Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/rRYuGylaxo81sbiGw9fEDccqo50.roa
File: rRYuGylaxo81sbiGw9fEDccqo50.roa (raw, json)
Hash identifier: 13fVNardoJVqcpwMIA/JRHSQyvajDT9ZbqIgVx4HWlA=
Subject key identifier: AD:16:2E:1B:29:5A:C6:8F:35:B1:B8:86:C3:D7:C4:0D:C7:2A:A3:9D
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018557620E1F7BBC90F4F28CD1F336E0D3A7
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/rRYuGylaxo81sbiGw9fEDccqo50.roa
Signing time: Wed 28 Dec 2022 06:18:41 +0000
ROA not before: Wed 28 Dec 2022 06:18:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60148
IP address blocks: 2.187.255.0/24 maxlen: 24
2.187.254.0/24 maxlen: 24
2.182.255.0/24 maxlen: 24
2.182.254.0/24 maxlen: 24
78.39.221.0/24 maxlen: 24
78.39.152.0/24 maxlen: 24
80.191.56.0/24 maxlen: 24
78.38.239.0/24 maxlen: 24
2.187.253.0/24 maxlen: 24
78.38.238.0/24 maxlen: 24
78.38.237.0/24 maxlen: 24
2.185.254.0/24 maxlen: 24
2.185.255.0/24 maxlen: 24
2.180.255.0/24 maxlen: 24
2.180.254.0/24 maxlen: 24
2.181.222.0/24 maxlen: 24
2.181.223.0/24 maxlen: 24
2.183.254.0/24 maxlen: 24
2.183.255.0/24 maxlen: 24
195.146.37.0/24 maxlen: 24
195.146.59.0/24 maxlen: 24
2.184.255.0/24 maxlen: 24
2.184.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:57:62:0e:1f:7b:bc:90:f4:f2:8c:d1:f3:36:e0:d3:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Dec 28 06:18:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad162e1b295ac68f35b1b886c3d7c40dc72aa39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:87:cc:71:3c:96:59:82:b8:2f:aa:73:81:b1:
b8:37:bd:25:42:9f:d0:01:b8:70:cc:e5:e8:61:fa:
3f:07:42:fd:37:fc:de:c6:ad:97:5d:4e:75:d5:ab:
95:b0:3a:89:8a:3b:46:0f:88:3e:85:0c:32:22:51:
51:04:c2:21:62:96:bf:6c:05:c9:2e:0e:b8:7e:dc:
e0:56:b4:a5:09:79:3e:56:38:23:93:3d:69:e3:ba:
99:38:d5:a6:65:1e:06:f2:9d:0a:04:41:ce:b4:99:
4f:d4:46:7c:0a:b4:6a:09:a6:ac:75:1d:cb:89:80:
d9:bb:36:2e:ff:b0:e4:2e:04:82:e5:c7:af:67:ea:
17:29:4e:5b:2a:37:84:57:76:70:f0:2f:3c:62:74:
8a:ec:41:99:51:f4:e3:25:75:47:70:68:5d:45:37:
cc:36:03:7d:85:02:12:37:90:b8:86:92:25:9d:47:
11:f1:17:20:bf:5d:89:c1:3b:2b:ba:91:01:4e:80:
99:9b:d2:73:65:56:d1:0f:dc:62:b9:6a:d1:a4:ec:
e9:41:03:1e:26:05:b0:d0:01:ed:ca:46:63:73:89:
bb:fa:05:c1:84:fc:2f:ea:ac:9f:73:f4:41:a5:36:
54:98:b3:f4:a3:d7:13:42:29:d1:1f:7c:b8:ee:10:
d3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:16:2E:1B:29:5A:C6:8F:35:B1:B8:86:C3:D7:C4:0D:C7:2A:A3:9D
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/rRYuGylaxo81sbiGw9fEDccqo50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.180.254.0/23
2.181.222.0/23
2.182.254.0/23
2.183.254.0/23
2.184.254.0/23
2.185.254.0/23
2.187.253.0-2.187.255.255
78.38.237.0-78.38.239.255
78.39.152.0/24
78.39.221.0/24
80.191.56.0/24
195.146.37.0/24
195.146.59.0/24
Signature Algorithm: sha256WithRSAEncryption
34:51:48:09:a0:8a:b7:38:28:d7:dc:28:d9:77:28:1b:32:45:
0b:7d:02:64:30:fe:43:f2:4f:58:66:12:ce:9f:ff:20:12:2a:
11:df:f2:00:c2:d1:50:fa:e9:72:5c:a2:21:ee:07:8c:57:fe:
2c:dd:c9:9f:35:e9:ec:52:d8:8e:5b:98:f1:e2:46:1e:96:b6:
49:f3:47:85:39:d9:97:bb:bf:95:c3:f4:62:3a:4f:c4:5e:2a:
5d:1e:25:db:f7:fd:35:e7:d6:04:d9:82:ad:cc:a6:ca:82:79:
87:13:a1:5c:55:0a:37:bd:97:d9:db:ac:bf:4f:49:73:4d:b4:
e9:2b:8f:ed:6c:46:59:97:59:06:d3:87:5a:19:2c:24:5b:5c:
50:46:e4:b4:18:f3:45:cd:32:6c:b0:4c:86:ca:6c:bb:81:06:
fa:de:a5:3a:00:44:f7:f6:fd:f0:08:8c:c6:ab:61:3b:82:60:
8c:ce:5b:ab:81:91:4e:89:c4:98:2a:ee:1f:fc:4b:c5:d9:53:
e2:37:7b:34:d9:44:0f:86:bd:05:1b:45:0c:ad:55:20:d6:a8:
69:31:d7:82:85:40:11:82:7c:85:86:5e:af:3d:12:05:f4:9d:
9c:be:04:e0:c2:cd:d6:d7:1a:1a:79:f8:b6:5f:f5:01:72:9b:
88:c5:8a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:46 2023 by rpki-client on console-ams.rpki-client.org