Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Vuf7LO2DXMJxONmkxAZxUhZKNgQ.roa
File: Vuf7LO2DXMJxONmkxAZxUhZKNgQ.roa (raw, json)
Hash identifier: xB8nhV9th7wz3yI9ohj/tou/lf3HIerCc5ULQ+xQXRU=
Subject key identifier: 56:E7:FB:2C:ED:83:5C:C2:71:38:D9:A4:C4:06:71:52:16:4A:36:04
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B031739
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Vuf7LO2DXMJxONmkxAZxUhZKNgQ.roa
Signing time: Fri 06 May 2022 08:21:09 +0000
ROA not before: Fri 06 May 2022 08:21:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453187385 (0x1b031739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 6 08:21:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56e7fb2ced835cc27138d9a4c4067152164a3604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a5:af:09:c5:0e:b9:84:01:9e:c6:5e:92:cb:
6d:ac:a0:b2:9c:7a:e0:e7:ad:6e:ab:67:6d:38:74:
fc:d5:d5:1b:a6:a7:b8:d5:07:76:fa:6b:63:1c:61:
36:f8:e4:9d:e8:ec:e3:60:9b:02:f6:c1:74:57:a5:
3e:1b:b5:84:5b:43:c4:79:9e:93:54:d4:37:05:74:
f1:45:4e:19:8a:70:28:41:1f:18:2b:1c:37:f8:5f:
14:b9:1a:bf:2b:90:d8:bf:f7:47:05:88:d1:3b:c9:
ff:68:c7:c3:3f:4b:bd:c8:f6:dc:19:a7:11:2e:52:
ee:09:af:a6:ef:29:61:6f:4e:c2:5e:9a:99:0b:59:
36:af:57:74:be:db:05:2e:37:a4:f0:10:6c:e3:96:
8e:67:a7:9e:c8:2e:f4:b7:3d:35:ba:73:37:6b:a2:
d0:24:65:d1:68:2f:09:7b:e8:ce:e2:e7:fa:fd:83:
17:17:08:e0:8b:72:ac:47:34:2b:d4:b2:2b:56:da:
32:23:0c:93:3a:f2:b2:1d:0c:a1:31:9d:e5:92:b4:
e4:ee:cd:e8:d0:f2:e6:73:e6:8b:8b:54:a7:cd:6d:
d1:ca:b8:8e:07:e5:2e:90:f0:e2:9c:db:11:43:59:
0c:20:c3:2e:35:36:a5:39:b1:4f:bc:4e:d0:a2:63:
0e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E7:FB:2C:ED:83:5C:C2:71:38:D9:A4:C4:06:71:52:16:4A:36:04
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Vuf7LO2DXMJxONmkxAZxUhZKNgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.79.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.127.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
194.102.229.0/24
217.156.14.0/24
Signature Algorithm: sha256WithRSAEncryption
83:60:57:bb:23:d4:04:14:67:a5:ab:30:ea:17:62:fa:f8:06:
b3:4f:a9:bc:48:c1:80:91:e1:89:cf:09:bc:d5:62:29:83:fe:
99:ec:d3:ad:da:40:41:5c:72:f9:9d:26:1d:91:d9:76:ea:b6:
72:89:f6:1d:cc:15:03:19:fb:6a:3c:1a:2f:b0:74:15:ad:2c:
a0:33:1b:fc:23:12:d5:44:72:ac:fc:f9:f8:a1:00:32:49:1a:
f4:f8:20:a3:49:1e:77:31:ee:21:21:66:75:9c:3d:a7:da:e3:
03:8e:43:56:23:ee:f2:dc:6a:72:68:37:82:73:2c:74:20:5e:
7b:1a:ee:79:2a:ec:a2:08:52:a8:e4:72:5f:5b:a1:19:5c:f8:
6d:ff:e1:80:d3:e7:ea:29:e9:11:44:20:ee:c2:f8:cd:18:23:
6d:71:3d:8e:4e:34:32:77:ff:6f:50:69:a2:24:ab:bd:45:b5:
14:a7:f3:18:ab:19:46:81:63:df:28:24:b2:8c:14:7a:8e:67:
82:84:38:a4:6b:11:79:1a:d5:00:92:eb:00:94:b1:4e:8e:a6:
bb:a0:12:50:c4:01:93:f0:4a:d6:22:88:75:a0:94:7b:87:4c:
0f:1e:de:ee:04:68:4d:da:e8:8f:e4:1b:29:4b:50:bb:bc:5a:
31:dd:a5:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org