Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/9nhQBiaVCdpupdpR71zTH_XYaaM.roa
File: 9nhQBiaVCdpupdpR71zTH_XYaaM.roa (raw, json)
Hash identifier: yNCzM7vsEnPuJrsXwYLvJKbx9PSVtl2Fj0PFdRKR8TM=
Subject key identifier: F6:78:50:06:26:95:09:DA:6E:A5:DA:51:EF:5C:D3:1F:F5:D8:69:A3
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B626F72
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/9nhQBiaVCdpupdpR71zTH_XYaaM.roa
Signing time: Tue 31 May 2022 10:49:13 +0000
ROA not before: Tue 31 May 2022 10:49:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459435890 (0x1b626f72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 31 10:49:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6785006269509da6ea5da51ef5cd31ff5d869a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fb:27:8b:3c:16:7a:47:a1:24:6e:c1:d5:b3:
8f:f0:6a:52:aa:68:d5:8a:9a:69:94:1b:07:e3:8b:
7d:b8:0f:e2:13:b8:65:b6:7b:e2:94:c8:0e:1b:37:
7c:4a:e7:f1:f9:20:f6:89:63:6f:61:fe:d6:6b:1c:
de:6e:17:d9:d0:60:d1:c2:b2:56:60:a7:42:a4:9d:
a5:f0:ee:b2:7b:21:1e:c8:b8:7a:97:08:a8:25:71:
c6:73:e3:13:8d:07:bd:66:66:21:c6:53:b6:a2:ed:
32:9f:3c:8f:0e:15:78:fc:53:87:9b:75:61:f1:cb:
8d:c9:fb:f3:67:9f:34:4f:c9:9e:4a:f2:05:20:1b:
1a:bd:8f:c3:f1:4e:c7:0a:bb:3c:be:cb:95:0f:0d:
a1:02:3d:1d:21:eb:62:e0:36:d3:d6:b4:dc:0d:e9:
ac:d6:75:5c:b1:20:51:8e:67:5e:8f:84:d6:47:c3:
8d:47:8f:7a:f6:66:a2:68:3e:e7:ae:52:e2:89:b4:
0b:06:a1:aa:35:e5:5e:79:32:9f:a1:ab:22:de:5e:
91:2a:43:f2:37:c1:e0:b5:e4:ce:59:a8:bd:5e:05:
2e:b8:bf:71:c7:dd:d1:48:0d:61:d4:6b:a8:23:66:
3d:a9:33:90:8c:04:8d:38:4d:bf:e9:2f:75:2e:29:
52:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:78:50:06:26:95:09:DA:6E:A5:DA:51:EF:5C:D3:1F:F5:D8:69:A3
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/9nhQBiaVCdpupdpR71zTH_XYaaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.226.0/23
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:c8:dc:0c:55:f8:fb:2b:14:ba:15:ba:2d:ec:21:ca:f7:87:
42:b2:89:97:db:c5:61:01:53:df:e5:1c:8c:b8:3b:35:12:be:
dd:c4:9e:bf:60:c4:e9:4d:84:b0:09:0c:14:89:83:1c:a1:18:
1e:9c:4c:0e:5b:e5:ba:42:73:0c:51:6d:b0:bf:d8:44:3c:c3:
55:8a:77:12:cb:78:9b:6d:df:80:5a:dc:27:62:cd:ef:59:5c:
58:b5:08:a7:78:6d:92:e8:1b:08:4d:4c:de:a1:a9:d8:32:21:
f1:0b:2f:9f:5c:55:03:e4:0f:d7:08:32:fd:68:8a:12:5c:c9:
47:1a:20:7a:b9:ee:f8:c1:5b:70:78:b9:04:3a:0a:f6:4a:d3:
e0:fd:4b:42:fe:bc:6e:b6:e4:48:40:ec:8d:c0:f0:ed:46:cf:
21:28:8d:c3:b4:73:6b:9f:f1:56:3d:b1:c3:43:e8:b5:8f:56:
80:6e:11:09:b3:2a:a8:f2:a1:f1:de:bc:0b:09:2d:2a:ae:8f:
d4:1b:9e:4b:99:46:d4:dc:27:69:ad:4d:e9:03:e9:5e:63:d3:
96:7e:10:76:fd:91:dd:95:20:85:b0:2d:82:d4:97:e1:6a:96:
b8:7b:fc:24:3d:a9:5b:a6:67:86:cd:80:3e:2f:1b:45:a4:e5:
40:e4:3a:90
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org