Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/A3ijklugbdnJwJAKRXkZMINse_I.roa
File: A3ijklugbdnJwJAKRXkZMINse_I.roa (raw, json)
Hash identifier: KfdNtYZH3W4hKOV4+CnJY3GI/RaIugIHPj8qDqkOogw=
Subject key identifier: 03:78:A3:92:5B:A0:6D:D9:C9:C0:90:0A:45:79:19:30:83:6C:7B:F2
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1AF6C74A
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/A3ijklugbdnJwJAKRXkZMINse_I.roa
Signing time: Wed 04 May 2022 12:36:16 +0000
ROA not before: Wed 04 May 2022 12:36:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452380490 (0x1af6c74a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 4 12:36:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0378a3925ba06dd9c9c0900a45791930836c7bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4f:19:15:16:78:d6:a2:b5:85:95:62:b0:98:
d0:77:c1:4c:d4:b7:c3:50:1b:4f:3a:d7:1f:29:2a:
d9:c7:72:89:2c:16:9b:99:43:4c:5e:30:92:c0:4e:
43:c6:5f:1e:d1:8f:92:27:07:dd:22:94:01:16:46:
3f:78:6f:c3:bd:c9:aa:1f:9a:8f:69:aa:dc:1c:6a:
fe:3c:ef:8d:92:e8:3a:ec:f2:bf:9c:e9:dd:17:c4:
be:fc:5d:60:9a:65:76:7f:91:14:af:83:ca:ec:ab:
ba:ec:3a:b9:c9:07:78:81:13:0a:f1:56:38:58:67:
85:11:82:d8:40:37:db:94:53:84:5d:4d:38:d0:aa:
01:db:bd:fb:ad:50:b4:4b:59:d7:e6:f2:c7:54:12:
1d:03:15:33:56:f7:fd:db:22:c8:27:35:3e:93:d0:
7c:4a:1d:ac:a5:98:9d:9f:e8:c3:ff:66:bb:f6:72:
da:d2:bf:40:fc:d3:66:b4:42:17:54:52:32:11:21:
ad:75:7e:fa:ea:b9:d0:31:63:f4:3f:35:d2:43:87:
6e:53:2e:a3:47:62:60:d2:95:02:e0:c9:5e:6e:04:
8d:ce:d6:a1:12:31:42:ec:d8:83:d3:df:c4:58:83:
59:7a:48:1c:93:1f:58:b1:46:af:a6:c0:f7:ed:ea:
ed:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:78:A3:92:5B:A0:6D:D9:C9:C0:90:0A:45:79:19:30:83:6C:7B:F2
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/A3ijklugbdnJwJAKRXkZMINse_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.79.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.127.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
194.102.229.0/24
217.156.14.0/24
Signature Algorithm: sha256WithRSAEncryption
00:0f:70:fe:67:47:61:39:5e:06:e5:83:11:1c:4f:13:6d:a0:
fc:5c:15:88:d4:95:8a:99:a6:3a:8b:34:01:f0:15:af:79:14:
97:b2:c5:bb:59:39:fc:2d:58:78:67:4c:4b:15:e9:01:73:81:
4e:c2:4a:f7:50:13:d8:d9:86:79:e3:0e:65:cd:a1:fd:10:e9:
8a:b9:90:18:b7:65:a4:f0:68:d3:2a:6d:c4:4d:c4:40:c9:9a:
47:29:fa:ca:09:f7:5c:68:1d:60:06:84:76:87:f6:56:51:dd:
e2:d2:85:4d:5a:01:e7:bc:c4:99:53:5e:00:50:76:95:df:20:
5d:36:8c:bd:ec:4b:ba:e4:83:ac:fc:90:ff:49:f9:81:77:04:
6c:8e:cf:74:2b:43:1f:d1:96:cd:95:0d:18:91:f2:a0:e7:88:
39:9c:49:57:e8:df:11:59:6a:fd:cb:2e:8b:ff:14:c1:ad:23:
f7:fa:3d:72:ed:d9:fb:92:b3:b5:d0:b8:f5:b4:fe:fb:94:e9:
41:55:3a:9b:e9:80:bc:c4:5b:cb:55:69:73:d8:ea:d9:f7:44:
85:92:ef:67:ba:c6:9a:e8:c1:59:c8:f4:ae:f2:da:fe:bc:dd:
13:5c:ee:83:31:ce:83:ad:41:a6:5a:37:8d:78:26:dc:98:b7:
9a:4f:d4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-ams.rpki-client.org