Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/FpPuZFPLVN9GUurdgU2m9wJZ-VY.roa
File: FpPuZFPLVN9GUurdgU2m9wJZ-VY.roa (raw, json)
Hash identifier: zWUIibllu7XEygRDhXV+MdSiWdkKrn2rQObmSNPB4vM=
Subject key identifier: 16:93:EE:64:53:CB:54:DF:46:52:EA:DD:81:4D:A6:F7:02:59:F9:56
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01822501114F13E623D0B0BB87B096325AF0
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/FpPuZFPLVN9GUurdgU2m9wJZ-VY.roa
Signing time: Fri 22 Jul 2022 08:23:23 +0000
ROA not before: Fri 22 Jul 2022 08:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
93.113.202.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.97.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
93.114.171.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
85.204.78.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:01:11:4f:13:e6:23:d0:b0:bb:87:b0:96:32:5a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jul 22 08:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1693ee6453cb54df4652eadd814da6f70259f956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:37:68:db:1e:54:4e:40:f1:07:5d:bd:a2:3e:
6a:c1:c4:a0:92:c8:c2:cf:87:e5:63:52:cc:8a:8b:
f8:d2:57:04:77:bc:9f:82:ea:d6:bd:6d:fa:c2:62:
0a:5e:96:27:15:2c:df:8c:e6:26:6c:74:f1:61:ba:
5a:af:25:2b:a7:70:59:ab:bb:c4:93:08:c1:89:ad:
bd:a6:1b:b9:fc:62:e8:bb:cc:ea:32:3e:3e:b4:7e:
53:54:5b:2f:47:87:8d:b9:ba:a4:cd:c0:11:38:71:
22:13:9d:1e:4b:f0:db:a5:31:54:d9:aa:0d:98:ef:
2c:02:2b:25:9f:c5:f1:99:ac:9a:78:96:68:9a:59:
bb:bd:db:d7:43:29:c8:b7:16:60:33:e9:62:ef:8b:
c6:c9:06:73:96:9e:7c:a9:07:33:84:72:57:c6:ac:
67:44:8c:34:a7:7a:8d:26:23:c2:3b:8f:01:49:30:
76:be:10:aa:f6:58:b8:54:44:7b:de:45:c1:b7:b0:
62:ab:25:ae:59:4c:fa:2a:4b:73:b5:06:b0:8b:fb:
10:5f:51:af:e1:16:40:07:e3:0a:dd:2b:93:46:fb:
96:4f:96:a2:87:76:44:3b:e5:ae:a5:c4:33:95:d5:
bf:58:96:bb:b2:9c:82:73:71:bb:1c:87:a1:4c:70:
b8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:93:EE:64:53:CB:54:DF:46:52:EA:DD:81:4D:A6:F7:02:59:F9:56
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/FpPuZFPLVN9GUurdgU2m9wJZ-VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.78.0/24
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
86.106.97.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0-89.43.46.255
89.43.73.0/24
89.44.209.0/24
89.45.34.0/24
93.113.158.0/24
93.113.202.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
15:3e:a4:77:6e:1f:f9:de:26:d1:b6:62:2b:54:b1:c4:24:9f:
1b:88:21:df:a6:b7:04:ad:ef:f0:4e:8e:50:ec:59:60:f5:32:
3d:83:01:1f:71:63:90:67:bf:93:0c:f1:79:a1:4a:de:01:ce:
8e:e7:69:1a:10:e5:5d:b4:11:59:74:03:0b:12:13:53:22:e4:
cd:b0:2f:8c:14:a4:62:40:5b:e2:21:a0:c0:63:53:1d:f9:de:
7f:6e:9e:08:a7:9e:60:a9:01:a9:cc:a3:58:33:91:08:df:e7:
17:79:32:af:fc:3e:0e:82:0e:52:d9:eb:e3:b6:39:89:d1:55:
75:46:57:82:bf:84:cc:00:94:2c:7a:5d:78:8f:36:d2:82:20:
d9:94:05:e0:07:84:b6:fa:95:27:5d:eb:82:d7:a4:9e:b8:ec:
b3:a6:a5:2a:77:e0:68:6d:fe:9a:a7:0f:47:88:28:c7:47:f6:
19:17:5c:47:87:6b:75:30:f9:aa:20:73:c7:91:f0:8e:fb:cb:
db:a1:4d:3c:1d:47:61:e3:0a:da:ed:db:52:11:ba:c6:8a:86:
c7:d4:6f:12:35:0c:dc:7d:14:1b:f3:05:09:d3:13:6a:35:fe:
45:90:2f:8a:23:f5:58:b6:c9:f3:d3:b7:45:dd:00:3b:2e:52:
de:69:70:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org