Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/oBuM2czgR5Qj88ovT1ss-7yG8ws.roa
File: oBuM2czgR5Qj88ovT1ss-7yG8ws.roa (raw, json)
Hash identifier: 8DiFJ3ucs9ppFm2JhYRmVWmngM7ykwlnXXQL3Om8/fI=
Subject key identifier: A0:1B:8C:D9:CC:E0:47:94:23:F3:CA:2F:4F:5B:2C:FB:BC:86:F3:0B
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 02EB001A
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/oBuM2czgR5Qj88ovT1ss-7yG8ws.roa
Signing time: Mon 09 May 2022 13:52:23 +0000
ROA not before: Mon 09 May 2022 13:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 88.218.101.0/24 maxlen: 24
88.218.102.0/23 maxlen: 23
88.218.100.0/24 maxlen: 24
195.206.108.0/24 maxlen: 24
195.206.109.0/24 maxlen: 24
193.31.74.0/24 maxlen: 24
193.31.75.0/24 maxlen: 24
85.209.216.0/24 maxlen: 24
85.209.218.0/23 maxlen: 23
139.28.138.0/23 maxlen: 23
139.28.137.0/24 maxlen: 24
45.84.44.0/24 maxlen: 24
45.84.45.0/24 maxlen: 24
45.84.47.0/24 maxlen: 24
141.98.242.0/23 maxlen: 23
194.124.52.0/22 maxlen: 22
85.8.190.0/23 maxlen: 23
85.8.188.0/24 maxlen: 24
85.8.189.0/24 maxlen: 24
45.11.236.0/22 maxlen: 22
92.119.180.0/24 maxlen: 24
45.157.74.0/23 maxlen: 23
45.14.72.0/24 maxlen: 24
5.182.100.0/24 maxlen: 24
5.182.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48955418 (0x2eb001a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: May 9 13:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a01b8cd9cce0479423f3ca2f4f5b2cfbbc86f30b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a6:66:02:49:76:55:9f:e0:b7:1d:29:81:39:
f0:99:fa:99:82:a5:a5:72:ca:1f:6a:26:a0:9b:b5:
37:40:0c:2a:0a:33:dd:65:e1:c2:2d:67:53:cc:6c:
33:d2:b7:c5:99:67:05:8b:a3:da:6a:ec:af:f4:46:
f7:1f:48:dd:a4:c4:4a:4f:29:2f:1e:66:e2:fe:db:
b5:52:b6:af:87:ce:ec:9e:c0:8f:40:42:fc:ea:fd:
73:bd:aa:22:b5:85:87:30:46:8b:92:06:7f:6a:48:
c3:16:0c:98:ca:57:20:b9:0a:ab:ee:5d:c5:8f:c4:
6b:1d:81:19:8f:79:ea:8a:e7:e8:96:45:c6:67:e1:
9c:84:10:2d:eb:c0:e8:53:6d:ca:ea:f1:7f:11:3a:
eb:21:5f:f1:f4:f2:d3:0d:28:0f:69:7f:8e:00:a7:
b5:c1:b6:a6:cb:70:39:8b:3d:aa:85:d7:ab:c3:b5:
9c:66:ce:9a:24:3e:4c:da:16:a1:89:b7:16:f0:1e:
a2:b0:19:33:f8:46:9f:a9:3a:5c:3b:34:0f:84:51:
e8:f5:96:13:00:af:e3:0c:97:10:aa:6b:42:c0:f1:
7b:3d:56:c0:90:32:31:e3:b9:18:19:ac:22:0f:5b:
76:c3:04:ea:85:5e:42:8c:bf:1b:e9:e1:c0:c1:55:
d2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:1B:8C:D9:CC:E0:47:94:23:F3:CA:2F:4F:5B:2C:FB:BC:86:F3:0B
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/oBuM2czgR5Qj88ovT1ss-7yG8ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.100.0/24
5.182.103.0/24
45.11.236.0/22
45.14.72.0/24
45.84.44.0/23
45.84.47.0/24
45.157.74.0/23
85.8.188.0/22
85.209.216.0/24
85.209.218.0/23
88.218.100.0/22
92.119.180.0/24
139.28.137.0-139.28.139.255
141.98.242.0/23
193.31.74.0/23
194.124.52.0/22
195.206.108.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:5b:f2:11:f7:e7:58:b6:4a:e2:26:89:b4:ac:2b:a8:72:95:
99:98:5e:69:1a:c9:d4:75:2c:b6:ed:a8:35:04:c7:dc:45:5d:
a6:70:32:65:2e:53:92:cd:d5:e6:c7:75:b4:89:79:a3:72:47:
1f:f3:66:68:e5:09:7d:8b:e1:a4:50:d0:05:a9:40:77:b7:a8:
fa:75:2c:3f:59:83:c8:de:62:5b:35:3d:f1:95:ec:29:e6:50:
80:f8:70:e7:7c:0c:1d:43:c2:a3:6b:c5:d8:ca:7c:6b:ac:f0:
e4:07:15:d6:22:e0:0f:0e:e5:fa:81:87:4a:3b:fa:38:d5:32:
66:7d:88:2a:6f:04:87:7a:62:9e:35:9f:fc:4e:a4:dc:bf:4f:
69:cc:fd:b2:89:cc:f0:67:1f:f7:ef:61:14:43:70:d4:7b:5c:
88:10:e1:43:4e:26:7e:e1:29:91:78:c0:c6:59:9f:3e:89:de:
69:91:13:d9:bc:00:31:0e:f6:e7:f3:68:06:b0:46:cb:91:5a:
91:31:97:fe:09:3b:62:f6:e3:0f:a5:27:aa:b0:48:6f:75:d5:
9d:bd:ea:4c:b5:fd:20:21:0a:2c:5d:f0:78:50:e7:0d:2d:35:
2e:ed:94:e8:fa:e6:6a:86:e5:ae:59:b1:70:19:77:58:aa:f3:
8c:31:fc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:17 2023 by rpki-client on console-fra.rpki-client.org