Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/CMXfuf07cfvlFFaXM_kwvQelTBI.roa
File: CMXfuf07cfvlFFaXM_kwvQelTBI.roa (raw, json)
Hash identifier: /FJn+i1VS9hYQF5DM1d6jWrRMqBuU98QdjsWp/aJ1oQ=
Subject key identifier: 08:C5:DF:B9:FD:3B:71:FB:E5:14:56:97:33:F9:30:BD:07:A5:4C:12
Certificate issuer: /CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Certificate serial: 369E7E37
Authority key identifier: 8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/CMXfuf07cfvlFFaXM_kwvQelTBI.roa
Signing time: Sat 01 Jan 2022 07:03:14 +0000
ROA not before: Sat 01 Jan 2022 07:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.48.0/24 maxlen: 24
185.1.47.0/24 maxlen: 24
185.1.46.0/24 maxlen: 24
80.81.192.0/21 maxlen: 21
80.81.203.0/24 maxlen: 24
80.81.202.0/24 maxlen: 24
185.1.8.0/24 maxlen: 24
185.1.119.0/24 maxlen: 24
185.1.131.0/24 maxlen: 24
185.1.170.0/23 maxlen: 23
185.1.192.0/23 maxlen: 23
185.1.197.0/24 maxlen: 24
185.1.210.0/23 maxlen: 23
185.1.208.0/23 maxlen: 23
185.1.220.0/24 maxlen: 24
2001:7f8:10a::/48 maxlen: 48
2001:7f8:9e::/48 maxlen: 48
2001:7f8:32::/48 maxlen: 48
2001:7f8:106::/48 maxlen: 48
2001:7f8:44::/48 maxlen: 48
2001:7f8:3f::/48 maxlen: 48
2001:7f8:d5::/48 maxlen: 48
2001:7f8:73::/48 maxlen: 48
2001:7f8:3d::/48 maxlen: 48
2001:7f8::/48 maxlen: 48
2001:7f8:a0::/48 maxlen: 48
2001:7f8:36::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916356663 (0x369e7e37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Validity
Not Before: Jan 1 07:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08c5dfb9fd3b71fbe514569733f930bd07a54c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:70:12:10:e1:be:36:0e:b7:10:49:f6:50:f2:
3a:ed:e6:72:6e:e3:c0:c1:bb:11:bd:4a:82:97:99:
2d:bb:9a:f1:78:61:e8:f9:f5:aa:df:08:e5:2f:a0:
26:a0:e0:1f:cf:8b:01:e3:ac:70:52:38:4b:0b:a5:
88:46:50:18:47:0a:a9:b8:df:70:e0:41:00:99:6f:
0d:35:fc:84:35:9d:05:c3:1a:74:b8:da:9f:e0:40:
b0:23:f8:c5:d4:2d:87:25:6f:0a:5a:7c:7a:fc:90:
4f:0c:95:f1:00:35:be:17:fb:52:bc:83:44:7f:ea:
52:c4:15:f2:a1:71:4c:4e:a2:80:30:bd:98:b4:61:
d0:e0:78:63:21:db:f8:1c:c8:fa:2d:d1:e2:85:5f:
29:84:d8:02:ad:26:8d:19:9a:c2:a3:0b:fb:5a:bc:
7d:10:f9:e9:4c:81:6d:ba:86:e0:58:73:61:b4:4c:
de:66:37:7f:ae:04:9b:cb:0d:80:50:c9:d9:66:d0:
10:c4:09:c0:f9:bd:3f:a8:f2:35:24:35:75:0f:d4:
6e:66:d5:e3:93:3c:09:87:46:f7:42:4f:52:27:e6:
f9:64:2a:62:6a:39:3a:87:a0:e0:9a:84:5b:e1:f1:
07:c4:dd:ec:92:79:13:92:ad:fd:4d:28:a9:63:24:
04:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C5:DF:B9:FD:3B:71:FB:E5:14:56:97:33:F9:30:BD:07:A5:4C:12
X509v3 Authority Key Identifier:
keyid:8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/CMXfuf07cfvlFFaXM_kwvQelTBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/i2n8YSi-WRQBrPgrwkYa9jbr6OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.192.0/21
80.81.202.0/23
185.1.8.0/24
185.1.46.0-185.1.48.255
185.1.119.0/24
185.1.131.0/24
185.1.170.0/23
185.1.192.0/23
185.1.197.0/24
185.1.208.0/22
185.1.220.0/24
IPv6:
2001:7f8::/48
2001:7f8:32::/48
2001:7f8:36::/48
2001:7f8:3d::/48
2001:7f8:3f::/48
2001:7f8:44::/48
2001:7f8:73::/48
2001:7f8:9e::/48
2001:7f8:a0::/48
2001:7f8:d5::/48
2001:7f8:106::/48
2001:7f8:10a::/48
Signature Algorithm: sha256WithRSAEncryption
4d:66:83:05:57:43:9f:9c:5f:ff:22:65:5a:8c:b2:14:44:0f:
c2:f7:69:11:f2:a9:11:fa:49:a3:c9:7b:1a:77:c3:cd:e0:67:
6b:aa:1a:b0:25:78:0b:2d:5b:fa:6c:31:1f:d5:66:0e:a2:6a:
c8:f0:28:49:f2:ef:44:7c:96:80:b7:76:1a:d8:6d:37:c3:da:
9e:ab:80:66:e1:97:20:99:60:5d:2f:bf:38:61:f7:e5:d3:0b:
b0:ca:2b:e0:14:4e:6a:a1:01:73:7c:e2:1d:f2:1f:b3:a4:8e:
89:7b:07:38:db:0b:ff:fd:71:55:ae:f9:61:ee:d5:26:43:e1:
bf:0c:6d:8c:f7:c8:eb:20:e0:42:54:a3:a5:ac:d7:05:1c:52:
cc:94:2c:91:4b:03:dd:83:4a:85:f6:50:bf:e7:15:e3:34:b7:
f7:e5:15:51:b6:6f:fc:b7:99:62:79:e7:14:8f:34:c1:5e:43:
1c:2e:55:0e:f1:e7:f5:c7:e1:5a:98:22:45:ff:59:42:0c:9a:
9e:c8:9c:5a:a3:35:8b:86:41:91:de:dd:52:26:94:f8:46:b4:
1d:ad:a1:37:35:43:f5:55:4e:54:f4:6f:cb:39:c2:cd:7e:b0:
a9:89:df:52:60:e5:cd:c8:c2:ba:6c:a1:0b:6d:b6:15:9d:77:
35:d6:e5:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:50 2024 by rpki-client on console-ams.rpki-client.org