Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/no8TTnhANCP902O-0NM53Y75CNc.roa
File: no8TTnhANCP902O-0NM53Y75CNc.roa (raw, json)
Hash identifier: Mn/k81pU4LYG9xkkGshFpOWKn0YgjNQ8rvJVK4v4KBs=
Subject key identifier: 9E:8F:13:4E:78:40:34:23:FD:D3:63:BE:D0:D3:39:DD:8E:F9:08:D7
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 018262B01F1E0DD027F7C7DE66549AE52220
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/no8TTnhANCP902O-0NM53Y75CNc.roa
Signing time: Wed 03 Aug 2022 07:51:25 +0000
ROA not before: Wed 03 Aug 2022 07:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202422
IP address blocks: 80.93.209.0/24 maxlen: 24
80.93.210.0/24 maxlen: 24
80.93.219.0/24 maxlen: 24
80.93.218.0/24 maxlen: 24
80.93.214.0/24 maxlen: 24
80.93.215.0/24 maxlen: 24
80.93.217.0/24 maxlen: 24
80.93.223.0/24 maxlen: 24
92.38.148.0/24 maxlen: 24
92.38.155.0/24 maxlen: 24
92.38.173.0/24 maxlen: 24
5.188.148.0/24 maxlen: 24
92.38.186.0/23 maxlen: 24
92.38.186.0/24 maxlen: 24
92.38.180.0/24 maxlen: 24
5.8.24.0/24 maxlen: 24
78.111.105.0/24 maxlen: 24
78.111.99.0/24 maxlen: 24
78.111.102.0/24 maxlen: 24
78.111.101.0/24 maxlen: 24
217.195.193.0/24 maxlen: 24
92.38.187.0/24 maxlen: 24
5.188.169.0/24 maxlen: 24
146.185.236.0/24 maxlen: 24
146.185.237.0/24 maxlen: 24
37.9.33.0/24 maxlen: 24
37.9.32.0/24 maxlen: 24
217.195.200.0/24 maxlen: 24
217.195.205.0/24 maxlen: 24
146.185.216.0/24 maxlen: 24
146.185.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:62:b0:1f:1e:0d:d0:27:f7:c7:de:66:54:9a:e5:22:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: Aug 3 07:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e8f134e78403423fdd363bed0d339dd8ef908d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0c:5e:97:19:a8:02:d0:9a:13:ee:62:2b:94:
1e:7d:e6:61:31:db:41:db:e6:d4:45:d6:6c:03:b0:
56:35:cd:c7:a6:2d:e1:ba:d2:2b:ed:3b:b7:75:ce:
84:0b:e7:d6:cb:be:bc:c9:f5:45:7b:6a:4a:de:86:
44:36:57:27:2e:bd:cc:d6:cc:0d:dc:60:bf:87:98:
e5:e9:8c:72:b9:7d:01:ae:0a:4d:fc:3c:61:cc:f3:
46:47:c7:47:ef:b8:9d:fe:9c:b9:49:8b:91:07:50:
91:9d:16:0d:55:ea:92:48:6d:38:d5:84:c1:7d:3b:
59:e1:44:52:a1:1d:99:6f:ee:05:ab:3c:37:13:f9:
8b:7f:71:65:6a:0e:f8:48:a8:4f:b0:ae:b2:92:34:
8a:f0:45:10:28:db:ba:3a:e4:75:30:5d:92:8f:08:
84:1d:6f:48:58:1a:04:13:22:69:87:3f:5c:79:ec:
78:79:40:80:80:61:cb:08:a6:1d:7a:6e:72:db:76:
8a:be:d8:10:c3:32:dd:0c:fe:0f:7b:c4:45:da:c8:
8a:72:d5:93:16:39:93:a9:f5:f5:aa:35:87:17:9e:
5a:94:da:c6:86:49:ef:f7:09:ac:0d:d0:22:56:10:
26:93:8c:07:b1:11:ec:df:fa:d6:b5:3d:4b:7e:eb:
70:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:8F:13:4E:78:40:34:23:FD:D3:63:BE:D0:D3:39:DD:8E:F9:08:D7
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/no8TTnhANCP902O-0NM53Y75CNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.24.0/24
5.188.148.0/24
5.188.169.0/24
37.9.32.0/23
78.111.99.0/24
78.111.101.0-78.111.102.255
78.111.105.0/24
80.93.209.0-80.93.210.255
80.93.214.0/23
80.93.217.0-80.93.219.255
80.93.223.0/24
92.38.148.0/24
92.38.155.0/24
92.38.173.0/24
92.38.180.0/24
92.38.186.0/23
146.185.216.0/23
146.185.236.0/23
217.195.193.0/24
217.195.200.0/24
217.195.205.0/24
Signature Algorithm: sha256WithRSAEncryption
22:b4:c6:c3:5f:92:0f:7f:e6:5e:3c:68:f5:0a:34:ef:3f:cb:
cb:88:19:1a:61:ad:72:a3:48:d9:7d:d6:cd:6e:32:37:5a:55:
02:a1:3e:3f:fa:6f:b9:96:23:17:cc:1c:24:12:21:f3:8a:be:
fc:ef:b8:29:f7:40:45:ee:94:82:17:f3:0e:7e:31:0a:26:4b:
ed:78:c1:5e:7c:51:1d:18:bc:6a:0f:8a:70:af:e6:73:a2:e8:
59:03:86:65:41:e2:49:9a:26:a6:13:ad:ce:18:8b:da:16:0a:
df:05:47:84:25:aa:81:d6:ca:2a:66:0c:bb:6c:dd:62:6e:04:
39:e3:de:5b:ea:fc:be:f7:e6:5f:d0:fd:4b:7b:e4:d9:3e:e0:
9b:66:57:97:1c:13:a0:2c:79:b4:52:6d:b3:73:4b:66:7b:e6:
eb:db:1c:9a:9c:b3:d4:68:6b:16:87:b4:c5:c0:9f:1e:02:7d:
cb:b5:7b:43:de:c2:6e:d2:25:55:37:96:3b:d3:e1:df:60:de:
2f:cd:cd:52:62:5f:82:70:de:66:d5:d3:f2:20:cf:7e:5b:82:
b3:85:35:ce:3d:33:2b:b2:fe:31:c0:c2:2f:f9:0b:bb:f3:cb:
7a:b0:3c:75:65:c2:dc:32:a3:c5:c0:28:99:d2:25:21:60:87:
ba:97:1f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org