Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/_PoLrmJOtjxh7FVH24yFYXwTKPA.roa
File: _PoLrmJOtjxh7FVH24yFYXwTKPA.roa (raw, json)
Hash identifier: 9ty0z6hGo3rP3cohqNT3jpPFD8bMo5DYLMNzgxTc8wo=
Subject key identifier: FC:FA:0B:AE:62:4E:B6:3C:61:EC:55:47:DB:8C:85:61:7C:13:28:F0
Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Certificate serial: F4BF2A
Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/_PoLrmJOtjxh7FVH24yFYXwTKPA.roa
Signing time: Fri 11 Mar 2022 09:46:02 +0000
ROA not before: Fri 11 Mar 2022 09:46:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206618
IP address blocks: 194.114.80.0/23 maxlen: 23
194.114.85.0/24 maxlen: 24
193.23.96.0/24 maxlen: 24
194.114.96.0/24 maxlen: 24
194.114.96.0/23 maxlen: 23
194.114.96.0/22 maxlen: 22
194.114.94.0/23 maxlen: 23
194.114.98.0/23 maxlen: 23
194.114.97.0/24 maxlen: 24
194.114.100.0/22 maxlen: 22
194.114.104.0/21 maxlen: 21
194.114.104.0/24 maxlen: 24
143.163.67.0/24 maxlen: 24
194.114.112.0/22 maxlen: 22
143.163.66.0/24 maxlen: 24
143.163.66.0/23 maxlen: 23
194.114.116.0/22 maxlen: 22
194.114.125.0/24 maxlen: 24
194.114.126.0/24 maxlen: 24
194.114.32.0/23 maxlen: 23
194.114.40.0/23 maxlen: 23
143.163.1.0/24 maxlen: 24
194.114.44.0/22 maxlen: 22
194.114.48.0/21 maxlen: 21
143.163.12.0/22 maxlen: 22
194.114.56.0/22 maxlen: 22
143.163.16.0/23 maxlen: 23
194.114.61.0/24 maxlen: 24
194.114.64.0/23 maxlen: 23
194.114.62.0/23 maxlen: 23
194.114.62.0/24 maxlen: 24
194.114.63.0/24 maxlen: 24
194.114.66.0/23 maxlen: 23
194.114.70.0/23 maxlen: 23
194.114.74.0/24 maxlen: 24
194.114.78.0/23 maxlen: 23
194.114.77.0/24 maxlen: 24
2a01:4dc0::/42 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16039722 (0xf4bf2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Validity
Not Before: Mar 11 09:46:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcfa0bae624eb63c61ec5547db8c85617c1328f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3d:15:d5:1f:2c:df:be:55:f6:1f:38:5c:5b:
2a:76:94:49:03:2b:bf:f4:3e:c5:32:ff:01:5a:6b:
74:f6:99:c7:23:25:80:df:a4:f2:7a:df:3f:3c:cf:
ab:b5:5d:fa:2d:45:d6:6a:99:ab:c8:9e:c2:f3:9a:
94:ef:71:db:10:c8:74:f3:49:d4:3e:2f:e0:5b:e7:
20:4f:89:ca:14:21:25:91:57:90:7b:92:76:59:0d:
64:4b:2e:dd:11:57:5f:b7:b0:d0:ec:9c:d2:ce:98:
7d:1f:ed:e1:4f:9a:45:0c:d4:b8:0d:d1:f0:d5:9c:
a1:79:c3:91:e1:1a:39:ae:60:39:81:cc:cc:03:e1:
36:61:fa:52:eb:49:c1:4d:59:18:56:19:56:54:6b:
69:df:72:5a:66:d0:f2:12:62:03:59:59:d2:f5:f7:
0f:3e:ab:31:27:01:d7:23:2d:77:19:75:38:47:06:
b3:2e:78:3f:ff:be:97:f4:30:02:fb:a2:dd:45:61:
38:96:d0:a7:e7:d6:23:35:13:26:30:e9:57:4b:3c:
74:cf:0f:90:50:58:6d:03:10:6f:85:c0:99:a7:70:
e3:d4:8b:bf:79:11:2a:dd:54:3d:1e:a0:fc:9c:a8:
a6:08:40:b8:21:74:8d:16:1c:bd:46:2b:4d:fe:fa:
f6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:FA:0B:AE:62:4E:B6:3C:61:EC:55:47:DB:8C:85:61:7C:13:28:F0
X509v3 Authority Key Identifier:
keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/_PoLrmJOtjxh7FVH24yFYXwTKPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.163.1.0/24
143.163.12.0-143.163.17.255
143.163.66.0/23
193.23.96.0/24
194.114.32.0/23
194.114.40.0/23
194.114.44.0-194.114.59.255
194.114.61.0-194.114.67.255
194.114.70.0/23
194.114.74.0/24
194.114.77.0-194.114.81.255
194.114.85.0/24
194.114.94.0-194.114.119.255
194.114.125.0-194.114.126.255
IPv6:
2a01:4dc0::/42
Signature Algorithm: sha256WithRSAEncryption
68:71:b6:27:39:6b:06:ea:16:57:07:89:3b:89:a4:2d:b3:01:
f7:fa:2a:72:fe:e9:1e:34:66:46:4b:2e:44:49:56:37:66:54:
f0:13:67:61:49:4e:a0:20:e8:1e:c1:a3:d1:c4:3d:f1:35:6c:
03:d1:0b:17:cf:82:52:28:74:0f:08:4a:d8:06:a6:1e:80:7f:
ac:25:a4:c6:6b:ba:d7:04:60:06:1d:2c:05:78:79:06:6e:19:
45:db:7b:52:3f:1a:46:79:61:75:98:e0:0e:31:5e:e2:7b:a8:
30:6d:c6:a7:dc:98:bc:cc:c3:15:56:81:d9:44:66:51:2d:0f:
ec:06:e9:68:bc:b4:cd:95:4f:df:16:70:47:a5:03:d4:6c:34:
06:2f:ae:d8:25:c7:95:09:72:8b:c9:f6:eb:16:2d:73:be:1b:
8b:f0:16:f6:fd:fe:83:dc:e0:4f:34:4f:17:27:ab:6b:ee:4f:
2b:dd:2c:36:9c:83:f6:e9:33:bb:7d:dd:b4:fc:66:c5:4e:ec:
4f:72:42:12:30:9f:72:67:fc:e0:6c:04:1e:31:26:2a:10:1f:
ed:28:07:cf:25:02:8b:43:e2:7a:02:3a:a1:32:70:b6:49:66:
4e:40:90:91:b5:61:f7:a5:88:75:86:84:3e:cb:3d:3a:19:43:
86:e3:84:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:57 2024 by rpki-client on console-fra.rpki-client.org