Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/a_cdVTpvezTPhUewKi2cTjxz2_g.roa
File: a_cdVTpvezTPhUewKi2cTjxz2_g.roa (raw, json)
Hash identifier: M8Q+ZFfCoFdj4P4NR8YYkwJcwrYta2sb7/GdWlO8uQw=
Subject key identifier: 6B:F7:1D:55:3A:6F:7B:34:CF:85:47:B0:2A:2D:9C:4E:3C:73:DB:F8
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1ADCE92A
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/a_cdVTpvezTPhUewKi2cTjxz2_g.roa
Signing time: Thu 28 Apr 2022 11:59:25 +0000
ROA not before: Thu 28 Apr 2022 11:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 450685226 (0x1adce92a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 28 11:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bf71d553a6f7b34cf8547b02a2d9c4e3c73dbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b0:39:33:03:a8:c6:a4:b3:9d:b4:e9:c0:56:
e3:5d:61:54:d7:79:53:9e:df:a5:ac:17:d7:68:c6:
ea:a4:ce:76:59:e5:a4:48:c6:f4:2c:bc:c3:88:d1:
8f:cd:02:bf:12:44:e5:eb:14:7e:ec:b2:59:a6:9a:
98:03:b1:81:69:2c:44:2b:18:27:05:d1:1c:d8:be:
37:da:5a:5e:45:a5:1f:01:df:93:11:e2:55:47:62:
c9:b5:96:0f:01:ea:18:00:30:fe:dd:e9:64:67:d3:
71:2c:b0:8b:d4:d0:77:eb:cd:1c:52:56:6d:0a:f5:
59:bb:d3:cb:bd:75:76:b9:9a:d8:bd:21:6f:9e:df:
93:18:47:71:ee:cf:b0:af:d9:22:3e:2a:b8:d4:e2:
d6:ab:d4:2c:77:68:8e:e1:4a:47:e5:8b:3d:0a:32:
b6:7c:26:5e:f5:31:d7:d6:ef:84:5e:69:1b:66:34:
f6:9b:9f:ae:a6:a6:72:78:0f:70:e1:4a:a2:da:d6:
c4:1e:ed:12:cf:39:5a:a1:07:a8:5c:60:70:6e:09:
84:70:fe:23:ef:3e:ad:db:8f:9a:4d:fa:36:e7:d6:
8c:7a:78:d5:cb:ce:31:d3:05:f8:e9:6d:8c:11:d9:
77:6e:5a:e8:69:ed:ea:ea:ac:cb:f3:e0:66:5f:88:
a5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F7:1D:55:3A:6F:7B:34:CF:85:47:B0:2A:2D:9C:4E:3C:73:DB:F8
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/a_cdVTpvezTPhUewKi2cTjxz2_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.47.0/24
80.96.67.0/24
80.96.79.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
194.102.229.0/24
217.156.14.0/24
Signature Algorithm: sha256WithRSAEncryption
43:1b:fe:2d:43:09:de:2c:65:75:11:99:e9:4b:f4:c6:59:76:
99:62:91:bd:19:f9:9b:34:60:cf:5f:f5:49:60:79:b5:da:44:
58:1c:f7:bc:e2:5a:c3:b4:82:be:86:f8:95:40:87:a3:98:89:
dc:fb:f6:29:96:3e:b0:23:bb:7c:98:80:73:6b:22:55:b1:6d:
ed:b6:06:f5:04:fd:b2:f1:66:d6:8d:1e:4c:88:9c:9b:ef:c1:
56:9b:a9:06:59:0a:dd:24:ee:90:d4:17:96:da:49:ff:3c:9a:
16:cf:ac:5c:f5:5c:30:59:89:30:a9:5a:91:64:de:aa:88:f2:
43:b9:ad:3b:b7:dc:12:e7:13:93:0b:78:fb:d1:a8:ab:a0:b3:
43:eb:7b:72:2f:14:f8:8b:de:09:d2:44:2c:0f:35:ef:32:5e:
07:45:b1:04:21:3e:8f:42:55:6f:50:96:6f:bd:3d:46:92:62:
22:ad:9d:3c:9f:df:01:f4:77:c1:8d:4e:ea:60:10:ab:46:58:
c1:8c:8b:97:b8:73:bd:6f:e3:91:5c:17:1e:23:ec:5b:dc:f6:
c3:96:a5:81:cc:bb:63:dc:a0:ca:34:d5:5e:fa:09:17:27:28:
a9:ff:bf:48:b0:a3:92:ea:31:f1:f0:f1:7b:0d:87:2c:01:bb:
47:60:bf:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org