Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/YAd6LWj6nkLvbqfVC2jwavu6ADs.roa
File: YAd6LWj6nkLvbqfVC2jwavu6ADs.roa (raw, json)
Hash identifier: 8dVSvHww5rXC/niFXUAVa/g4k8GbEb/JwNwzexx+jrA=
Subject key identifier: 60:07:7A:2D:68:FA:9E:42:EF:6E:A7:D5:0B:68:F0:6A:FB:BA:00:3B
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B597629
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/YAd6LWj6nkLvbqfVC2jwavu6ADs.roa
Signing time: Mon 30 May 2022 12:34:14 +0000
ROA not before: Mon 30 May 2022 12:34:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458847785 (0x1b597629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 30 12:34:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60077a2d68fa9e42ef6ea7d50b68f06afbba003b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8a:f6:4c:4b:96:8c:f5:3a:b3:e7:9d:23:99:
59:23:a8:91:9a:44:09:1f:07:c3:39:8c:84:f4:18:
0b:f7:9d:9e:ad:87:80:60:14:e7:a7:3c:2f:98:54:
bc:4e:24:cd:84:6a:58:ab:95:fb:08:e0:2a:f1:fb:
2e:b4:74:35:cb:56:27:f7:d3:69:04:bb:13:f4:10:
b5:4d:6d:44:81:d9:17:bc:54:7e:3f:a0:e3:08:d2:
43:b2:c8:71:ce:2e:1e:74:7d:c3:83:aa:e8:d5:cf:
a6:06:fa:22:a0:c1:5b:2d:c0:db:75:46:6b:c0:2f:
b4:bf:bc:eb:e8:55:f2:d7:9e:ce:66:99:12:18:05:
dc:9f:c0:6c:30:15:c3:15:23:50:72:ab:a6:62:0c:
b7:7c:4e:8b:b7:1d:d6:29:ab:1b:a6:e9:d1:4d:84:
20:f2:77:02:2f:4a:29:33:74:cd:91:04:d6:06:7b:
6e:56:9d:d1:13:2a:fa:e1:f4:5e:f3:95:52:a0:2b:
c1:be:60:9c:d5:97:b0:b5:2e:0d:dd:31:e5:ec:09:
5f:7f:7b:b0:66:19:b7:e9:93:35:d0:0b:c6:e7:c9:
9d:f1:37:f7:19:a8:54:79:b2:49:e9:c6:b3:eb:a8:
a0:69:96:6e:dc:81:d4:42:74:28:98:a7:99:4a:7e:
8d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:07:7A:2D:68:FA:9E:42:EF:6E:A7:D5:0B:68:F0:6A:FB:BA:00:3B
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/YAd6LWj6nkLvbqfVC2jwavu6ADs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.217.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.226.0/23
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:bb:7b:55:bb:ee:f6:6f:dd:e1:0b:01:72:c2:03:34:aa:7a:
3b:16:b5:53:3e:93:68:aa:0c:91:ab:df:32:44:01:bc:2a:ce:
ac:bf:ad:ab:a3:7b:e5:9a:b7:0b:b6:5e:f6:aa:41:c7:b6:09:
1c:43:16:74:4b:0c:b6:26:0d:32:a3:c0:97:7c:b0:f4:43:00:
3d:80:8f:83:ca:bc:e9:32:7e:24:58:db:d9:87:86:4e:e8:a0:
c9:37:88:2a:46:87:8b:7c:87:b9:d9:76:46:3f:96:68:ba:b0:
47:89:a9:21:f8:00:e2:e6:38:8f:fa:47:13:c7:dc:5b:61:d7:
f6:0a:13:74:4d:3c:57:8f:2b:30:6c:f6:74:82:12:d8:93:24:
27:79:63:9e:bc:d7:5e:9a:72:ff:3d:fd:12:60:6f:c9:36:0c:
54:cc:cc:f3:35:73:c2:57:3e:92:a3:59:51:cc:24:67:aa:8f:
17:b0:c1:8b:d7:f8:71:fe:3e:58:25:4b:a6:b8:c9:ea:b9:a4:
b0:37:df:b9:49:73:3f:f3:97:79:08:43:5e:38:34:3b:fe:54:
e8:f6:4c:f1:7d:0e:e8:e9:00:eb:7f:53:56:d1:6f:f3:6e:92:
5b:d7:09:f2:5a:99:a0:d9:45:f7:bc:a9:26:83:85:5b:b8:51:
c7:79:25:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org