Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/VGGIou0h7z7SivmiTNRdZOGVYnM.roa
File: VGGIou0h7z7SivmiTNRdZOGVYnM.roa (raw, json)
Hash identifier: EzYvSOnff7AWJmTtY9RJxwlMOTuTB5W8bJMtP2+CRhA=
Subject key identifier: 54:61:88:A2:ED:21:EF:3E:D2:8A:F9:A2:4C:D4:5D:64:E1:95:62:73
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B915B95
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/VGGIou0h7z7SivmiTNRdZOGVYnM.roa
Signing time: Tue 14 Jun 2022 07:49:44 +0000
ROA not before: Tue 14 Jun 2022 07:49:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 462510997 (0x1b915b95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jun 14 07:49:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=546188a2ed21ef3ed28af9a24cd45d64e1956273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:64:29:79:36:bc:a1:68:c4:89:43:5c:d0:a0:
08:db:35:4a:51:04:82:7b:0a:eb:33:ae:41:d9:d3:
3d:c6:39:3a:3c:90:67:ce:ee:45:c6:39:1b:8f:27:
54:08:42:20:43:c9:ef:44:c1:aa:99:88:07:71:d6:
a5:86:61:7a:16:89:53:e7:c8:b5:5f:14:9d:9f:7a:
fb:eb:75:14:4b:29:aa:2c:3c:aa:2a:b8:04:0c:c3:
6f:6c:ef:2f:26:7a:53:12:42:8b:ab:44:25:e5:10:
b1:80:ce:8f:97:9c:68:4e:ee:30:48:04:6d:de:b8:
ac:71:ea:2a:eb:25:52:e8:1c:bb:f3:78:e6:5a:73:
82:c5:bd:1f:21:ff:ca:9f:05:e2:84:2a:f0:77:f0:
66:71:99:61:8d:3e:a4:1c:56:31:38:16:60:26:23:
02:34:7a:0f:e2:19:6c:f9:c1:e2:60:08:07:4f:0e:
db:fa:21:b4:75:8b:de:60:a2:66:0f:f8:f1:02:8e:
6e:fd:8c:2f:8e:82:fa:22:b1:d7:d4:9b:e4:a0:18:
c9:c4:84:5d:f5:22:00:1a:7d:7f:b6:0f:1a:e1:40:
80:a8:a5:8b:5b:bc:75:e2:fe:d6:57:46:0c:c6:73:
77:43:16:c7:41:9e:1a:13:bd:10:4f:07:1b:4f:60:
ff:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:61:88:A2:ED:21:EF:3E:D2:8A:F9:A2:4C:D4:5D:64:E1:95:62:73
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/VGGIou0h7z7SivmiTNRdZOGVYnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.226.0/23
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
95:4e:9e:ba:be:7a:5d:5f:7e:14:4c:e8:d2:53:8b:ed:9b:5e:
ea:ae:2a:3e:91:8e:b9:45:b5:c0:0f:28:3d:1b:fb:de:22:fd:
e6:9b:fb:c7:29:f4:34:61:d8:80:34:63:c8:45:be:56:9b:c9:
e4:c8:99:1a:c1:73:bb:2c:22:0b:4c:99:3a:4f:33:1a:e5:79:
fb:e0:52:aa:18:28:c7:2f:c5:e9:89:1c:ba:23:a9:82:62:9e:
e0:98:62:54:0c:5d:11:ad:1d:43:82:3a:16:6f:ba:c4:36:c7:
d9:0d:75:91:4d:5a:1b:fd:38:e4:c9:e6:77:ec:4b:5b:5e:ee:
23:db:5f:c9:62:ca:dc:80:ee:3e:85:50:69:37:88:1b:af:ae:
5f:f0:cb:ca:ef:fd:2f:0a:3a:ee:94:c7:33:6a:2b:06:e2:83:
ac:ab:aa:76:81:b5:8d:93:ac:8a:33:7b:d6:7a:13:59:61:b0:
7c:86:9c:e3:d1:5f:f1:13:0c:78:11:ee:be:ad:6c:38:12:b0:
18:79:08:8d:59:cb:3f:45:65:c2:8f:78:58:76:ea:44:15:34:
4e:e1:94:99:18:77:ed:2b:84:4d:ce:7c:38:c1:57:a3:de:27:
03:d6:bf:01:a9:4d:b7:10:25:fc:14:a1:95:d0:aa:fb:bd:03:
fc:da:43:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org