Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/3IuRf9WQFYKVCa91wQancA3UO60.roa
File: 3IuRf9WQFYKVCa91wQancA3UO60.roa (raw, json)
Hash identifier: elP7IkWBedEz+4Hajj+aX6KMXOResG5A0ez0ODGk7s0=
Subject key identifier: DC:8B:91:7F:D5:90:15:82:95:09:AF:75:C1:06:A7:70:0D:D4:3B:AD
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1AAE6E6D
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/3IuRf9WQFYKVCa91wQancA3UO60.roa
Signing time: Thu 21 Apr 2022 17:15:23 +0000
ROA not before: Thu 21 Apr 2022 17:15:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447639149 (0x1aae6e6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 21 17:15:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc8b917fd59015829509af75c106a7700dd43bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f7:f2:bc:71:70:17:f5:ae:a5:d6:89:40:ef:
64:7e:b0:3d:89:b2:af:bc:f8:21:20:4d:9c:9e:06:
f4:01:e5:2c:9a:ea:1c:e3:65:93:76:f2:fc:72:9f:
b8:c9:ec:3b:eb:02:0d:7a:0d:5f:8e:c2:ec:49:0a:
7e:38:10:2f:35:03:1b:8e:c8:48:e7:fb:6b:d3:e0:
7d:88:fd:26:6c:8d:44:52:28:d5:8d:a6:35:23:43:
76:99:55:fb:4e:c2:8d:75:45:96:07:da:b4:be:45:
e1:b6:af:ae:8b:8b:6f:b0:66:30:94:c4:32:9e:76:
22:57:41:02:1f:0d:14:8d:b3:e0:31:c8:62:19:a6:
55:04:04:ba:01:65:57:b5:93:c7:12:7c:35:3c:f5:
c4:7f:8b:13:f0:28:59:a3:e1:33:06:44:73:ad:c4:
3a:8d:10:10:ab:27:e6:75:98:ec:b3:03:4e:45:b9:
d1:8e:3b:66:93:67:8d:e9:5f:c9:9c:94:dc:6d:fa:
7a:b8:4b:9d:7a:fd:bd:aa:37:87:8c:41:b3:47:03:
11:d0:f6:75:7f:c6:45:b2:45:70:d7:dd:77:97:39:
7a:08:d3:6b:74:4d:95:12:a6:3e:56:26:b4:64:af:
db:4f:f4:5d:c0:a4:5d:42:90:8f:1a:cc:a3:e3:98:
89:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:8B:91:7F:D5:90:15:82:95:09:AF:75:C1:06:A7:70:0D:D4:3B:AD
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/3IuRf9WQFYKVCa91wQancA3UO60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.79.0/24
80.97.147.0-80.97.149.255
81.181.128.0/24
193.226.116.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
217.156.14.0/24
Signature Algorithm: sha256WithRSAEncryption
51:0a:99:4d:34:99:93:38:66:ef:5d:61:84:41:6f:a4:7a:4d:
a8:f4:6a:51:be:fd:b5:f3:57:2c:3e:86:3a:9d:c0:cf:f4:cd:
41:59:5c:a8:bc:04:7e:90:45:28:4d:28:11:a7:2a:6f:41:8e:
fe:0e:ed:0f:56:e3:1c:a9:7b:f4:74:c6:5f:21:69:04:77:4a:
b0:de:29:69:3a:4c:ee:c9:3c:61:51:b2:51:62:88:6b:50:2f:
f3:05:b8:d4:36:1d:f9:c6:4c:f8:b6:7f:1d:4a:aa:a0:bc:e7:
de:cb:d4:e2:3b:c8:fa:04:ed:3a:45:bb:19:65:de:e6:03:46:
f9:b0:00:f3:25:9a:4d:a9:7c:39:06:95:c6:0a:c2:87:27:42:
fa:df:d0:20:2a:33:25:33:5f:7f:cf:c8:b2:ff:ea:7c:e3:8d:
6b:a1:ec:1c:e2:ac:d6:7a:8e:8e:e9:d2:8a:91:ed:b2:82:06:
99:5c:c1:67:0e:32:f9:2b:2f:a9:d3:fd:ab:7a:5c:2d:d0:5f:
55:71:da:7e:7d:29:e2:8f:ed:40:76:6e:66:00:c9:38:c2:93:
8b:cd:ae:de:90:45:99:33:20:ac:df:89:fd:37:4f:89:8c:a2:
90:72:92:d2:9c:9c:18:d8:38:f2:7c:24:c9:1f:9b:eb:34:2a:
b5:33:81:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org