a:7a:db:77:36:56:df:5c:e8:6d:53:83:ea:bd:d1:13:11:
d8:c0:69:a5:32:0d:76:c3:bb:8c:8a:ba:74:3f:52:64:ef:31:
06:6b:56:29:30:8c:55:7b:93:6f:24:e4:51:6c:fd:ee:b5:4f:
50:09:7d:17:cd:2b:9b:43:d7:fa:0e:6d:56:95:06:02:29:57:
a9:f1:23:f5:01:db:5a:dc:83:fc:ad:4e:f6:18:a1:47:f5:3b:
57:af:ac:83:2d:b4:66:bc:b6:9a:0f:13:6a:44:4d:e2:68:77:
a6:a1:71:1d:33:4c:8e:b4:82:57:38:e8:34:cc:b1:79:cd:0a:
bf:cf:96:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:49 2024 by rpki-client on console-ams.rpki-client.org