Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/oR5Ks2pakGbcFhsWt78xhhJmQaw.roa
File: oR5Ks2pakGbcFhsWt78xhhJmQaw.roa (raw, json)
Hash identifier: 6uz5IhISrwq8K/ZP5jZU2xRi1SvI4yeHawrg/C3wAlc=
Subject key identifier: A1:1E:4A:B3:6A:5A:90:66:DC:16:1B:16:B7:BF:31:86:12:66:41:AC
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1AEACC78
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/oR5Ks2pakGbcFhsWt78xhhJmQaw.roa
Signing time: Mon 02 May 2022 17:00:45 +0000
ROA not before: Mon 02 May 2022 17:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451595384 (0x1aeacc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 2 17:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a11e4ab36a5a9066dc161b16b7bf3186126641ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4b:e4:ff:7c:7e:af:eb:62:12:ad:4e:6a:fe:
be:bf:a3:03:b2:fe:f2:96:07:06:22:67:5e:77:03:
b1:95:55:e3:2f:2e:2b:d2:c2:c8:9b:d4:43:4d:77:
49:ca:3b:23:92:1b:b4:4c:10:86:8f:59:98:89:78:
94:56:5f:c6:74:98:a3:b7:1c:f7:03:26:bf:2e:92:
3c:16:c6:48:f5:bc:54:f6:ec:e2:23:08:c0:a7:ac:
79:14:94:f3:75:4d:48:58:f4:e8:29:f3:3a:1e:1f:
46:c3:10:9b:f3:89:5f:80:f3:04:1d:7b:41:f6:28:
31:24:8c:46:0e:97:3d:93:a4:2b:be:82:22:a9:d4:
b0:57:55:e2:3b:fa:dd:a6:b0:f2:9b:50:ba:10:60:
ce:a9:ac:3f:cd:d6:fd:cd:4e:9a:e0:6c:d2:c5:c1:
28:ae:5f:54:18:57:6b:6d:78:eb:6a:59:ae:46:a7:
c0:96:bb:b5:88:b8:2c:c6:e6:ab:d6:cd:52:ea:4d:
42:85:7c:3c:dd:ed:f4:ec:31:f2:73:88:e5:46:75:
ff:03:08:5d:fa:54:ca:d5:8b:85:f7:c8:ab:8e:89:
46:9a:55:77:e9:0f:fa:a7:1b:c5:8d:0a:e5:88:ac:
b8:d3:28:ee:16:f3:1f:40:d6:02:b2:ac:e1:d0:1d:
bc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1E:4A:B3:6A:5A:90:66:DC:16:1B:16:B7:BF:31:86:12:66:41:AC
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/oR5Ks2pakGbcFhsWt78xhhJmQaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.47.0/24
80.96.67.0/24
80.96.79.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
194.102.229.0/24
217.156.14.0/24
Signature Algorithm: sha256WithRSAEncryption
85:a6:c7:e2:92:b6:bd:92:ac:36:e2:0e:57:00:a8:f2:0a:1f:
59:10:05:26:4a:c8:8d:75:ad:be:5c:0c:4c:42:64:1c:33:ed:
1a:b9:18:cc:8f:db:67:a2:5c:2a:d2:3b:c1:ea:f2:6f:fc:95:
8e:d7:9b:6d:ef:f0:17:8a:87:c8:e0:41:5e:1b:3e:9c:8d:bc:
fe:db:d8:9b:5d:d4:90:d6:d4:05:94:a0:55:61:1f:e9:0e:17:
de:26:6f:bd:f9:f7:71:41:8c:ce:11:07:e5:94:9d:c9:3f:c4:
53:ea:f5:bd:4e:a7:21:1d:54:06:2d:f4:dc:cf:06:b8:90:94:
28:ef:b6:8b:f7:81:06:e3:70:10:81:10:f2:f4:1f:55:74:ab:
58:f6:16:8b:71:63:0f:a6:87:e4:88:91:ce:f3:3a:66:12:bf:
0c:64:bc:89:c7:9a:f2:c7:a1:4e:0d:67:87:f9:62:fd:07:d8:
36:14:82:e7:70:0e:7a:d1:6d:7a:03:dc:12:03:55:7a:65:9b:
e9:6f:2b:6c:e2:c7:a4:b4:65:3c:98:d9:cb:eb:81:10:ef:42:
f4:51:20:91:81:e5:c0:40:62:b9:df:68:21:16:f8:12:5f:2f:
52:b9:bb:5b:a4:a1:b1:75:d1:d8:5c:de:29:9a:cc:8d:b0:41:
57:40:31:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org