Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/vI0xiHlCWUnbecwhTppFIVQ-X70.roa
File: vI0xiHlCWUnbecwhTppFIVQ-X70.roa (raw, json)
Hash identifier: 54f6W+WYLn4ocS0WO2P3ubxNzDVsfak9h1uWJdMDEmY=
Subject key identifier: BC:8D:31:88:79:42:59:49:DB:79:CC:21:4E:9A:45:21:54:3E:5F:BD
Certificate issuer: /CN=15cc880f0a12c7b94f71d9b2e5b028a70d1fa34a
Certificate serial: 0182402D4580520E96B7232BC1BECFB804E8
Authority key identifier: 15:CC:88:0F:0A:12:C7:B9:4F:71:D9:B2:E5:B0:28:A7:0D:1F:A3:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FcyIDwoSx7lPcdmy5bAopw0fo0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/vI0xiHlCWUnbecwhTppFIVQ-X70.roa
Signing time: Wed 27 Jul 2022 15:01:24 +0000
ROA not before: Wed 27 Jul 2022 15:01:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35506
IP address blocks: 84.205.192.0/24 maxlen: 24
84.205.193.0/24 maxlen: 24
84.205.194.0/24 maxlen: 24
84.205.195.0/24 maxlen: 24
84.205.196.0/24 maxlen: 24
84.205.197.0/24 maxlen: 24
84.205.198.0/24 maxlen: 24
84.205.199.0/24 maxlen: 24
84.205.200.0/24 maxlen: 24
84.205.201.0/24 maxlen: 24
84.205.202.0/24 maxlen: 24
84.205.203.0/24 maxlen: 24
84.205.204.0/24 maxlen: 24
84.205.205.0/24 maxlen: 24
84.205.206.0/24 maxlen: 24
84.205.207.0/24 maxlen: 24
84.205.212.0/24 maxlen: 24
84.205.212.0/23 maxlen: 23
84.205.213.0/24 maxlen: 24
84.205.215.0/24 maxlen: 24
84.205.216.0/24 maxlen: 24
84.205.217.0/24 maxlen: 24
84.205.218.0/24 maxlen: 24
84.205.219.0/24 maxlen: 24
84.205.214.0/24 maxlen: 24
84.205.220.0/24 maxlen: 24
84.205.221.0/24 maxlen: 24
84.205.222.0/24 maxlen: 24
84.205.223.0/24 maxlen: 24
84.205.224.0/24 maxlen: 24
84.205.225.0/24 maxlen: 24
84.205.226.0/24 maxlen: 24
84.205.227.0/24 maxlen: 24
84.205.228.0/24 maxlen: 24
84.205.229.0/24 maxlen: 24
84.205.230.0/24 maxlen: 24
84.205.231.0/24 maxlen: 24
84.205.232.0/24 maxlen: 24
84.205.233.0/24 maxlen: 24
84.205.234.0/24 maxlen: 24
84.205.235.0/24 maxlen: 24
84.205.236.0/24 maxlen: 24
84.205.237.0/24 maxlen: 24
84.205.238.0/24 maxlen: 24
84.205.239.0/24 maxlen: 24
84.205.240.0/24 maxlen: 24
84.205.243.0/24 maxlen: 24
84.205.244.0/24 maxlen: 24
84.205.245.0/24 maxlen: 24
84.205.246.0/24 maxlen: 24
84.205.241.0/24 maxlen: 24
84.205.242.0/24 maxlen: 24
84.205.247.0/24 maxlen: 24
84.205.248.0/24 maxlen: 24
84.205.249.0/24 maxlen: 24
84.205.250.0/24 maxlen: 24
84.205.251.0/24 maxlen: 24
84.205.252.0/23 maxlen: 23
84.205.254.0/24 maxlen: 24
