Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dbEIJNJ9Ddhb89Dxmop_kKbk2vc.roa
File: dbEIJNJ9Ddhb89Dxmop_kKbk2vc.roa (raw, json)
Hash identifier: Wrrs2izqAZilnzrhf1SYqwCOjsgNAyzt4CeRaVCtsw0=
Subject key identifier: 75:B1:08:24:D2:7D:0D:D8:5B:F3:D0:F1:9A:8A:7F:90:A6:E4:DA:F7
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1BDCB412
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dbEIJNJ9Ddhb89Dxmop_kKbk2vc.roa
Signing time: Mon 04 Jul 2022 10:59:18 +0000
ROA not before: Mon 04 Jul 2022 10:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467448850 (0x1bdcb412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jul 4 10:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75b10824d27d0dd85bf3d0f19a8a7f90a6e4daf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:56:27:82:e9:fe:31:22:5b:95:2a:c1:63:c9:
26:ce:1e:dd:52:9b:e2:bc:b3:9f:93:03:ee:6d:43:
7f:46:d2:a7:bd:1b:47:8d:63:2c:43:9c:87:7d:99:
f3:77:a2:6e:31:bc:9b:de:b1:84:01:4f:64:df:23:
42:0e:b3:fb:91:63:85:2b:32:0b:23:ec:44:19:24:
5b:d3:cb:b7:fc:c3:67:f8:24:6d:a7:de:7b:85:f1:
17:43:75:55:be:e4:69:fc:80:45:13:50:6d:17:68:
b8:14:e9:c5:80:73:59:7d:72:bf:b9:6b:f4:c4:60:
59:1e:d4:12:dc:36:2d:1f:8e:0f:f7:3a:2e:30:63:
ce:af:8c:8f:65:9f:4c:a0:bb:ec:17:5d:bb:32:7c:
dc:01:7c:b3:33:25:db:2c:1e:b7:3d:46:0f:65:c8:
60:c1:24:ab:b7:b2:71:ef:95:c2:cc:87:ef:73:cf:
0d:2c:91:57:3c:f2:1b:2c:90:c2:94:c5:ed:86:ec:
8f:06:4c:c2:9b:06:8e:59:d1:27:58:59:08:3b:53:
af:0f:57:ce:d1:9c:03:47:d1:75:1d:b9:3d:0b:d2:
f2:ad:57:51:62:63:80:3c:39:f4:61:2a:e4:0e:de:
93:c1:f5:1d:dc:17:cd:5d:61:84:7d:c1:ca:5c:9a:
0f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B1:08:24:D2:7D:0D:D8:5B:F3:D0:F1:9A:8A:7F:90:A6:E4:DA:F7
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dbEIJNJ9Ddhb89Dxmop_kKbk2vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.226.0/23
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
12:12:c6:f0:0e:af:b7:79:42:94:c5:b1:50:16:3f:9a:85:c9:
7b:ec:8b:e3:d1:0f:d8:19:34:2d:97:d9:0f:94:0d:8b:ce:bc:
0c:ea:c3:03:ab:74:77:77:d6:fd:cd:02:f8:f9:fb:f9:a2:a5:
2f:78:5a:28:db:a4:22:21:90:fc:98:11:d8:d1:c2:a0:a6:30:
36:90:cb:fc:a9:32:31:17:ac:d6:e3:28:81:cb:07:d8:37:f5:
66:d2:f8:1b:6a:81:ff:50:cf:44:37:f9:24:4f:92:09:96:e5:
21:69:34:61:7c:cb:76:f3:fe:6c:e7:3d:b6:4e:c6:7d:46:df:
bb:ee:a2:9a:dc:1b:d8:e6:c6:15:de:ac:bb:df:25:4c:a0:3c:
2f:a6:d4:55:62:f8:ab:dd:d5:65:e2:23:f6:c6:f2:04:69:4c:
fb:3e:ea:07:ea:1a:12:23:10:df:68:39:b7:c2:25:37:bd:e2:
0d:7c:4c:8e:f4:58:f9:5f:7d:9a:1e:20:a7:d4:d7:86:fa:c8:
f6:15:19:0d:84:53:1d:bf:7f:50:76:56:bd:fa:f7:be:c6:09:
00:e0:d0:34:ce:bd:f7:bd:08:db:f6:c4:2f:d1:31:92:dd:f9:
0f:a3:32:6a:a6:4a:6b:bd:a7:a6:ac:89:e8:c2:89:4d:42:c8:
28:b2:fd:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org