Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ozFH3aIzsv7LfJ4vqcKHS7vcKGk.roa
File: ozFH3aIzsv7LfJ4vqcKHS7vcKGk.roa (raw, json)
Hash identifier: fiMN1udOujwrFg5jk5Yys8nZo8xL0wRd82k7MPZt2cM=
Subject key identifier: A3:31:47:DD:A2:33:B2:FE:CB:7C:9E:2F:A9:C2:87:4B:BB:DC:28:69
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0185649803CA680897E0F8EBDFE615522C82
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ozFH3aIzsv7LfJ4vqcKHS7vcKGk.roa
Signing time: Fri 30 Dec 2022 19:52:42 +0000
ROA not before: Fri 30 Dec 2022 19:52:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 81.181.68.0/23 maxlen: 24
194.102.36.0/22 maxlen: 24
81.181.72.0/23 maxlen: 24
217.156.16.0/23 maxlen: 24
80.97.40.0/21 maxlen: 24
81.181.104.0/21 maxlen: 24
85.122.120.0/22 maxlen: 22
85.122.124.0/22 maxlen: 24
217.156.48.0/22 maxlen: 24
81.181.14.0/23 maxlen: 24
81.181.26.0/23 maxlen: 24
194.102.148.0/23 maxlen: 24
194.102.160.0/23 maxlen: 24
85.121.48.0/21 maxlen: 24
194.102.174.0/23 maxlen: 24
194.102.180.0/22 maxlen: 24
85.120.224.0/21 maxlen: 24
80.97.96.0/23 maxlen: 24
217.156.94.0/23 maxlen: 24
80.96.54.0/23 maxlen: 24
80.96.102.0/23 maxlen: 24
85.121.168.0/22 maxlen: 24
194.102.224.0/22 maxlen: 24
80.96.44.0/23 maxlen: 24
81.180.98.0/23 maxlen: 24
85.121.232.0/21 maxlen: 24
194.105.12.0/22 maxlen: 24
194.153.230.0/23 maxlen: 24
81.180.228.0/23 maxlen: 24
194.153.244.0/23 maxlen: 24
85.120.84.0/23 maxlen: 24
81.180.254.0/23 maxlen: 24
81.180.174.0/23 maxlen: 24
85.121.208.0/21 maxlen: 24
80.96.156.0/22 maxlen: 24
194.153.225.0/24 maxlen: 24
193.226.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:64:98:03:ca:68:08:97:e0:f8:eb:df:e6:15:52:2c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Dec 30 19:52:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a33147dda233b2fecb7c9e2fa9c2874bbbdc2869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:00:f9:54:c0:c6:3c:00:b3:11:ae:6b:20:12:
ce:70:56:23:3c:62:1d:88:1c:13:15:56:39:16:82:
82:ed:9e:8d:10:7c:46:83:c2:5d:3f:8c:ae:1e:81:
d0:40:1d:e5:de:ed:5a:dc:83:a9:10:9f:03:55:ff:
f5:c1:61:29:b9:e2:db:74:36:f6:17:38:79:7d:9c:
03:3f:93:b1:ce:5c:3a:24:e8:4d:e4:cf:44:80:18:
f6:a2:7f:6f:b3:2b:30:42:54:b5:7a:04:ac:94:e7:
01:47:4a:34:13:9d:75:30:30:af:01:58:7c:c4:1a:
36:1d:0f:17:27:30:fc:94:0d:ba:5e:1e:69:07:50:
8e:86:35:41:91:2b:1a:29:24:1e:63:c8:c3:9d:6e:
e5:74:f2:8f:ea:7d:5f:ec:14:f0:4a:4f:ca:bf:32:
99:ab:92:0a:a0:63:3e:a5:aa:41:16:57:b1:4c:2b:
67:66:5c:65:7f:d8:b8:a3:1c:c4:37:70:73:90:4c:
07:24:68:17:97:f2:ef:3e:f4:8c:86:b2:7a:41:94:
4a:cb:a3:5b:de:9f:83:79:c7:53:7f:26:2f:c4:21:
cd:11:40:3b:31:42:71:6d:76:65:20:fb:29:0a:b0:
de:9f:7a:26:bc:1e:7a:50:f6:98:75:f1:b9:eb:bc:
50:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:31:47:DD:A2:33:B2:FE:CB:7C:9E:2F:A9:C2:87:4B:BB:DC:28:69
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ozFH3aIzsv7LfJ4vqcKHS7vcKGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.44.0/23
80.96.54.0/23
80.96.102.0/23
80.96.156.0/22
80.97.40.0/21
80.97.96.0/23
81.180.98.0/23
81.180.174.0/23
81.180.228.0/23
81.180.254.0/23
81.181.14.0/23
81.181.26.0/23
81.181.68.0/23
81.181.72.0/23
81.181.104.0/21
85.120.84.0/23
85.120.224.0/21
85.121.48.0/21
85.121.168.0/22
85.121.208.0/21
85.121.232.0/21
85.122.120.0/21
193.226.76.0/22
194.102.36.0/22
194.102.148.0/23
194.102.160.0/23
194.102.174.0/23
194.102.180.0/22
194.102.224.0/22
194.105.12.0/22
194.153.225.0/24
194.153.230.0/23
194.153.244.0/23
217.156.16.0/23
217.156.48.0/22
217.156.94.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:72:f8:63:dd:95:53:fa:ff:a5:e6:06:a5:65:fd:a0:2a:49:
0a:28:08:65:89:f5:f6:74:7a:97:4f:53:4d:1f:1c:43:be:43:
73:9c:3e:ac:bf:0c:8b:be:64:dd:7a:aa:44:55:7f:ec:5f:2e:
18:51:a1:92:92:d2:a6:88:92:3c:80:c7:b9:80:f7:08:e2:97:
4d:52:85:a7:ab:60:98:3f:ff:be:0e:f8:16:e1:1b:1d:36:62:
c3:8f:d2:96:7f:81:74:bd:ed:e5:00:95:6c:dc:21:32:98:e5:
5e:4a:e0:d4:61:54:0b:80:80:83:8a:54:f7:bc:5a:44:aa:5d:
4d:6a:b7:86:87:bb:6d:c2:a5:0e:7b:0b:18:2c:97:60:80:1d:
d1:d3:d4:d4:03:7d:b8:cc:c1:1c:06:43:40:8e:e1:34:dd:5a:
e2:51:3a:e9:10:b9:cd:36:0b:23:28:98:c1:c9:ca:76:b7:34:
81:6e:08:b6:2b:83:02:eb:e0:29:4d:fe:cb:c0:c3:89:b6:f4:
38:5c:26:07:f7:eb:72:f8:74:2b:15:78:84:33:41:69:6f:53:
b1:d0:8d:86:cb:61:fe:26:44:e6:c6:3d:4d:53:89:08:7e:16:
b6:9c:e1:e8:fa:a7:20:b1:ce:5b:93:81:d8:e3:5b:d2:d5:9f:
d7:c9:d8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org