Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/7vHL9F41rsajaSH8K4WIURlTTTg.roa
File: 7vHL9F41rsajaSH8K4WIURlTTTg.roa (raw, json)
Hash identifier: PgFznOMhJRQLGhbQJuaSa6qYjaBNQnxhbS32EC6ookk=
Subject key identifier: EE:F1:CB:F4:5E:35:AE:C6:A3:69:21:FC:2B:85:88:51:19:53:4D:38
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 01827DD8BAA1C87EE9F4258D12F14DF9FD1D
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/7vHL9F41rsajaSH8K4WIURlTTTg.roa
Signing time: Mon 08 Aug 2022 14:25:31 +0000
ROA not before: Mon 08 Aug 2022 14:25:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8359
IP address blocks: 212.188.0.0/17 maxlen: 17
213.87.0.0/16 maxlen: 16
178.141.0.0/16 maxlen: 16
213.87.128.0/19 maxlen: 19
213.87.64.0/22 maxlen: 22
213.87.70.0/23 maxlen: 23
213.87.76.0/23 maxlen: 23
213.87.80.0/20 maxlen: 20
213.87.200.0/22 maxlen: 22
213.87.204.0/22 maxlen: 22
213.87.208.0/23 maxlen: 23
195.34.0.0/19 maxlen: 19
213.87.240.0/22 maxlen: 22
195.34.15.0/24 maxlen: 24
213.87.244.0/23 maxlen: 23
213.87.248.0/22 maxlen: 22
213.87.160.0/22 maxlen: 22
82.96.192.0/18 maxlen: 18
195.34.38.0/24 maxlen: 24
195.34.32.0/19 maxlen: 19
195.34.36.0/24 maxlen: 24
195.34.42.0/24 maxlen: 24
2a00:1fa0:8000::/33 maxlen: 33
2a00:1fa0::/33 maxlen: 33
2a02:28:1::/48 maxlen: 48
2a00:1fa2::/33 maxlen: 33
2a02:28::/29 maxlen: 29
2a00:1fa3::/33 maxlen: 33
2a00:1fa0::/29 maxlen: 29
2a02:28::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7d:d8:ba:a1:c8:7e:e9:f4:25:8d:12:f1:4d:f9:fd:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: Aug 8 14:25:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eef1cbf45e35aec6a36921fc2b85885119534d38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6e:45:59:e0:cb:d9:cd:9d:a0:2e:e3:7b:5c:
26:97:49:54:b0:75:f4:1e:85:88:aa:cc:4d:0c:89:
a6:25:6d:e7:1f:82:02:58:2e:98:e9:f2:64:7d:c7:
55:1f:a3:74:3f:a4:de:12:3d:63:a8:6e:5c:71:66:
fa:9f:ec:2b:49:21:86:fa:44:f2:50:4c:08:de:20:
d2:5f:05:6b:b6:0d:f6:15:8b:c7:78:d4:a2:1b:1e:
52:0e:44:4b:74:d6:57:d1:21:1f:c4:73:83:56:ec:
7e:c8:40:39:88:a4:4a:fb:aa:f7:69:8a:e4:a3:b5:
f6:b6:8b:c3:f7:0d:69:d3:64:0f:77:10:12:cd:73:
74:82:62:7d:3c:d2:6f:45:e2:f6:64:d5:14:84:50:
f2:2d:e8:23:c9:3e:22:50:7e:93:7e:c4:d8:ce:4d:
d8:2d:58:fd:e1:b0:c1:6b:b9:b0:ad:43:6f:31:ae:
19:c9:70:91:0e:95:96:14:46:ee:9b:06:94:20:b8:
32:0e:44:4d:30:92:90:61:77:19:3b:65:86:a6:da:
11:1c:cb:12:6b:00:ea:2e:1b:ca:c1:27:c8:db:ba:
94:85:f0:b2:f1:8e:50:d8:16:48:9a:5f:30:2f:e2:
e4:1a:ca:77:fa:c4:95:40:d9:d7:77:b0:86:04:c9:
2f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F1:CB:F4:5E:35:AE:C6:A3:69:21:FC:2B:85:88:51:19:53:4D:38
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/7vHL9F41rsajaSH8K4WIURlTTTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.96.192.0/18
178.141.0.0/16
195.34.0.0/18
212.188.0.0/17
213.87.0.0/16
IPv6:
2a00:1fa0::/29
2a02:28::/29
Signature Algorithm: sha256WithRSAEncryption
74:11:44:d9:ff:cc:e2:b5:82:37:16:ee:c4:b1:d0:96:bc:d4:
08:4b:3c:dc:61:1d:fc:d4:94:08:69:9f:d5:56:bc:9f:f3:5a:
f9:9e:de:3f:2e:5f:74:7e:9d:39:95:dc:18:2a:63:fc:72:7b:
15:2f:0f:51:4d:2d:18:d8:92:eb:2e:90:86:32:c5:fb:e5:7a:
06:26:10:9a:4f:1d:a8:cb:dd:d9:f3:31:ba:1a:93:f7:2f:15:
d6:43:1f:37:47:a4:d4:8d:71:77:c9:b2:27:89:ec:d1:db:c2:
77:a3:11:4a:92:c6:08:4e:4c:06:a4:fe:9f:ca:92:85:41:ac:
7d:89:8d:68:48:9a:ce:e9:fd:c8:73:b5:17:0c:1f:0c:a9:67:
ed:ec:c1:c1:23:a0:99:a7:f1:48:cd:46:f5:29:ef:1a:57:ca:
ef:45:05:18:2b:17:b5:5d:09:0b:ed:77:f6:11:62:1e:5f:d3:
a9:6d:22:57:79:21:13:03:50:28:96:c3:cb:10:e7:1f:8b:75:
1e:e6:0e:ed:b1:da:c7:c5:ef:3e:8f:b1:e4:f5:ce:fb:66:48:
f2:91:a0:4d:e0:4c:0e:c5:b6:fd:3c:ce:ce:16:1f:ba:fb:bc:
5a:12:a3:be:95:9e:99:ef:8a:45:4c:dd:19:bb:61:7d:5f:ca:
ce:86:f8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-fra.rpki-client.org