Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UmLyy6v7ZLakGTRh8xHuTOyo0eY.roa
File: UmLyy6v7ZLakGTRh8xHuTOyo0eY.roa (raw, json)
Hash identifier: a27mv7Rq5SaFTKC4DPr/BX4LLdCrhldm4IOQgdvHg7Q=
Subject key identifier: 52:62:F2:CB:AB:FB:64:B6:A4:19:34:61:F3:11:EE:4C:EC:A8:D1:E6
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C817ED0
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UmLyy6v7ZLakGTRh8xHuTOyo0eY.roa
Signing time: Tue 15 Mar 2022 12:57:10 +0000
ROA not before: Tue 15 Mar 2022 12:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 194.233.144.0/24 maxlen: 24
195.180.136.0/24 maxlen: 24
195.180.138.0/24 maxlen: 24
194.233.147.0/24 maxlen: 24
195.180.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209813200 (0xc817ed0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 15 12:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5262f2cbabfb64b6a4193461f311ee4ceca8d1e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0f:ab:36:42:88:19:2d:db:6e:51:b4:f6:28:
51:6f:8b:fe:90:3a:24:b4:2a:41:e4:8f:7a:26:4f:
96:10:7a:e4:29:c5:a7:02:9a:8e:0b:95:e6:18:14:
be:60:a2:0e:5b:c7:4d:41:94:ff:19:36:a4:07:32:
61:a7:aa:7a:3b:f8:97:87:16:ba:a0:da:da:50:f2:
97:be:56:69:1b:76:3b:2c:1b:4d:ab:5a:cd:6e:3e:
3b:bb:8a:fd:41:18:a6:c3:3b:00:fd:cd:35:ee:28:
bd:f2:24:99:f4:a7:68:25:3b:df:5d:15:39:f8:26:
59:09:cb:f0:d6:6e:40:b3:05:76:75:e5:2e:88:48:
fc:2a:67:74:fe:0a:4d:69:56:20:e4:89:37:e2:f8:
77:e2:98:93:dc:fe:84:25:97:79:38:ee:a8:fe:1e:
28:40:22:26:c5:3f:e1:6d:86:51:2c:d9:f8:64:19:
94:64:28:4e:bc:ed:e7:88:4b:51:79:73:9a:6c:ff:
48:07:30:ca:5b:6a:95:d9:a2:1f:b1:ae:64:7c:7e:
0f:f4:96:5e:a9:d1:96:7f:f5:e5:af:9f:d4:fd:0a:
45:07:ab:96:6a:a8:f9:c8:99:29:bf:1d:fb:9b:07:
9c:c2:74:6a:19:eb:93:5b:b7:0e:b8:9f:d3:fe:bf:
1b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:62:F2:CB:AB:FB:64:B6:A4:19:34:61:F3:11:EE:4C:EC:A8:D1:E6
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/UmLyy6v7ZLakGTRh8xHuTOyo0eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.144.0/24
194.233.147.0/24
195.180.136.0/24
195.180.138.0/24
195.180.156.0/24
Signature Algorithm: sha256WithRSAEncryption
12:6e:1c:2a:92:70:8c:70:d7:d8:56:e0:b5:af:06:d1:f7:46:
7e:f0:1e:52:42:1c:e9:10:08:ff:48:90:bb:86:ed:9d:29:cb:
f7:2d:50:2b:a8:b1:b9:f0:4b:1b:05:22:1d:3d:f1:b7:30:25:
92:4f:1f:97:af:d7:ff:67:22:4a:90:29:f5:83:40:83:65:02:
d5:92:d0:70:38:e9:e3:02:82:96:b4:1c:1b:45:a5:2e:ef:16:
b1:00:99:ee:19:e9:33:49:41:b0:9a:08:31:58:d0:86:52:59:
23:c9:99:cd:0e:a1:c2:37:93:39:15:91:b0:da:a4:03:87:a2:
0c:89:cc:b4:20:81:34:ef:a0:a6:75:e0:e3:5c:2c:36:c5:b3:
bd:dd:20:e0:5d:0a:45:a5:bf:59:42:a7:95:5b:0b:ce:dc:06:
46:59:5f:09:85:1d:54:6e:6e:f0:d4:e7:80:c8:ca:6c:b5:b6:
46:6e:d7:c3:5f:3a:b5:aa:24:b2:22:e8:28:6c:bc:65:d8:ef:
eb:b2:26:5f:b0:bb:40:fa:a3:0d:3c:00:47:b7:cc:c7:47:85:
ec:64:4b:0c:7e:99:73:68:a8:84:59:94:fc:45:ba:e3:8c:d7:
ed:54:97:ce:80:74:b0:a7:ce:c0:93:65:99:d4:75:8b:7c:18:
ee:e1:d9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org