Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/fXzjRuzENkMhdXGrKLj4W_IvRFQ.roa
File: fXzjRuzENkMhdXGrKLj4W_IvRFQ.roa (raw, json)
Hash identifier: 7agqgpJS8vd18vJjADDNM05JhlRBU92TjJr7+Es2i6I=
Subject key identifier: 7D:7C:E3:46:EC:C4:36:43:21:75:71:AB:28:B8:F8:5B:F2:2F:44:54
Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Certificate serial: 01F1FBD1
Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/fXzjRuzENkMhdXGrKLj4W_IvRFQ.roa
Signing time: Fri 01 Jul 2022 06:19:56 +0000
ROA not before: Fri 01 Jul 2022 06:19:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206618
IP address blocks: 194.114.80.0/23 maxlen: 23
194.114.85.0/24 maxlen: 24
193.23.96.0/24 maxlen: 24
194.114.96.0/24 maxlen: 24
194.114.96.0/23 maxlen: 23
194.114.96.0/22 maxlen: 22
194.114.94.0/23 maxlen: 23
194.114.98.0/23 maxlen: 23
194.114.97.0/24 maxlen: 24
194.114.100.0/22 maxlen: 22
194.114.104.0/21 maxlen: 21
194.114.104.0/24 maxlen: 24
143.163.67.0/24 maxlen: 24
194.114.112.0/22 maxlen: 22
143.163.66.0/24 maxlen: 24
143.163.66.0/23 maxlen: 23
194.114.116.0/22 maxlen: 22
194.114.125.0/24 maxlen: 24
194.114.126.0/24 maxlen: 24
194.114.32.0/23 maxlen: 23
194.114.40.0/23 maxlen: 23
143.163.1.0/24 maxlen: 24
194.114.44.0/22 maxlen: 22
194.114.48.0/21 maxlen: 21
143.163.8.0/24 maxlen: 28
143.163.12.0/22 maxlen: 22
194.114.56.0/22 maxlen: 22
143.163.16.0/23 maxlen: 23
194.114.61.0/24 maxlen: 24
194.114.64.0/23 maxlen: 23
143.163.22.0/24 maxlen: 28
194.114.62.0/23 maxlen: 23
194.114.62.0/24 maxlen: 24
143.163.21.0/24 maxlen: 28
194.114.63.0/24 maxlen: 24
194.114.66.0/23 maxlen: 23
194.114.70.0/23 maxlen: 23
194.114.74.0/24 maxlen: 24
194.114.78.0/23 maxlen: 23
194.114.77.0/24 maxlen: 24
2a01:4dc0::/42 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32635857 (0x1f1fbd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Validity
Not Before: Jul 1 06:19:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d7ce346ecc43643217571ab28b8f85bf22f4454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ed:39:34:55:c2:51:2d:4d:cd:23:30:9f:f7:
46:22:2e:45:4b:a0:e3:42:cf:2d:a7:32:a7:33:c3:
06:d5:46:83:76:56:97:57:d3:22:33:37:3e:70:66:
ab:60:53:21:ac:ee:60:41:54:b9:52:d0:c6:a6:ef:
ae:50:b1:4c:70:00:10:ea:fd:ba:89:e6:97:6b:07:
dd:83:10:ed:f9:35:69:b0:72:2d:10:56:f5:b5:d1:
06:bb:45:8b:dd:a8:33:ad:f2:f3:c4:5e:5c:08:8a:
76:75:4c:f3:0e:7d:53:40:9a:30:8e:c5:41:a6:10:
0c:da:b2:2b:e4:70:54:5e:a2:27:16:b2:1b:36:63:
7f:71:e2:5b:33:e5:4f:bb:65:49:8c:4a:e4:ec:d0:
c7:4d:c6:bf:af:bb:ed:29:4e:18:95:da:a7:28:d0:
39:a0:ad:fa:58:44:07:6b:e9:10:23:23:3e:c5:b5:
44:05:ad:7d:50:9b:d5:75:25:b2:d0:f8:36:c7:26:
bf:4e:4a:5d:fe:f3:7a:87:7c:52:b3:30:fe:7a:17:
9c:5f:ed:5f:81:82:6a:6d:ee:e4:31:31:e6:f8:97:
a4:e4:7c:0d:bc:8c:c8:5c:d4:b5:34:43:a4:be:08:
46:ad:c4:89:52:43:85:e1:d1:33:ed:fc:b6:84:ab:
01:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7C:E3:46:EC:C4:36:43:21:75:71:AB:28:B8:F8:5B:F2:2F:44:54
X509v3 Authority Key Identifier:
keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/fXzjRuzENkMhdXGrKLj4W_IvRFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.163.1.0/24
143.163.8.0/24
143.163.12.0-143.163.17.255
143.163.21.0-143.163.22.255
143.163.66.0/23
193.23.96.0/24
194.114.32.0/23
194.114.40.0/23
194.114.44.0-194.114.59.255
194.114.61.0-194.114.67.255
194.114.70.0/23
194.114.74.0/24
194.114.77.0-194.114.81.255
194.114.85.0/24
194.114.94.0-194.114.119.255
194.114.125.0-194.114.126.255
IPv6:
2a01:4dc0::/42
Signature Algorithm: sha256WithRSAEncryption
6d:0a:d7:f0:27:02:83:ba:df:55:04:33:7e:ce:a7:d3:9f:2c:
e5:b6:60:88:09:d2:e5:62:a1:99:b4:4f:f9:af:67:6a:4b:2d:
de:c9:50:3a:8c:6d:60:b8:78:83:f5:03:0e:f0:67:64:a0:e7:
9d:8e:09:03:6f:0f:ae:44:eb:51:8b:2a:7a:4c:3d:d9:ea:45:
24:40:92:54:c0:2c:17:2f:13:a7:9c:e9:38:8e:ac:f6:54:df:
7b:61:9e:34:a9:04:77:cf:40:05:3e:cb:c7:2d:ba:dd:a9:30:
ba:5a:e5:68:5f:24:f7:ca:23:87:ac:e6:f3:c3:8d:26:f7:04:
08:7d:31:c7:08:c4:fc:4e:16:1d:d9:4d:e6:2a:c0:b5:c2:d2:
24:0f:3e:79:28:fa:c5:29:91:5f:a4:9f:0f:90:d3:22:ff:ef:
76:fe:46:49:b7:5c:26:53:c6:9e:f8:53:6f:91:95:8f:cb:e4:
b1:0e:72:5d:7b:16:11:57:0d:30:87:af:1a:81:aa:ec:0b:4f:
38:89:e2:22:c1:6f:09:a7:cc:c7:06:58:d2:38:08:78:c4:b6:
22:02:e4:85:6f:58:5a:44:d3:3b:3d:f7:a1:d6:09:5e:67:5a:
0f:73:6c:ab:70:e7:b2:22:90:e4:8c:61:e4:3f:47:02:5c:19:
b9:40:a8:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:30 2023 by rpki-client on console-fra.rpki-client.org