Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/bO77FKw1F03EHeMQfEFotAD2C1o.roa
File: bO77FKw1F03EHeMQfEFotAD2C1o.roa (raw, json)
Hash identifier: kfS0L2AW7ypw/fg022FNyBy26XZJlHcPNRk7goDrsdw=
Subject key identifier: 6C:EE:FB:14:AC:35:17:4D:C4:1D:E3:10:7C:41:68:B4:00:F6:0B:5A
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B474781
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/bO77FKw1F03EHeMQfEFotAD2C1o.roa
Signing time: Thu 26 May 2022 05:57:13 +0000
ROA not before: Thu 26 May 2022 05:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457656193 (0x1b474781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 26 05:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ceefb14ac35174dc41de3107c4168b400f60b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:25:f6:ae:e5:5b:ac:62:56:1b:26:c4:59:72:
08:97:38:c4:be:7a:3f:94:aa:a0:8f:a4:42:c3:15:
9e:1f:28:84:f1:9d:c3:de:95:85:c7:8f:23:a2:02:
2b:3d:83:c2:58:2d:24:ac:9f:bc:e7:71:40:ab:69:
b3:d1:d0:17:9f:68:7e:0c:da:3f:a7:97:4a:d4:14:
b6:ec:1f:0b:0f:b8:59:25:54:f6:06:2b:e7:01:04:
1c:23:82:90:01:2a:d4:37:2c:67:80:29:2e:20:e8:
15:f4:62:56:db:e8:b3:c5:70:23:9a:9c:1b:00:36:
05:20:bd:db:86:e8:7d:3c:73:b9:da:1c:42:2f:3e:
40:fa:bd:07:8d:7a:a6:7b:04:a5:37:00:12:49:05:
5b:54:e2:39:39:ab:86:94:b8:e4:d2:a1:0e:a5:4e:
63:d6:d4:72:b2:ed:07:1f:ef:2d:da:a9:19:bc:90:
c9:39:fc:c7:a8:5d:f7:0c:9f:74:2e:13:7b:7c:28:
a5:df:d5:5f:c2:7b:f4:98:02:11:db:ae:32:97:17:
63:4f:d9:21:76:ae:d8:60:84:92:08:5c:34:85:29:
72:1e:94:c6:0b:9d:9e:68:cf:d8:d4:a9:a0:94:55:
f8:b5:11:09:3d:47:94:60:21:ad:8b:df:ae:ed:12:
49:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EE:FB:14:AC:35:17:4D:C4:1D:E3:10:7C:41:68:B4:00:F6:0B:5A
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/bO77FKw1F03EHeMQfEFotAD2C1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.73.0/24
80.96.79.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.217.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
Signature Algorithm: sha256WithRSAEncryption
03:b8:d6:ea:95:68:0c:ec:5a:3c:30:a1:91:70:43:a4:ff:7b:
39:9c:a6:9a:54:06:a7:29:d4:09:f9:8c:e1:fe:41:88:50:09:
f7:c4:ff:c4:eb:8a:aa:fa:e1:9a:80:e6:af:34:e4:64:9a:17:
17:d0:10:d8:a3:6e:2b:7a:3b:5d:ce:82:35:34:31:0b:d1:0a:
fd:7b:bf:e3:80:5c:30:d7:1b:47:46:05:1f:f0:f5:9d:27:0c:
ad:65:be:15:e6:ad:9b:c2:5d:78:87:ff:18:6e:5d:02:3c:f7:
2c:24:13:3f:89:06:34:68:6b:a2:84:cd:d8:9f:c4:58:1d:91:
9d:4a:9f:32:33:f2:da:af:46:50:97:52:fa:4a:8b:a3:70:2d:
ec:bc:d0:28:85:a1:5c:40:14:2e:b3:25:9c:6d:fa:05:f7:55:
de:6e:9c:14:44:fd:17:72:16:5d:ea:f1:29:28:7d:b1:ec:c5:
ef:48:12:8d:65:fc:6d:84:cb:51:6b:93:81:e2:a4:96:00:27:
58:47:4f:32:39:ee:97:11:ee:d3:c6:2c:46:f7:24:82:15:e9:
2b:65:f1:3b:35:62:1c:9a:36:e9:7c:93:a5:7d:b4:4f:53:9a:
6f:81:04:f1:1a:e3:26:39:4e:8e:0e:97:e4:6a:56:50:ef:59:
99:dc:d9:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org