Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/vqaKmOOUo6TLkBRGc1dVoD2Y8kE.roa
File: vqaKmOOUo6TLkBRGc1dVoD2Y8kE.roa (raw, json)
Hash identifier: dC+HKyp4tFbsSimwoLATu3jJMVTtjwar1AljNtycin8=
Subject key identifier: BE:A6:8A:98:E3:94:A3:A4:CB:90:14:46:73:57:55:A0:3D:98:F2:41
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 0885FAFE
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/vqaKmOOUo6TLkBRGc1dVoD2Y8kE.roa
Signing time: Wed 16 Feb 2022 08:48:23 +0000
ROA not before: Wed 16 Feb 2022 08:48:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44565
IP address blocks: 188.124.4.0/24 maxlen: 24
188.124.1.0/24 maxlen: 24
188.124.0.0/24 maxlen: 24
188.124.3.0/24 maxlen: 24
188.124.2.0/24 maxlen: 24
188.124.11.0/24 maxlen: 24
188.124.6.0/24 maxlen: 24
188.124.5.0/24 maxlen: 24
188.124.8.0/24 maxlen: 24
188.124.7.0/24 maxlen: 24
188.124.10.0/24 maxlen: 24
188.124.9.0/24 maxlen: 24
188.124.13.0/24 maxlen: 24
188.124.12.0/24 maxlen: 24
188.124.15.0/24 maxlen: 24
188.124.14.0/24 maxlen: 24
188.124.17.0/24 maxlen: 24
188.124.16.0/24 maxlen: 24
188.124.18.0/24 maxlen: 24
188.124.20.0/24 maxlen: 24
188.124.19.0/24 maxlen: 24
188.124.22.0/24 maxlen: 24
188.124.21.0/24 maxlen: 24
188.124.24.0/24 maxlen: 24
188.124.23.0/24 maxlen: 24
188.124.25.0/24 maxlen: 24
188.124.27.0/24 maxlen: 24
188.124.26.0/24 maxlen: 24
188.124.29.0/24 maxlen: 24
188.124.28.0/24 maxlen: 24
188.124.31.0/24 maxlen: 24
188.124.30.0/24 maxlen: 24
79.171.17.0/24 maxlen: 24
79.171.16.0/24 maxlen: 24
79.171.19.0/24 maxlen: 24
79.171.18.0/24 maxlen: 24
79.171.21.0/24 maxlen: 24
79.171.20.0/24 maxlen: 24
93.186.112.0/24 maxlen: 24
93.186.113.0/24 maxlen: 24
93.186.115.0/24 maxlen: 24
93.186.114.0/24 maxlen: 24
93.186.117.0/24 maxlen: 24
93.186.116.0/24 maxlen: 24
93.186.118.0/24 maxlen: 24
93.186.120.0/24 maxlen: 24
93.186.119.0/24 maxlen: 24
93.186.122.0/24 maxlen: 24
93.186.121.0/24 maxlen: 24
93.186.124.0/24 maxlen: 24
93.186.123.0/24 maxlen: 24
93.186.127.0/24 maxlen: 24
93.186.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142998270 (0x885fafe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Feb 16 08:48:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bea68a98e394a3a4cb901446735755a03d98f241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f9:aa:77:9f:54:2c:64:82:8d:2c:68:fe:5b:
01:25:37:02:ce:68:c5:25:f7:3a:2a:51:ac:ef:cd:
c7:1c:12:84:58:86:bb:5f:40:14:93:13:39:72:fe:
3c:b0:81:4f:2b:df:d8:33:c9:df:a8:0c:0f:3e:42:
91:73:96:09:b0:d6:87:4d:bb:c2:6e:fd:0f:5d:ae:
5e:19:ea:3d:ee:00:95:a7:0c:8d:1e:b4:14:38:51:
68:55:d4:6c:25:50:4b:38:93:85:19:c2:5f:73:f4:
12:c5:59:64:7b:36:45:a5:3b:fd:85:f3:6f:ea:a9:
7c:3c:d3:6e:95:fd:43:a0:05:64:6c:53:cc:bc:f6:
26:89:e7:ab:27:92:38:86:a8:cd:52:b1:8e:33:d2:
01:58:93:ec:0e:02:4b:4b:ae:84:c7:fc:7c:26:f3:
df:f3:ed:56:76:44:bd:d3:0b:be:95:f3:77:8e:fa:
2e:11:15:ba:35:83:95:b7:8c:b3:d0:d2:eb:03:2f:
b3:f0:c7:6a:d8:e4:0f:b6:0d:95:69:f4:0e:ed:18:
5d:6b:6c:90:7b:f0:48:2b:32:91:a1:30:d3:d2:bc:
9e:2a:bb:9d:0c:fa:27:cb:bf:19:98:78:53:43:a9:
7d:b7:dc:ca:84:1f:07:11:c0:b9:ca:3e:d9:35:98:
8f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A6:8A:98:E3:94:A3:A4:CB:90:14:46:73:57:55:A0:3D:98:F2:41
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/vqaKmOOUo6TLkBRGc1dVoD2Y8kE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.16.0-79.171.21.255
93.186.112.0-93.186.124.255
93.186.126.0/23
188.124.0.0/19
Signature Algorithm: sha256WithRSAEncryption
98:ce:bb:5b:97:63:a5:04:00:64:0e:87:f7:05:33:8e:43:11:
18:15:99:82:ad:d3:57:54:55:54:48:58:5f:d5:07:16:ee:c3:
73:31:1d:51:da:20:eb:85:b1:64:da:81:60:f8:20:38:b3:e7:
64:37:8d:0b:77:8b:c6:0a:91:a3:a6:9b:57:62:53:62:67:03:
7d:35:82:6c:cb:41:e3:a1:ad:d8:51:8f:67:c5:8a:f7:1b:f8:
71:46:ed:56:f6:f7:a2:6a:b5:3c:90:72:dd:a5:ef:dd:0c:94:
d4:33:0c:12:9b:1e:f7:e9:54:d4:e3:d9:af:a3:f3:7f:5f:f8:
e6:df:52:24:8f:e5:97:71:e4:e4:7a:79:8f:5f:27:b5:ca:21:
75:b2:60:97:72:cf:f4:76:3a:71:3f:cc:c4:6b:59:77:cc:40:
55:88:ba:8d:8f:4c:07:02:f8:88:ba:74:5b:0e:73:c7:3a:1b:
f6:dc:f6:f5:ca:8f:e8:54:12:d1:82:f0:87:19:1e:bf:86:1c:
5a:ad:e9:de:2c:5d:b1:f8:d9:0b:bc:5c:7d:85:a9:7e:92:60:
1c:ae:bc:6c:3f:8b:96:20:70:d7:63:02:7d:e6:91:ef:95:5a:
9e:7f:ed:a5:b8:4f:9e:0f:57:98:c3:f5:18:e5:c2:85:fa:ba:
0b:37:c8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:33 2023 by rpki-client on console-ams.rpki-client.org