Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/UmahP6kya-uJwwqrQmwkBmr1RFA.roa
File: UmahP6kya-uJwwqrQmwkBmr1RFA.roa (raw, json)
Hash identifier: NBN5BhFBXcvEpQJwn4j8SAnvbzd4HBWEPAf2yLvexYY=
Subject key identifier: 52:66:A1:3F:A9:32:6B:EB:89:C3:0A:AB:42:6C:24:06:6A:F5:44:50
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B5D8A26
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/UmahP6kya-uJwwqrQmwkBmr1RFA.roa
Signing time: Tue 31 May 2022 08:04:14 +0000
ROA not before: Tue 31 May 2022 08:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459115046 (0x1b5d8a26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 31 08:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5266a13fa9326beb89c30aab426c24066af54450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:1f:17:b2:14:f2:2d:5d:54:f1:b9:61:d1:
81:6f:7c:9f:7f:10:6c:ae:ae:e1:12:23:7e:bb:e7:
00:35:65:33:2f:cb:e4:42:b0:4e:6c:25:ae:96:37:
4d:88:ab:e8:5c:a5:c7:52:5f:80:5d:31:9a:16:c1:
73:53:23:c8:d2:69:82:45:1b:93:da:7c:60:96:1f:
d1:27:7a:ef:f0:55:a3:73:dc:5c:64:e3:c3:ad:c7:
3d:72:64:a7:7a:3d:12:50:1d:0a:54:e8:f9:f3:96:
67:62:26:71:73:63:e6:de:29:15:52:67:b2:13:b9:
e0:19:69:e3:bd:12:a4:ed:d0:38:c7:fc:0f:5a:59:
1f:09:41:bd:c5:17:53:32:d7:93:3c:56:a2:a0:1e:
77:d4:ca:1c:a0:06:90:fe:56:46:54:f1:7c:9e:69:
c3:15:69:ab:ed:e8:82:6a:bc:5e:98:de:91:60:f4:
ca:31:8d:c0:56:2f:b2:f0:28:4a:52:79:cd:cd:41:
94:29:71:17:04:55:c0:66:76:66:3c:eb:40:52:54:
18:d1:da:df:bd:1c:34:54:79:32:02:4f:09:cc:16:
d2:1f:89:ef:aa:08:2d:14:82:88:4f:32:d3:05:ac:
63:74:10:cf:37:1c:d3:78:7a:28:50:71:20:fb:e6:
95:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:66:A1:3F:A9:32:6B:EB:89:C3:0A:AB:42:6C:24:06:6A:F5:44:50
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/UmahP6kya-uJwwqrQmwkBmr1RFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.226.0/23
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
Signature Algorithm: sha256WithRSAEncryption
27:70:55:24:0d:3f:12:7a:fd:e9:66:9d:b4:54:b4:38:88:dc:
6d:b3:e1:17:9e:66:61:11:bc:ba:fe:61:9b:78:e1:6f:13:51:
0c:6c:80:9b:04:97:16:76:f8:65:75:fb:77:2d:75:27:4f:27:
85:7b:f5:de:f0:8b:e7:30:ad:ec:77:c1:35:09:64:f2:98:0d:
2b:c6:02:36:71:b1:7d:b6:77:c7:e0:30:ad:59:65:84:24:a2:
30:df:f3:d1:38:34:96:0a:d0:39:6a:de:40:b9:cf:da:6a:ac:
38:44:3f:cf:cc:ae:db:91:7b:44:e3:c9:11:04:42:95:59:55:
d0:c0:67:fc:c5:76:4b:8b:04:d4:f5:6f:22:d9:8c:d3:e9:10:
29:86:90:20:9b:88:51:41:cc:02:8a:fd:5d:39:8f:13:08:d4:
9e:25:5d:83:04:fb:d5:42:f0:0d:84:eb:49:9e:68:67:45:09:
9d:6e:81:75:a8:fc:7e:0d:1b:58:2e:6b:29:1b:02:c4:31:1e:
c0:ab:bf:52:ba:3b:8c:5d:e5:3e:bc:f5:39:60:a2:a7:0f:9b:
40:e0:82:79:70:9d:06:ad:88:8d:51:85:66:c4:b4:fe:c7:e8:
85:23:53:55:d7:f6:27:7e:eb:ab:78:0d:08:16:ff:8b:30:2d:
d1:5a:a7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org