Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/GhrWkqnEJ8RJQscy_jltvQF3gLU.roa
File: GhrWkqnEJ8RJQscy_jltvQF3gLU.roa (raw, json)
Hash identifier: aPPXiQ6yIUPr+2/gjpGNi3VecSnLEQnGSwJ1+CQez6M=
Subject key identifier: 1A:1A:D6:92:A9:C4:27:C4:49:42:C7:32:FE:39:6D:BD:01:77:80:B5
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 046B517D
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/GhrWkqnEJ8RJQscy_jltvQF3gLU.roa
Signing time: Wed 25 May 2022 06:14:13 +0000
ROA not before: Wed 25 May 2022 06:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206617
IP address blocks: 188.241.251.0/24 maxlen: 24
195.2.218.0/23 maxlen: 23
193.178.224.0/23 maxlen: 23
185.18.24.0/22 maxlen: 24
31.14.184.0/21 maxlen: 21
188.213.16.0/24 maxlen: 24
188.241.186.0/24 maxlen: 24
188.213.40.0/21 maxlen: 21
93.114.170.0/24 maxlen: 24
188.240.42.0/24 maxlen: 24
188.240.44.0/23 maxlen: 23
188.241.153.0/24 maxlen: 24
93.114.245.0/24 maxlen: 24
93.115.210.0/24 maxlen: 24
185.167.52.0/22 maxlen: 22
89.40.234.0/23 maxlen: 23
89.32.152.0/23 maxlen: 23
2a03:f140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74142077 (0x46b517d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: May 25 06:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a1ad692a9c427c44942c732fe396dbd017780b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3c:e4:ae:d8:3e:97:60:f9:e4:82:5a:cc:3a:
0e:0e:51:23:9d:41:39:43:ef:7c:ca:80:27:1f:10:
65:88:4f:18:bd:b8:05:bc:c3:3c:4e:67:cc:f2:cd:
88:91:7a:1b:8a:90:1c:c8:55:a3:29:41:82:d4:bf:
59:1e:0a:ab:01:c7:63:9e:ec:a9:b7:85:91:1c:cd:
42:bb:e6:36:d4:ca:1b:09:df:4b:1e:46:13:87:0d:
25:3f:50:b9:c4:40:f5:81:03:c5:c9:c7:84:2d:eb:
00:e2:88:12:99:60:a3:87:bb:3e:6b:7f:41:d2:c4:
26:d4:0d:84:07:45:7f:14:e9:b2:a8:40:59:b1:ba:
78:ff:94:ab:68:8f:cc:db:47:a3:18:ae:1b:0c:ff:
04:31:7d:1d:fd:44:2e:29:54:6c:eb:da:ea:72:60:
64:4b:77:f7:84:d2:cb:6f:b2:4f:76:7d:56:09:89:
ce:89:50:c1:f6:e9:56:75:0c:96:bc:b7:66:02:53:
89:f5:35:87:42:42:89:74:28:bf:21:fa:b1:c9:e0:
d9:c8:47:19:93:6e:95:bc:a1:a9:b2:3d:c5:99:19:
ff:6c:66:a2:d9:b4:ef:08:ac:1a:7c:79:35:9b:b2:
46:92:4c:47:20:b1:56:e2:c5:97:5e:57:04:62:71:
81:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1A:D6:92:A9:C4:27:C4:49:42:C7:32:FE:39:6D:BD:01:77:80:B5
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/GhrWkqnEJ8RJQscy_jltvQF3gLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.184.0/21
89.32.152.0/23
89.40.234.0/23
93.114.170.0/24
93.114.245.0/24
93.115.210.0/24
185.18.24.0/22
185.167.52.0/22
188.213.16.0/24
188.213.40.0/21
188.240.42.0/24
188.240.44.0/23
188.241.153.0/24
188.241.186.0/24
188.241.251.0/24
193.178.224.0/23
195.2.218.0/23
IPv6:
2a03:f140::/32
Signature Algorithm: sha256WithRSAEncryption
16:81:88:39:2d:84:8f:02:ef:6f:f3:9a:30:7f:38:1e:9d:73:
53:63:ed:e8:0f:5d:95:1d:65:fc:5e:e9:44:a5:6a:b7:9c:22:
aa:b2:be:d6:1b:fd:0f:20:53:cd:0d:67:5e:13:e6:71:e5:7e:
82:82:97:53:c3:5a:65:1b:d8:75:b0:37:e1:c2:b1:89:c0:7b:
0f:ce:66:a7:94:d0:01:47:9c:68:27:e0:0b:ec:c6:50:43:7f:
74:23:ef:29:98:44:14:ae:17:31:02:1f:e1:46:1c:2b:04:a0:
96:ee:e0:d3:9d:33:42:80:0c:09:42:78:61:ce:82:78:1f:ab:
26:bc:be:5e:f8:1a:64:3b:77:5a:20:87:df:f2:72:57:cf:3f:
ce:97:49:16:b4:22:63:4c:e9:0e:dc:fe:01:08:94:d9:86:b1:
2e:80:17:1c:9e:d5:ca:eb:ac:16:b4:16:87:79:c7:33:fe:eb:
8b:1f:21:ec:57:b4:30:a9:19:6e:71:93:99:b9:53:77:03:80:
dd:ac:6e:4a:5f:f1:3b:45:45:aa:34:5d:df:38:00:99:c9:2c:
2a:c5:d2:d3:c0:3f:12:3e:82:f9:ad:28:c8:c9:84:9b:9e:f0:
20:6e:2f:b1:dd:77:c1:ee:6c:8d:db:9e:51:ed:af:90:47:c2:
35:cd:b5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org