Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/tDzRYTz0Uo4GxhlMM0T1VTWznaY.roa
File: tDzRYTz0Uo4GxhlMM0T1VTWznaY.roa (raw, json)
Hash identifier: j6wbwWNarZ2GGHsviGRPeQl1Fjk6XB11jJzg8sluwrs=
Subject key identifier: B4:3C:D1:61:3C:F4:52:8E:06:C6:19:4C:33:44:F5:55:35:B3:9D:A6
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B441512
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/tDzRYTz0Uo4GxhlMM0T1VTWznaY.roa
Signing time: Wed 25 May 2022 18:46:13 +0000
ROA not before: Wed 25 May 2022 18:46:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457446674 (0x1b441512)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 25 18:46:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b43cd1613cf4528e06c6194c3344f55535b39da6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:6c:fc:5b:6f:b5:24:f3:11:60:a9:1c:61:
d3:0d:1f:6d:21:c5:d6:f0:e3:a0:20:78:b2:80:a5:
ac:30:c3:c1:86:f2:7e:f5:31:ea:23:d2:f7:88:a9:
f1:81:c1:b3:50:2c:01:0e:61:99:55:ba:8a:8e:ef:
24:41:ff:6d:ce:0f:44:19:66:04:a3:d6:4f:23:3c:
d7:18:9f:0e:c6:4a:71:3f:d1:9b:3f:89:fb:a4:8b:
31:20:bf:5a:32:e8:a1:ed:cf:9b:4c:01:0f:d0:8e:
4b:42:50:e6:cf:53:9b:ae:64:58:6f:c8:1f:7e:46:
9a:c7:ef:09:b1:3d:5b:88:6f:b7:4a:45:09:26:7d:
d2:6e:63:b9:f2:4f:bc:61:8d:74:47:7c:c3:b0:23:
c3:4a:89:78:6e:03:8a:57:b0:34:ce:f6:22:55:57:
10:79:ff:6e:bf:60:1f:b7:9b:7b:fe:80:42:7f:e4:
3f:5e:a2:56:a2:c6:05:39:4c:89:ab:6f:96:1b:3e:
5f:6a:6d:16:13:63:d2:d5:ce:2b:3b:80:0d:0a:2a:
56:93:a1:3f:52:77:49:f7:2b:8d:17:94:8a:e9:30:
3d:52:07:29:13:a2:19:39:c3:b7:d8:9d:68:47:9a:
2f:65:d5:4b:77:11:17:ab:dd:45:a6:82:12:1f:a4:
83:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3C:D1:61:3C:F4:52:8E:06:C6:19:4C:33:44:F5:55:35:B3:9D:A6
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/tDzRYTz0Uo4GxhlMM0T1VTWznaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.79.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.217.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
Signature Algorithm: sha256WithRSAEncryption
67:1f:53:dd:e5:62:2f:34:7b:03:fd:e8:e0:bb:09:db:fe:f8:
ec:d8:34:ec:aa:44:8d:13:fb:c7:9e:16:aa:e0:a5:3a:73:0c:
fa:76:81:2b:5e:32:b2:e8:5e:9b:17:ab:3a:e3:b4:99:0f:73:
bf:ea:c1:fc:36:72:37:f5:a6:da:e5:fe:ec:d6:64:97:23:9d:
92:74:e5:d5:62:33:76:93:5a:13:85:1f:7d:99:a7:9a:69:99:
36:17:29:f7:56:34:6e:5b:90:ef:51:18:d0:19:37:db:54:0d:
06:38:e9:6b:c8:26:17:80:fb:26:e1:a2:b5:83:eb:4c:5f:68:
0c:4a:35:1d:44:d2:9e:6c:44:db:8c:41:b6:e0:7b:d6:be:9e:
f0:1c:4c:f9:ba:91:06:84:24:97:0e:a4:0f:01:68:30:20:77:
2a:da:4b:bd:13:ae:51:7b:38:dc:d2:1c:22:ac:3d:27:1c:dd:
75:ce:dd:62:80:fd:1c:8b:59:07:d5:5b:62:ec:31:de:10:93:
e8:c6:c2:c5:07:ba:da:39:26:6c:48:99:28:ba:c6:0b:db:e4:
3e:b3:25:a9:7d:59:19:da:30:d1:9b:ef:62:ba:8f:fa:7c:b3:
71:38:34:cd:78:40:dc:00:ad:17:ad:9c:ea:c2:2f:3e:93:dc:
de:ad:4b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org