84.205.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:2d:45:80:52:0e:96:b7:23:2b:c1:be:cf:b8:04:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15cc880f0a12c7b94f71d9b2e5b028a70d1fa34a
Validity
Not Before: Jul 27 15:01:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc8d318879425949db79cc214e9a4521543e5fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0d:25:a1:db:42:41:af:05:15:68:74:68:a6:
0a:74:b7:c2:47:a0:bd:28:29:54:a3:d1:af:4e:02:
13:31:27:05:f2:54:97:8f:3f:0b:52:f5:d2:63:97:
7c:df:55:e0:9d:7f:e1:73:64:6a:17:51:4d:ec:5d:
c6:b1:72:be:5c:96:f2:82:1b:b5:d3:3f:71:de:a8:
9c:bd:68:fa:24:18:d3:a4:5c:5a:3c:d2:b3:e9:ec:
dd:3a:80:75:b2:7e:fb:21:93:ef:66:72:67:dd:de:
27:19:3a:67:31:e5:ed:a5:3d:ed:c4:79:c2:bf:2f:
dc:c9:92:b7:7e:32:4f:f3:66:0a:d2:e3:7b:8a:b1:
03:da:6b:d3:13:d2:e9:aa:00:3f:e7:82:1e:34:e2:
57:80:ac:2d:83:65:14:64:cd:06:3a:94:56:a0:f7:
a7:c5:1b:43:6f:59:93:56:88:6d:fd:db:3a:37:0d:
76:51:27:bf:78:d0:2b:94:b1:77:cc:e9:5b:09:25:
4f:19:db:de:69:61:c1:57:9f:ec:03:e1:6e:4e:ca:
8b:a3:7e:be:d1:73:f7:39:8d:1a:6a:a9:ff:e1:55:
aa:8f:b2:72:b3:2d:3f:ed:49:1b:b2:05:62:e5:9e:
c4:87:70:b7:8e:ce:a2:e1:aa:c8:d4:cd:f2:7d:f5:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:8D:31:88:79:42:59:49:DB:79:CC:21:4E:9A:45:21:54:3E:5F:BD
X509v3 Authority Key Identifier:
keyid:15:CC:88:0F:0A:12:C7:B9:4F:71:D9:B2:E5:B0:28:A7:0D:1F:A3:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FcyIDwoSx7lPcdmy5bAopw0fo0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/vI0xiHlCWUnbecwhTppFIVQ-X70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/FcyIDwoSx7lPcdmy5bAopw0fo0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.192.0/20
84.205.212.0-84.205.255.255
Signature Algorithm: sha256WithRSAEncryption
39:dd:bc:00:e0:ad:4b:46:3e:07:73:6b:d6:9f:71:03:ee:7e:
ea:af:25:6a:74:94:90:40:40:f7:5c:dd:fa:56:3a:29:01:6d:
42:c1:dd:05:9c:bc:80:2b:f8:7a:5a:57:c5:98:b7:e4:47:2b:
c9:2c:2e:35:66:1c:5c:97:34:69:b5:a5:40:80:79:39:a3:15:
41:36:9d:70:c0:65:bb:41:87:cf:d1:b7:13:32:3a:a3:30:76:
38:5a:4b:d6:5b:53:af:a6:97:40:ad:40:5a:3b:88:57:88:32:
6a:c4:11:20:5a:85:db:97:d8:22:47:35:a2:5d:b3:be:17:0b:
c1:87:75:c1:20:52:6e:0d:6b:15:32:1b:f1:5e:d4:6f:d4:67:
93:0b:a3:4a:55:c8:fd:b5:5a:2c:db:9f:57:43:5e:f5:30:4c:
1f:00:83:81:b5:f4:7f:a4:2b:c8:a4:06:ec:51:56:de:39:b7:
5e:cb:22:a8:b7:ad:dd:dd:4a:4c:a2:df:3e:07:68:8d:c0:8b:
04:b7:d1:03:ec:00:d6:23:71:28:c4:f4:fe:7b:44:78:e9:ff:
80:d4:81:0b:2f:fe:49:c9:fd:85:b8:a4:44:d5:62:e2:22:14:
47:0a:82:35:8c:33:49:0e:e3:83:96:19:65:14:5e:b3:e0:8f:
00:75:87:3f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-fra.rpki-client.org