Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/ADRJS0r1oyIL9t1dbCwCZc3k5GY.roa
File: ADRJS0r1oyIL9t1dbCwCZc3k5GY.roa (raw, json)
Hash identifier: aRRR6pzPf44FX5JTdff3vIVPelkOIckKNGlXcA/ZLpY=
Subject key identifier: 00:34:49:4B:4A:F5:A3:22:0B:F6:DD:5D:6C:2C:02:65:CD:E4:E4:66
Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Certificate serial: 52A5BA
Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/ADRJS0r1oyIL9t1dbCwCZc3k5GY.roa
Signing time: Sat 01 Jan 2022 01:55:45 +0000
ROA not before: Sat 01 Jan 2022 01:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206618
IP address blocks: 194.114.80.0/23 maxlen: 23
194.114.85.0/24 maxlen: 24
193.23.96.0/24 maxlen: 24
194.114.96.0/24 maxlen: 24
194.114.96.0/23 maxlen: 23
194.114.96.0/22 maxlen: 22
194.114.94.0/23 maxlen: 23
194.114.98.0/23 maxlen: 23
194.114.97.0/24 maxlen: 24
194.114.100.0/22 maxlen: 22
194.114.104.0/21 maxlen: 21
194.114.104.0/24 maxlen: 24
194.114.125.0/24 maxlen: 24
194.114.126.0/24 maxlen: 24
194.114.32.0/23 maxlen: 23
194.114.40.0/23 maxlen: 23
143.163.1.0/24 maxlen: 24
194.114.44.0/22 maxlen: 22
194.114.48.0/21 maxlen: 21
143.163.12.0/22 maxlen: 22
194.114.56.0/22 maxlen: 22
143.163.16.0/23 maxlen: 23
194.114.61.0/24 maxlen: 24
194.114.64.0/23 maxlen: 23
194.114.62.0/23 maxlen: 23
194.114.62.0/24 maxlen: 24
194.114.63.0/24 maxlen: 24
194.114.66.0/23 maxlen: 23
194.114.70.0/23 maxlen: 23
194.114.78.0/23 maxlen: 23
194.114.77.0/24 maxlen: 24
2a01:4dc0::/42 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5416378 (0x52a5ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Validity
Not Before: Jan 1 01:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0034494b4af5a3220bf6dd5d6c2c0265cde4e466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c8:bf:ca:c0:60:1f:7a:bf:ba:53:1d:69:1f:
1a:b4:60:ca:b7:9c:29:3a:f8:03:a6:7d:5f:3b:e2:
81:c6:8e:0c:b6:61:bd:13:0b:be:56:a3:cb:78:0d:
3b:18:2a:1c:28:21:13:48:18:0e:a8:f1:e2:99:ef:
0d:7a:0f:65:1d:37:5d:b1:0a:52:4d:cb:9e:76:1d:
c5:13:2b:96:45:ba:b3:00:21:e0:d1:5a:f8:29:25:
3a:bf:88:93:ea:24:bc:0d:87:cd:c2:aa:8c:dc:20:
3a:32:01:22:02:27:1e:ce:ae:21:06:49:13:67:5d:
1c:da:50:b8:4c:eb:b4:64:61:e7:76:ac:4b:54:e3:
52:3a:0e:30:b1:56:de:e8:d1:d8:74:59:18:a0:8f:
2e:e8:66:9e:d0:53:c8:3a:b4:ff:0d:61:df:9d:5e:
6d:00:b9:15:80:c4:c8:44:33:46:4f:46:51:c6:79:
d5:01:ad:3c:c5:40:72:8d:e3:8d:7e:b5:22:99:8e:
0e:0e:66:33:52:23:58:ab:7f:73:24:3d:dd:85:db:
77:bf:3a:2d:93:a7:6f:9c:9c:da:06:ee:ce:39:2f:
75:45:90:c0:5a:d7:8f:19:1b:89:cf:f4:63:26:17:
7d:88:f1:32:1b:c1:4c:c7:78:f7:95:eb:70:7d:a7:
9a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:34:49:4B:4A:F5:A3:22:0B:F6:DD:5D:6C:2C:02:65:CD:E4:E4:66
X509v3 Authority Key Identifier:
keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/ADRJS0r1oyIL9t1dbCwCZc3k5GY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.163.1.0/24
143.163.12.0-143.163.17.255
193.23.96.0/24
194.114.32.0/23
194.114.40.0/23
194.114.44.0-194.114.59.255
194.114.61.0-194.114.67.255
194.114.70.0/23
194.114.77.0-194.114.81.255
194.114.85.0/24
194.114.94.0-194.114.111.255
194.114.125.0-194.114.126.255
IPv6:
2a01:4dc0::/42
Signature Algorithm: sha256WithRSAEncryption
8e:b5:c7:dd:d7:d3:25:7f:8b:d4:0e:7e:c0:5b:96:e2:d5:79:
67:d1:a1:ac:b9:d3:53:32:98:05:59:00:52:5a:d1:fa:d8:59:
e5:65:e3:0b:e4:ae:ba:bd:cd:36:20:c7:f6:94:fa:d1:0b:f2:
b6:93:a3:f4:b9:5d:6e:b4:33:23:a5:33:37:39:a0:03:82:15:
d0:cd:2d:f7:06:01:f0:8d:62:38:c4:7a:d5:dc:05:f4:08:18:
a6:1e:48:84:4c:b9:79:73:34:e9:f8:76:6b:60:27:d8:2c:e4:
54:fd:1a:89:7d:aa:30:2c:9e:84:e4:e4:67:a5:94:35:b2:99:
49:59:0a:76:3f:78:7e:1d:ed:21:f7:6d:f6:c2:c1:d8:33:26:
3e:d6:35:01:3e:0e:2d:aa:4d:11:d6:b6:44:7a:3c:84:e1:1f:
c0:d5:97:48:1b:a6:69:97:65:6a:a4:21:5e:88:26:bc:ae:0e:
e4:45:20:ca:89:b6:67:78:14:1d:b0:dc:c3:00:12:a0:63:5f:
2c:e3:1c:fc:ae:06:aa:8f:1b:19:8f:70:27:e6:46:f2:68:d8:
e2:5e:f8:60:20:f0:e3:c5:62:55:85:37:b3:e1:ce:64:52:fc:
27:29:4e:ee:76:9f:ad:55:b1:d3:8a:38:03:fb:a1:7a:25:41:
83:f1:4d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:57 2024 by rpki-client on console-fra.rpki-client.org