Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/fzkQrZPc6iuQKWPWI5JzMSeQKpA.roa
File: fzkQrZPc6iuQKWPWI5JzMSeQKpA.roa (raw, json)
Hash identifier: Nk7/1ZUSklHI2Tk4CYQWt00YgNs7vDeA7Ocydzfsi3w=
Subject key identifier: 7F:39:10:AD:93:DC:EA:2B:90:29:63:D6:23:92:73:31:27:90:2A:90
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 0183D09A41F5701EAB51504EF3C2CD878F90
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/fzkQrZPc6iuQKWPWI5JzMSeQKpA.roa
Signing time: Thu 13 Oct 2022 09:08:33 +0000
ROA not before: Thu 13 Oct 2022 09:08:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202505
IP address blocks: 193.31.118.0/24 maxlen: 24
193.31.117.0/24 maxlen: 24
193.31.119.0/24 maxlen: 24
89.43.78.0/24 maxlen: 24
86.104.14.0/24 maxlen: 24
84.54.14.0/24 maxlen: 24
185.81.152.0/24 maxlen: 24
185.81.153.0/24 maxlen: 24
185.81.155.0/24 maxlen: 24
213.226.116.0/24 maxlen: 24
185.81.154.0/24 maxlen: 24
176.98.42.0/24 maxlen: 24
176.98.43.0/24 maxlen: 24
2a06:f7c5::/32 maxlen: 32
2a11:d105::/32 maxlen: 32
2a10:7fc2::/32 maxlen: 32
2a10:7f46::/32 maxlen: 32
2a10:7f45::/32 maxlen: 32
2a06:f7c4::/32 maxlen: 32
2a11:d104::/32 maxlen: 32
2a10:7f44::/32 maxlen: 32
2a10:7fc1::/32 maxlen: 32
2a10:7f47::/32 maxlen: 32
2a11:d107::/32 maxlen: 32
2a10:7fc4::/32 maxlen: 32
2a06:f7c7::/32 maxlen: 32
2a10:7fc0::/32 maxlen: 32
2a10:7fc3::/32 maxlen: 32
2a11:d102::/32 maxlen: 32
2a11:d101::/32 maxlen: 32
2a06:f7c1::/32 maxlen: 32
2a10:7f42::/32 maxlen: 32
2a10:7fc6::/32 maxlen: 32
2a10:7f41::/32 maxlen: 32
2a10:7fc7::/32 maxlen: 32
2a06:f7c2::/32 maxlen: 32
2a10:7f40::/32 maxlen: 32
2a06:f7c3::/32 maxlen: 32
2a10:7fc5::/32 maxlen: 32
2a11:d106::/32 maxlen: 32
2a10:7f43::/32 maxlen: 32
2a06:f7c0::/32 maxlen: 32
2a11:d100::/32 maxlen: 32
2a11:d103::/32 maxlen: 32
2a06:f7c6::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:9a:41:f5:70:1e:ab:51:50:4e:f3:c2:cd:87:8f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Oct 13 09:08:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f3910ad93dcea2b902963d62392733127902a90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:10:02:89:02:52:0d:12:8a:bc:f8:2e:13:43:
b5:4d:b0:f1:3a:4b:c1:db:f2:4e:cd:14:45:cf:3a:
4d:71:c2:88:e2:76:74:ed:32:e9:34:ec:44:12:e5:
0e:93:24:8c:bb:9c:c5:3d:3f:c0:97:a0:de:4c:f1:
73:a5:8d:28:f3:a9:a0:46:0e:a6:40:40:a8:1f:bf:
c3:fb:97:19:2f:3f:f0:5b:ac:f5:6c:31:1f:32:47:
72:a8:e4:39:76:66:7b:cd:ec:fe:42:a8:b1:b6:b8:
ea:11:a5:31:04:30:57:d6:27:41:70:df:3b:0e:d4:
64:10:4e:8e:af:8c:5c:c8:e5:33:de:c6:ae:eb:70:
7e:7b:27:5f:b5:b2:cf:48:38:f9:af:fc:98:e5:29:
10:d1:76:b8:28:c7:e7:8d:40:a0:12:cc:92:eb:f8:
3b:aa:2d:17:aa:41:c3:e3:82:dd:46:98:b3:d9:70:
a4:45:c5:81:bd:4e:fc:cb:50:9d:6a:9a:5a:f8:16:
9a:f8:18:7e:56:bf:57:0a:21:c3:8b:aa:ed:ca:1f:
34:36:3d:01:21:80:f3:cc:06:20:6d:ff:5a:77:34:
92:5d:24:d5:53:25:fd:e5:29:18:ad:ea:36:3e:ea:
1e:5c:74:c7:e0:28:31:c1:7d:fd:93:2a:eb:cd:e7:
99:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:39:10:AD:93:DC:EA:2B:90:29:63:D6:23:92:73:31:27:90:2A:90
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/fzkQrZPc6iuQKWPWI5JzMSeQKpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.14.0/24
86.104.14.0/24
89.43.78.0/24
176.98.42.0/23
185.81.152.0/22
193.31.117.0-193.31.119.255
213.226.116.0/24
IPv6:
2a06:f7c0::/29
2a10:7f40::/29
2a10:7fc0::/29
2a11:d100::/29
Signature Algorithm: sha256WithRSAEncryption
2f:b1:50:81:b6:cf:16:9c:21:c5:95:82:75:02:f5:33:8f:54:
2b:9d:ba:a7:61:1d:27:e0:d7:37:5c:82:d0:2f:46:d9:01:90:
8f:89:fd:1b:d3:48:2b:1c:a8:e1:88:07:2a:32:fa:e9:74:2d:
77:0f:95:6c:9d:8d:3c:40:b4:d1:27:05:4a:f9:f7:77:27:78:
cd:a6:e5:ef:e1:72:55:1b:2d:56:0f:d1:b3:0e:c3:15:09:39:
ab:c9:41:e0:7e:e9:a3:a9:cc:34:29:25:16:66:95:2b:95:47:
78:a1:80:c6:ba:3b:7b:a6:02:52:ce:38:62:21:ec:e6:33:2d:
3f:5c:3d:67:89:fb:b1:38:59:af:bb:73:de:42:bd:c9:91:f7:
76:87:fc:ad:a1:c5:1f:c7:7b:b6:38:33:bf:b0:84:85:03:09:
97:18:28:ba:7f:98:e5:e8:30:4e:17:f4:c1:47:38:89:58:9d:
4f:7d:27:74:f7:8b:bf:67:e5:7c:ae:27:3a:1d:d7:8e:e7:41:
e3:53:cb:9a:d5:ac:c1:bc:8e:17:a4:9c:8f:4b:74:85:f4:d2:
f7:73:21:83:5a:62:8c:3d:e1:a3:5f:37:47:ff:c7:66:a6:d5:
71:e8:9d:88:35:03:6a:03:c6:84:c8:8a:5d:9f:a9:d0:ba:5f:
b7:16:2e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-fra.rpki-client.org