Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OIKk7JHOnIuBbS-e5mg8d6IEvWU.roa
File: OIKk7JHOnIuBbS-e5mg8d6IEvWU.roa (raw, json)
Hash identifier: vFoXVmvcrBAKkBvL9qo6mBGcn60eQm5mfYi44wwjsto=
Subject key identifier: 38:82:A4:EC:91:CE:9C:8B:81:6D:2F:9E:E6:68:3C:77:A2:04:BD:65
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B7DC8E6
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OIKk7JHOnIuBbS-e5mg8d6IEvWU.roa
Signing time: Mon 06 Jun 2022 11:10:20 +0000
ROA not before: Mon 06 Jun 2022 11:10:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 461228262 (0x1b7dc8e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jun 6 11:10:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3882a4ec91ce9c8b816d2f9ee6683c77a204bd65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:50:5f:e9:c3:5a:8c:ff:a7:99:b8:22:66:b4:
21:8c:da:e9:ec:83:3f:10:10:8e:11:9b:70:0d:4d:
f2:ef:af:f3:1c:6d:a0:30:fd:9f:48:fc:a0:28:f7:
a5:fb:1c:03:28:c4:ba:12:02:ce:16:c7:58:56:d7:
5c:f8:78:79:47:c4:d7:6a:a8:b2:a4:f8:af:3f:44:
26:a2:4f:bc:4e:f7:76:66:77:2a:62:c8:09:3d:dd:
e2:16:a2:dc:7e:fe:0a:3a:4a:c5:90:d8:85:e3:5c:
5d:88:89:77:ec:a7:78:87:4c:63:51:aa:18:27:a8:
bf:cf:a6:33:b2:74:75:4d:ae:8f:56:18:78:7c:a2:
43:27:c7:0f:af:69:8e:47:84:a8:60:4a:94:c1:4b:
72:24:71:5e:6a:af:9a:e0:1e:01:d0:a3:33:0f:17:
af:b9:45:f6:95:f4:96:cc:4d:83:a3:b3:7d:2a:cd:
1a:02:c9:76:af:92:8f:4f:16:b9:d5:f2:f7:7f:dd:
b7:75:f2:a1:7c:74:38:9d:6d:0f:76:b6:6e:17:78:
59:de:d0:25:55:c1:cf:d4:c5:a4:6b:40:ec:1e:d6:
c3:c6:aa:49:dd:11:1a:86:22:7a:7e:dc:b2:56:d2:
d1:c3:45:64:5b:4f:38:28:bd:40:26:1f:ef:18:0e:
57:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:82:A4:EC:91:CE:9C:8B:81:6D:2F:9E:E6:68:3C:77:A2:04:BD:65
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OIKk7JHOnIuBbS-e5mg8d6IEvWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
85.120.20.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.226.0/23
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
40:6f:86:21:cd:f1:b8:42:59:25:c0:a4:30:ae:c8:ff:94:23:
ba:a8:00:90:18:99:5b:bd:fd:f1:91:bc:5e:a9:33:f4:44:ec:
1d:70:df:81:6f:cd:16:dc:16:2c:9b:23:d0:19:f7:ca:93:b2:
65:d9:8a:31:cd:aa:41:90:af:8e:1b:ab:36:d9:46:01:9a:fa:
a9:22:5c:bb:2c:a3:68:e7:62:ef:06:e5:81:ac:59:3a:e0:c5:
08:95:35:f1:d8:17:12:c7:ab:c2:ec:72:6a:c7:5d:17:8b:3d:
3e:7b:10:1e:8f:75:e0:7a:83:c1:4d:30:e0:81:21:ca:0b:a7:
73:fa:4d:34:f9:b3:c2:f8:54:f2:a8:6d:88:bf:84:0d:1a:68:
28:c4:99:74:08:fd:73:7f:35:16:6d:f5:9c:5e:35:c4:99:fc:
fb:d9:0e:72:70:82:98:b3:b8:2b:a6:a9:4a:ad:79:30:d6:54:
7f:f9:53:e0:25:7f:71:39:16:ba:45:b5:c2:17:56:6d:e7:5b:
b4:5d:5c:bd:c3:df:64:80:91:da:38:cc:10:58:dc:87:5b:eb:
3d:5b:5c:59:2b:ac:c4:f5:e5:ff:e2:8c:53:05:8c:18:53:69:
45:ab:d9:31:f9:f8:d6:01:de:3e:5e:cc:bf:14:10:64:28:ff:
f4:5b:2a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org