Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/yH2FbclYYaUeZYzO6FnWHirDLnk.roa
File: yH2FbclYYaUeZYzO6FnWHirDLnk.roa (raw, json)
Hash identifier: MtixUfBDUjjk5pKcIL/PhhmknosiaUpO02VUWYv0/2g=
Subject key identifier: C8:7D:85:6D:C9:58:61:A5:1E:65:8C:CE:E8:59:D6:1E:2A:C3:2E:79
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B23FEB1
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/yH2FbclYYaUeZYzO6FnWHirDLnk.roa
Signing time: Wed 18 May 2022 07:09:20 +0000
ROA not before: Wed 18 May 2022 07:09:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.227.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.187.0/24 maxlen: 24
193.231.188.0/24 maxlen: 24
193.231.189.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455343793 (0x1b23feb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 18 07:09:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c87d856dc95861a51e658ccee859d61e2ac32e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3f:da:f1:2a:bd:8c:c4:cc:c4:84:ef:88:37:
4f:c3:19:fe:0d:82:c8:61:89:95:da:b5:24:31:15:
aa:31:56:98:ed:05:91:20:aa:2a:7c:f0:67:6f:cd:
40:3b:dc:9a:fa:f2:f8:dc:e9:a8:e8:89:f1:7f:71:
76:4c:62:7d:f5:20:86:4d:12:e5:aa:02:7d:14:c2:
87:e3:c2:8e:7c:ea:93:a2:42:93:c8:65:f0:b8:50:
bd:22:f1:31:4d:53:ea:00:a2:f7:15:4c:72:44:4b:
54:80:ae:b4:8d:c0:56:e4:74:a6:8f:c0:94:1f:55:
8c:1f:f5:04:f7:cd:1d:87:92:bf:2e:a5:4e:29:51:
23:9d:93:6b:2c:ed:e2:d3:02:cd:b5:e7:22:2d:c1:
c8:45:a7:ee:96:61:6f:c5:11:c8:f0:3f:38:ea:56:
bd:8c:01:68:f9:88:ba:0c:ba:b6:76:c2:2a:73:45:
20:9a:32:10:7e:d6:ea:57:86:9a:6f:fa:f7:7a:cf:
a8:3f:1b:26:9b:7f:59:0b:6f:1c:a9:56:5c:1b:96:
4c:3c:db:09:c3:b3:c4:5b:ea:d2:6b:03:39:86:30:
68:88:fe:cf:29:8e:09:23:fa:27:59:a3:e7:ef:41:
f7:1c:2f:9c:ab:c5:cc:76:a8:03:fc:d7:bc:a7:73:
e2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7D:85:6D:C9:58:61:A5:1E:65:8C:CE:E8:59:D6:1E:2A:C3:2E:79
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/yH2FbclYYaUeZYzO6FnWHirDLnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.79.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.231.108.0/24
193.231.184.0/24
193.231.187.0-193.231.189.255
193.231.227.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.134.0/24
194.102.229.0/24
217.156.14.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:78:15:84:5f:a2:9d:0e:cc:d2:0f:1e:6e:8f:8c:cf:8a:f4:
86:2d:ac:f9:3b:16:b4:32:5b:7d:fd:e5:28:0d:e3:cc:72:2b:
33:cb:3b:87:d1:ca:46:20:96:50:4b:61:66:d3:58:61:2e:87:
b2:9d:8b:6b:39:5f:47:cf:8e:2b:d1:af:68:ef:0c:c4:13:08:
d0:41:ff:db:b0:51:d2:ac:40:3e:4c:1e:bb:c3:73:b5:a3:52:
a9:85:1a:3e:d5:01:52:89:29:9a:42:b9:cd:de:82:8d:d0:36:
7c:8c:2c:89:07:a1:00:75:cb:69:60:5d:17:b8:a8:ba:93:89:
75:5e:00:fe:5c:4d:d6:0c:9a:c7:95:c8:27:e8:d2:cf:49:b2:
50:17:54:30:e0:28:e3:b7:61:fb:5c:8b:54:b2:b1:98:b2:fd:
90:4a:4d:8c:5d:a3:93:73:34:b2:48:52:a2:d7:96:37:36:21:
b5:47:ff:76:fd:94:76:a0:5c:f1:6d:c3:52:e5:09:a8:f7:05:
e6:f1:7d:49:ea:91:75:ea:24:c8:9b:cb:fd:1f:53:3a:37:33:
af:a8:51:33:4a:85:dc:07:41:59:29:2f:65:5c:cc:e7:b8:04:
f5:ed:ec:fe:14:71:d6:54:2f:0c:85:74:ee:d6:ff:b4:4b:eb:
ab:ae:96:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org