Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/jiFu2Oeu3orVU68LYcfxGX1Ntpo.roa
File: jiFu2Oeu3orVU68LYcfxGX1Ntpo.roa (raw, json)
Hash identifier: 0FOHT9tfXmWahoXh1AQoxa0OSd4mB7UxLoZFUj3oe4M=
Subject key identifier: 8E:21:6E:D8:E7:AE:DE:8A:D5:53:AF:0B:61:C7:F1:19:7D:4D:B6:9A
Certificate issuer: /CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e
Certificate serial: 018530F4C62351FAFE6DF2413AFCD16118D6
Authority key identifier: 83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/jiFu2Oeu3orVU68LYcfxGX1Ntpo.roa
Signing time: Tue 20 Dec 2022 19:13:45 +0000
ROA not before: Tue 20 Dec 2022 19:13:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25591
IP address blocks: 93.190.176.0/22 maxlen: 22
93.190.180.0/22 maxlen: 22
37.75.216.0/22 maxlen: 22
37.75.220.0/22 maxlen: 22
80.242.96.0/20 maxlen: 20
80.242.96.0/22 maxlen: 22
217.175.4.0/22 maxlen: 22
80.242.100.0/22 maxlen: 22
217.175.8.0/22 maxlen: 22
80.242.104.0/22 maxlen: 22
217.175.12.0/22 maxlen: 22
80.242.108.0/22 maxlen: 22
31.3.24.0/22 maxlen: 22
31.3.28.0/22 maxlen: 22
185.14.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:f4:c6:23:51:fa:fe:6d:f2:41:3a:fc:d1:61:18:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e
Validity
Not Before: Dec 20 19:13:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e216ed8e7aede8ad553af0b61c7f1197d4db69a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c2:9d:29:1c:73:34:c4:61:80:d5:bd:fd:57:
1e:03:a5:61:44:65:c0:e0:f5:dc:68:70:00:93:b4:
8b:d4:39:56:72:02:1b:4c:0d:8e:8b:27:fd:3a:b0:
fd:7c:5c:92:13:77:77:6a:3e:89:5a:dd:1c:2b:1f:
ff:1c:3e:ce:86:a4:80:20:28:d9:c2:27:4d:6d:0f:
9a:ba:2b:98:5d:ce:a6:c5:93:24:dd:79:05:04:24:
91:5b:9f:fc:aa:82:1f:c6:6a:80:75:e5:7e:13:d2:
3e:77:a9:e9:3e:3b:59:7b:f3:90:16:2e:44:b3:d2:
29:56:ee:77:20:cc:c4:50:0b:57:33:63:9c:6b:35:
db:53:d4:c3:e9:d7:9a:4d:27:2c:55:9a:99:44:18:
95:ec:46:e7:24:62:b0:2f:0d:72:ea:c7:ac:90:71:
1b:93:2b:4c:d8:c9:d9:14:6d:68:7e:03:1e:48:5d:
41:6d:70:9e:21:93:29:f7:e1:ac:8a:89:57:95:f6:
0c:f5:fb:33:77:d7:ab:03:61:e4:94:43:28:ca:10:
74:04:86:5d:22:78:b7:a6:7d:0a:fc:33:3b:a0:0e:
ba:50:fd:db:ed:0d:da:1b:84:9f:c4:cc:ed:a7:f4:
84:5b:f9:10:8a:be:74:5b:33:3f:5f:57:54:19:14:
87:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:21:6E:D8:E7:AE:DE:8A:D5:53:AF:0B:61:C7:F1:19:7D:4D:B6:9A
X509v3 Authority Key Identifier:
keyid:83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/jiFu2Oeu3orVU68LYcfxGX1Ntpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.24.0/21
37.75.216.0/21
80.242.96.0/20
93.190.176.0/21
185.14.16.0/22
217.175.4.0-217.175.15.255
Signature Algorithm: sha256WithRSAEncryption
96:1d:d3:6c:e2:cb:43:70:9d:db:e2:3c:d7:6e:76:1a:fc:5a:
16:a2:c3:c5:bf:16:67:d7:69:3c:5a:f7:11:62:2a:0e:0f:03:
a2:4d:94:45:fe:34:03:08:0e:a9:11:db:a0:47:9b:6f:90:26:
9d:55:75:2b:b3:15:ac:d0:e3:e4:b3:a0:ff:db:84:d1:4c:99:
fb:90:1f:d0:66:19:a4:9b:fe:ab:fe:4e:c1:26:a8:c6:66:ba:
83:42:22:2c:56:b0:bd:44:25:b5:09:f1:e0:c0:0e:89:f8:73:
5d:fe:a8:01:e9:97:8a:14:bb:77:86:bf:1d:40:2e:7b:9a:10:
08:2f:23:52:1d:35:7c:8a:fa:f4:d2:9f:72:10:c1:e4:96:a4:
9f:10:8c:fb:ce:45:a8:95:97:36:1a:9b:ab:36:c9:cf:8c:ae:
c9:3e:fc:d9:d5:c5:d4:23:9b:33:d0:02:6d:28:4e:fd:5c:32:
69:22:9b:c3:5a:9c:e5:d5:72:f7:36:64:68:1d:43:06:2b:14:
d2:62:fe:c3:ef:0e:53:f5:a3:42:6a:1a:53:75:b1:6d:4c:b5:
5e:50:e8:6d:4d:3e:3a:69:1c:1e:8c:bb:b3:78:8b:2c:70:88:
d7:80:fc:e9:b3:9e:b0:cd:22:09:b1:17:a9:24:08:61:32:fb:
35:88:d3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:09 2025 by rpki-client