Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OAQ4y79WxNbHw_veLa8qPJCC8PU.roa
File: OAQ4y79WxNbHw_veLa8qPJCC8PU.roa (raw, json)
Hash identifier: KFA4LIjAV9eHsX05wLxIXTxyPII5vTKb+dO7HvjREso=
Subject key identifier: 38:04:38:CB:BF:56:C4:D6:C7:C3:FB:DE:2D:AF:2A:3C:90:82:F0:F5
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0184F1B8A59727F89FBBE67B5A6526B63F38
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OAQ4y79WxNbHw_veLa8qPJCC8PU.roa
Signing time: Thu 08 Dec 2022 12:32:00 +0000
ROA not before: Thu 08 Dec 2022 12:32:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
193.231.75.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:b8:a5:97:27:f8:9f:bb:e6:7b:5a:65:26:b6:3f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Dec 8 12:32:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=380438cbbf56c4d6c7c3fbde2daf2a3c9082f0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2b:3c:5a:53:ca:ab:11:cc:9f:6b:75:7d:bb:
80:77:4c:83:1c:08:00:a9:dd:9f:dd:dd:41:22:2f:
a6:34:f7:ce:46:c9:7d:44:07:48:dc:53:05:9c:50:
3a:86:6d:62:0d:67:02:b5:20:25:bd:38:f6:f4:ff:
7f:d6:6a:51:d6:a7:35:87:4a:5a:b9:82:4e:b7:8f:
cf:7f:7d:17:6b:d3:28:17:48:19:2b:ba:f2:33:15:
d9:fb:0f:81:6f:fa:06:b9:5f:a9:0f:fc:1b:88:2c:
a9:2e:24:50:71:4c:bd:00:31:b3:59:19:68:c3:cd:
3c:42:4b:a8:e3:d6:cd:bc:90:71:53:c1:20:e8:e6:
59:be:d4:62:f1:71:64:08:60:bb:2c:a1:c5:f9:5c:
52:cf:b2:49:d8:31:bd:5a:1e:e8:28:54:b4:dc:be:
a5:fa:a5:7c:36:85:b8:36:29:ff:4e:20:54:39:52:
0e:6d:2c:5d:b9:8a:c4:1b:ca:0b:55:9f:99:c9:65:
31:ec:95:a4:6f:52:30:47:37:b6:61:35:05:1e:70:
d0:de:e8:95:66:b0:09:3b:9c:c3:eb:bb:ba:b8:6c:
e6:99:79:0c:60:0f:cb:07:8e:9c:98:9a:b0:94:4e:
35:48:62:12:3b:19:da:04:34:a8:de:56:38:cc:10:
c6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:04:38:CB:BF:56:C4:D6:C7:C3:FB:DE:2D:AF:2A:3C:90:82:F0:F5
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OAQ4y79WxNbHw_veLa8qPJCC8PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.75.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.226.0/23
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:df:2c:32:2b:2b:a4:c1:83:cc:d1:4e:32:e1:46:a3:ff:ea:
6e:0f:51:c6:ed:ae:0c:50:c2:12:4d:1c:02:3b:e4:09:48:4e:
13:73:a1:db:c3:4f:d9:ef:a9:64:c7:6f:48:32:2c:e2:3d:37:
24:3c:dc:64:83:d2:47:f3:bf:52:74:1c:c2:9f:e7:23:90:50:
3a:01:06:bb:7d:19:a7:6b:e4:bb:99:dc:c1:fb:ae:9e:92:46:
50:8b:7e:7c:7e:09:2a:a2:e5:0e:57:7b:57:79:21:ba:52:b9:
69:f7:d7:a4:3e:37:30:a5:95:15:93:52:f0:87:29:35:b9:d5:
58:38:07:cd:ff:22:d7:42:e1:e1:35:c9:7f:db:37:05:68:e1:
07:eb:ad:98:43:1f:65:b0:fc:d9:24:93:d5:a7:a0:54:12:93:
76:85:c4:18:44:58:ab:69:3f:37:b5:92:a4:bd:92:7b:00:a7:
51:c3:bd:98:d6:72:47:8b:2a:c4:75:ba:d1:04:c2:51:f8:5b:
82:7c:89:b7:d6:5c:91:c4:3d:65:9b:0c:74:11:41:ed:f2:86:
fd:e7:9a:4b:10:8c:aa:fe:a9:c8:e7:ac:62:b3:78:45:be:6e:
1a:d7:e2:0d:cb:85:04:2b:eb:ba:db:67:7a:2a:11:c1:31:0c:
98:ae:f3:04
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org