Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/DGAadWgu6WXgO2bJoDo9sGJDExM.roa
File: DGAadWgu6WXgO2bJoDo9sGJDExM.roa (raw, json)
Hash identifier: 7Mp7/sc9bhklNGPucRmbBKWevQq/VE16WBosANOEm5w=
Subject key identifier: 0C:60:1A:75:68:2E:E9:65:E0:3B:66:C9:A0:3A:3D:B0:62:43:13:13
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0BDE16F5
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/DGAadWgu6WXgO2bJoDo9sGJDExM.roa
Signing time: Fri 11 Feb 2022 15:04:10 +0000
ROA not before: Fri 11 Feb 2022 15:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
86.106.97.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
93.113.202.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
188.215.95.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199104245 (0xbde16f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Feb 11 15:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c601a75682ee965e03b66c9a03a3db062431313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b1:7d:20:2d:0d:13:76:64:8a:e9:29:7c:44:
f4:af:29:24:1c:5d:aa:c1:e8:90:8a:ad:29:af:50:
00:61:24:14:ca:a5:96:3e:2d:f2:3c:4a:dc:b9:17:
c0:f9:61:e7:e7:2e:7a:27:c0:ce:df:9a:5f:67:5f:
7a:b7:61:47:ca:23:fc:47:88:0d:c6:c8:e7:e8:b1:
33:65:70:b3:30:74:97:c9:0b:a8:47:3f:81:fb:aa:
f1:3e:e2:44:09:bb:12:49:3e:4f:3e:4c:9a:64:4b:
4a:16:a5:6e:3f:36:2d:ad:dd:9e:a7:e1:ee:59:b5:
84:fd:5d:ea:10:93:a3:dc:bd:bd:db:28:74:5c:ac:
cd:7c:5a:a0:55:11:e2:a6:94:c1:66:a9:8d:c0:ed:
29:56:04:c5:be:84:8b:f1:8a:f4:f8:b5:30:bd:95:
ac:fd:ae:67:9f:e3:bf:1f:e0:4c:77:cf:de:3f:6d:
09:f1:19:2d:4a:67:26:23:ac:5f:0b:34:99:d6:42:
e7:56:f7:80:0f:db:7a:94:bf:f3:f8:13:b4:18:22:
4c:9b:e3:3e:c5:6e:70:aa:b6:dc:13:5d:a3:e6:ac:
da:ca:46:a2:7c:ad:05:c4:86:18:8f:5c:85:59:85:
bf:fd:38:2f:9d:d4:e9:f0:b1:77:ff:7a:1f:84:d0:
9e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:60:1A:75:68:2E:E9:65:E0:3B:66:C9:A0:3A:3D:B0:62:43:13:13
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/DGAadWgu6WXgO2bJoDo9sGJDExM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.97.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/22
89.43.46.0/24
89.44.209.0/24
93.113.158.0/24
93.113.202.0/23
93.114.55.0/24
93.114.99.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.215.95.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
8e:60:bd:35:4a:e1:1a:54:97:46:ca:3f:cb:90:d0:4c:8a:8a:
41:41:e1:2d:a5:91:96:44:68:b8:95:eb:df:ac:69:5b:6c:ed:
fb:78:9e:c9:5e:13:11:24:01:8f:b5:59:30:75:8b:7a:03:48:
9a:c5:00:67:45:37:d9:bd:ea:61:a3:5b:4c:d5:5a:7c:f3:b6:
62:53:9c:3e:99:bb:1a:b2:c9:48:33:88:cd:5c:90:01:2b:6d:
75:88:0e:05:ff:ab:15:f9:ef:e2:26:26:ef:b1:e9:c3:1c:fb:
f8:4b:05:e3:86:7a:0f:da:64:52:66:08:48:fb:2f:27:ef:26:
35:a2:b1:9c:2b:5b:19:98:bb:69:eb:f4:c6:8a:28:d4:09:35:
85:ad:07:6e:f3:c6:ee:9e:fb:f0:13:ee:20:d5:ec:c2:eb:da:
b5:c5:9d:21:52:03:be:73:c8:79:27:48:6f:92:48:85:d9:71:
c4:10:6f:a4:45:b6:5e:ee:13:f0:48:ad:9d:fc:48:20:01:28:
f6:1e:5e:1c:b9:85:12:30:a6:5b:5a:d8:0d:51:74:1c:a4:29:
eb:54:53:07:d2:dc:ec:13:f3:0d:47:b2:38:2e:c0:bd:6b:b4:
c5:8f:4b:b2:9c:db:6b:eb:21:09:e2:ab:a0:71:c2:10:c7:10:
95:7f:d9:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org