Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/g8DwB76Vgfe9OHoiDVztFrVnxpg.roa
File: g8DwB76Vgfe9OHoiDVztFrVnxpg.roa (raw, json)
Hash identifier: UIDXmEs0jJt2824B2HulQyQ7MnJ1C/qDkQg5mpbD7I4=
Subject key identifier: 83:C0:F0:07:BE:95:81:F7:BD:38:7A:22:0D:5C:ED:16:B5:67:C6:98
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0BD14344
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/g8DwB76Vgfe9OHoiDVztFrVnxpg.roa
Signing time: Thu 10 Feb 2022 11:07:39 +0000
ROA not before: Thu 10 Feb 2022 11:07:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12695
IP address blocks: 89.43.44.0/24 maxlen: 24
85.204.78.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
93.114.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198263620 (0xbd14344)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Feb 10 11:07:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83c0f007be9581f7bd387a220d5ced16b567c698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:36:b4:e6:9e:4b:65:4f:eb:35:4a:38:28:01:
58:6f:21:79:75:a3:8d:23:e7:d3:bd:bd:1f:e9:a9:
ee:3c:ed:c1:4c:c1:90:df:20:fc:3e:83:86:12:47:
4e:d8:7e:c5:09:b5:66:76:0f:17:52:88:cb:79:02:
1f:e0:9b:30:5d:87:a6:45:1b:b1:ca:8b:13:dc:e8:
8b:23:5d:b0:e2:3e:b5:eb:44:ac:db:11:0b:f2:d1:
10:c3:03:f1:50:d8:1a:2d:44:ec:8f:ca:a7:de:1d:
1b:ae:1e:be:b6:93:2b:95:60:62:4f:cc:4b:e7:23:
f0:8d:fb:b6:3f:49:3e:c7:07:55:a7:84:ed:91:e2:
13:05:02:72:c8:4f:fb:28:7e:db:cc:57:68:7e:85:
ef:1f:18:ca:1c:ce:e1:c5:e4:fb:9d:42:53:55:ff:
2c:ca:b2:16:1d:be:f2:79:90:be:0a:98:7e:32:9e:
18:db:69:28:d4:0c:d2:0a:e8:89:b3:ea:1b:73:9a:
18:a6:de:9c:51:22:7a:d6:94:af:24:3d:d9:e7:b1:
8c:d1:97:fe:82:de:b5:43:c2:2d:f6:55:9e:1a:31:
59:4c:c8:38:d9:4d:9d:22:ad:7f:ff:c8:8d:99:3d:
32:8d:75:68:fd:a0:cb:72:5f:6a:0a:49:b7:c0:59:
38:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C0:F0:07:BE:95:81:F7:BD:38:7A:22:0D:5C:ED:16:B5:67:C6:98
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/g8DwB76Vgfe9OHoiDVztFrVnxpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.78.0/24
89.43.44.0/24
89.45.34.0/24
93.113.203.0/24
93.114.171.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:fd:b8:50:c9:d5:ce:8e:32:f8:ca:03:5a:b1:92:34:94:70:
1e:99:d0:ea:1f:e8:e7:77:7a:3c:71:92:d9:e3:46:17:4f:56:
9c:df:b5:8f:d4:df:40:b6:ae:7b:70:da:2a:fc:77:98:77:43:
cb:29:1d:c7:5d:b5:a9:12:6b:14:40:fa:33:b3:04:fe:19:2b:
cb:8e:ec:1a:44:ad:d1:0e:f8:0a:75:37:df:c3:3a:5f:7d:97:
42:86:e2:07:c6:58:48:26:3f:a8:b6:35:81:6e:7d:9b:d7:f4:
2f:65:24:f9:bf:e6:c3:7c:f6:93:2c:2e:0a:4d:57:84:c9:02:
3c:52:2e:67:c4:9d:4a:44:25:a4:99:a2:82:48:d2:9d:02:3b:
5a:60:28:ca:e7:91:5d:3f:fc:7e:fb:97:b2:6a:c8:4f:cd:42:
6b:9c:5a:7d:f5:c5:db:34:b0:56:5b:f3:41:d3:fb:33:8e:42:
ca:ca:32:89:ef:91:84:ef:8e:a0:78:9d:ee:df:32:9a:a6:37:
06:9d:3c:64:02:6a:0d:65:06:7b:91:fd:c6:a0:e1:c0:0e:08:
f6:23:8d:d8:fe:a3:de:1f:7a:be:92:1f:4d:62:b3:01:4d:28:
90:00:c9:d8:01:48:e8:47:54:6e:5f:87:36:20:77:27:da:94:
bb:0c:09:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org