Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/ac0gxWVxIaIwAxZr9T7VAe8cBHM.roa
File: ac0gxWVxIaIwAxZr9T7VAe8cBHM.roa (raw, json)
Hash identifier: CbwvSOFXylZtPp5P97V8KmQ2wfMuM9Gqv4RfT+gYmTM=
Subject key identifier: 69:CD:20:C5:65:71:21:A2:30:03:16:6B:F5:3E:D5:01:EF:1C:04:73
Certificate issuer: /CN=8e36117135f6b86d0a9e1fa67e04baf5bcd86169
Certificate serial: 0183121CD656F53D85EA2824BD6B1B9A6698
Authority key identifier: 8E:36:11:71:35:F6:B8:6D:0A:9E:1F:A6:7E:04:BA:F5:BC:D8:61:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjYRcTX2uG0Knh-mfgS69bzYYWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/ac0gxWVxIaIwAxZr9T7VAe8cBHM.roa
Signing time: Tue 06 Sep 2022 09:23:43 +0000
ROA not before: Tue 06 Sep 2022 09:23:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200064
IP address blocks: 92.118.253.0/24 maxlen: 24
92.118.252.0/22 maxlen: 22
92.118.252.0/24 maxlen: 24
92.118.254.0/24 maxlen: 24
92.118.255.0/24 maxlen: 24
79.98.217.0/24 maxlen: 24
79.98.216.0/24 maxlen: 24
79.98.219.0/24 maxlen: 24
79.98.218.0/24 maxlen: 24
79.98.221.0/24 maxlen: 24
79.98.220.0/24 maxlen: 24
79.98.223.0/24 maxlen: 24
79.98.222.0/24 maxlen: 24
141.105.98.0/24 maxlen: 24
141.105.97.0/24 maxlen: 24
141.105.96.0/24 maxlen: 24
141.105.105.0/24 maxlen: 24
141.105.104.0/24 maxlen: 24
141.105.103.0/24 maxlen: 24
141.105.102.0/24 maxlen: 24
141.105.101.0/24 maxlen: 24
141.105.100.0/24 maxlen: 24
141.105.99.0/24 maxlen: 24
141.105.108.0/24 maxlen: 24
141.105.107.0/24 maxlen: 24
141.105.106.0/24 maxlen: 24
141.105.111.0/24 maxlen: 24
141.105.110.0/24 maxlen: 24
141.105.109.0/24 maxlen: 24
185.28.140.0/22 maxlen: 22
185.28.140.0/24 maxlen: 24
185.28.143.0/24 maxlen: 24
185.28.142.0/24 maxlen: 24
185.28.141.0/24 maxlen: 24
2a02:2f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:1c:d6:56:f5:3d:85:ea:28:24:bd:6b:1b:9a:66:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e36117135f6b86d0a9e1fa67e04baf5bcd86169
Validity
Not Before: Sep 6 09:23:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69cd20c5657121a23003166bf53ed501ef1c0473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fc:7a:8c:70:b1:2e:29:e9:7d:bc:5d:c5:1a:
da:c4:96:70:29:5e:b2:ee:1b:80:c4:70:6b:8f:d8:
9e:02:00:7c:5f:17:9f:31:e5:b3:cb:5d:a1:8f:8a:
70:02:76:79:86:7d:62:2f:35:98:16:d9:1e:90:ee:
e6:3d:33:92:1b:48:07:3f:36:f9:dc:d9:5b:be:a8:
95:42:ed:03:80:99:dc:17:a0:bf:4a:4e:3c:35:82:
a1:6c:84:63:8a:cd:b4:77:cc:7d:07:c4:53:a7:ac:
d6:9c:4f:ca:1b:5d:e8:92:5c:d1:b1:cf:03:5a:33:
7f:1f:9b:88:02:34:c8:16:bb:de:c5:65:ef:05:4c:
dd:9e:f9:b2:d9:a1:82:93:e6:98:22:82:62:7c:40:
6c:14:09:4e:3c:f0:a4:d5:54:cc:ae:33:be:43:8b:
12:e1:82:52:f4:b3:64:03:30:6e:ad:54:d6:e0:1b:
2c:e5:5c:c9:c5:5c:24:62:56:16:76:1a:1b:9a:b6:
eb:d0:82:d5:95:b0:82:51:c2:2a:16:58:57:46:af:
23:82:e8:28:4f:73:17:38:d8:7f:4c:bd:bd:50:2f:
6a:90:77:4c:e9:36:7d:77:80:e6:7c:1c:1e:dd:03:
7a:2c:63:fd:b5:71:fd:71:fc:4e:07:ac:4b:29:92:
c6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CD:20:C5:65:71:21:A2:30:03:16:6B:F5:3E:D5:01:EF:1C:04:73
X509v3 Authority Key Identifier:
keyid:8E:36:11:71:35:F6:B8:6D:0A:9E:1F:A6:7E:04:BA:F5:BC:D8:61:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjYRcTX2uG0Knh-mfgS69bzYYWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/ac0gxWVxIaIwAxZr9T7VAe8cBHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/edb4d3-33c8-45dc-a40e-c85b60fd8c8b/1/jjYRcTX2uG0Knh-mfgS69bzYYWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.216.0/21
92.118.252.0/22
141.105.96.0/20
185.28.140.0/22
IPv6:
2a02:2f80::/29
Signature Algorithm: sha256WithRSAEncryption
1e:ea:dc:90:85:a5:46:15:fa:5b:9f:6b:fe:66:6e:45:a8:72:
8a:08:24:94:ad:f1:8d:58:df:54:3e:fa:51:21:f8:02:90:ca:
5b:bc:85:6e:7f:b7:8f:f8:58:96:d7:f0:43:48:a2:22:45:69:
8b:9e:f3:8c:af:16:a7:ab:d9:77:d5:37:b0:a6:02:1d:fe:14:
88:e5:f5:4e:fb:cf:b9:99:67:e3:43:27:a1:dd:01:da:8b:75:
df:29:f1:24:ca:ea:63:c0:c9:09:3b:03:5c:43:fa:ed:77:9b:
e7:0d:14:3e:03:85:b6:93:26:fd:1f:f3:c7:ec:bf:c7:e9:a1:
4f:c4:94:71:09:a3:d9:42:62:3f:08:70:35:a9:95:7b:bf:0d:
9a:e6:f6:10:d1:b8:d6:3b:a0:08:73:b3:16:22:14:f0:1c:86:
bc:65:60:9b:16:79:40:01:58:f1:1c:2d:61:40:ac:8b:15:22:
a4:29:c2:bb:ab:e4:f1:fc:0b:cf:19:3f:d0:e6:26:83:2b:9b:
38:e4:64:c9:2b:00:2d:9e:cd:b9:1d:20:2e:0f:f5:fd:38:c9:
5e:81:ec:b2:23:4c:35:db:fa:76:9f:c0:07:f8:50:74:8f:a8:
8c:a7:9b:ab:be:4b:e3:06:b6:d1:fb:db:41:3c:94:ad:c4:66:
22:93:35:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:47 2025 by rpki-client