Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/0ylpEziUVSofQYtgr719qtj8S2g.roa
File: 0ylpEziUVSofQYtgr719qtj8S2g.roa (raw, json)
Hash identifier: jupm51MOXYUY6NEKo3ShfwlFloqPZT3zNq+tAeYD1nI=
Subject key identifier: D3:29:69:13:38:94:55:2A:1F:41:8B:60:AF:BD:7D:AA:D8:FC:4B:68
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 091BF2BF
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/0ylpEziUVSofQYtgr719qtj8S2g.roa
Signing time: Fri 18 Mar 2022 06:44:27 +0000
ROA not before: Fri 18 Mar 2022 06:44:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43811
IP address blocks: 194.176.54.0/23 maxlen: 23
85.206.140.0/24 maxlen: 24
85.206.141.0/24 maxlen: 24
85.206.142.0/24 maxlen: 24
85.206.143.0/24 maxlen: 24
82.135.217.0/24 maxlen: 24
82.135.218.0/24 maxlen: 24
85.206.148.0/22 maxlen: 22
195.12.180.0/24 maxlen: 24
194.176.36.0/24 maxlen: 24
194.176.32.0/24 maxlen: 24
194.176.33.0/24 maxlen: 24
194.176.35.0/24 maxlen: 24
88.119.222.0/24 maxlen: 24
88.119.220.0/24 maxlen: 24
88.119.221.0/24 maxlen: 24
212.47.123.0/24 maxlen: 24
88.119.246.0/24 maxlen: 24
31.193.192.0/24 maxlen: 24
31.193.197.0/24 maxlen: 24
31.193.198.0/24 maxlen: 24
31.193.199.0/24 maxlen: 24
31.193.193.0/24 maxlen: 24
31.193.194.0/24 maxlen: 24
31.193.195.0/24 maxlen: 24
31.193.196.0/24 maxlen: 24
88.119.180.0/24 maxlen: 24
81.7.105.0/24 maxlen: 24
88.118.143.0/24 maxlen: 24
81.7.106.0/24 maxlen: 24
81.7.114.0/24 maxlen: 24
81.7.115.0/24 maxlen: 24
82.135.132.0/24 maxlen: 24
92.61.32.0/20 maxlen: 32
185.3.231.0/24 maxlen: 24
185.3.228.0/24 maxlen: 24
185.3.229.0/24 maxlen: 24
185.3.230.0/24 maxlen: 24
2a00:1eb8:c004::/48 maxlen: 48
2a02:118:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152826559 (0x91bf2bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Mar 18 06:44:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d32969133894552a1f418b60afbd7daad8fc4b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:53:02:54:85:ce:d5:c8:70:7d:68:c5:4e:
51:63:b7:ad:3d:90:4b:f0:4f:c8:8c:c3:45:92:e8:
59:cc:df:90:06:0c:9c:e3:0a:1b:1a:8c:8a:b4:6c:
0b:82:b5:ce:71:86:fe:5f:94:6a:e2:70:f7:d8:60:
26:08:99:34:4e:0a:b9:c7:fc:56:fe:1c:9d:0b:cb:
e8:ad:7c:aa:07:e1:c7:77:74:23:43:3e:73:49:82:
8d:0b:b5:7b:33:be:81:20:1b:a8:2f:ab:36:5d:f4:
3a:4a:77:7a:5d:8a:36:4a:82:1f:68:38:00:4d:aa:
82:5b:94:de:94:98:ad:b1:6d:cc:0d:3f:f9:30:0b:
e6:c4:9a:14:38:ff:e0:c6:79:52:aa:9b:79:b5:5f:
ee:be:13:e0:00:8c:9b:1f:6c:f4:01:e4:f4:72:6c:
c1:aa:e0:69:cf:75:d9:03:75:b1:25:a1:8b:57:d1:
35:2f:86:3b:8e:8f:70:cf:b5:04:cb:d5:17:1b:7e:
da:7e:a9:33:14:6e:cc:fc:61:31:a6:d3:bd:fd:5e:
6f:43:b0:ca:06:23:d9:ec:de:49:a1:a7:2e:ea:50:
7c:27:65:64:42:db:c0:98:e7:0a:b4:8e:f1:15:8b:
79:9e:77:ae:57:86:4f:93:a1:b9:ac:b5:ea:d2:99:
42:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:29:69:13:38:94:55:2A:1F:41:8B:60:AF:BD:7D:AA:D8:FC:4B:68
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/0ylpEziUVSofQYtgr719qtj8S2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.192.0/21
81.7.105.0-81.7.106.255
81.7.114.0/23
82.135.132.0/24
82.135.217.0-82.135.218.255
85.206.140.0/22
85.206.148.0/22
88.118.143.0/24
88.119.180.0/24
88.119.220.0-88.119.222.255
88.119.246.0/24
92.61.32.0/20
185.3.228.0/22
194.176.32.0/23
194.176.35.0-194.176.36.255
194.176.54.0/23
195.12.180.0/24
212.47.123.0/24
IPv6:
2a00:1eb8:c004::/48
2a02:118:2::/48
Signature Algorithm: sha256WithRSAEncryption
0f:12:78:a8:24:a6:35:8c:db:45:ce:06:e7:f4:94:24:e0:ce:
5a:c3:da:37:75:09:15:a2:db:ac:3a:78:12:91:93:d9:23:2c:
30:c6:9a:16:eb:6a:27:23:94:2b:6a:5a:fe:e3:08:62:bb:78:
3c:42:25:0b:bf:59:55:ec:36:07:cb:b8:4e:1e:13:4a:9f:8f:
fa:6b:19:c0:44:07:f0:f2:23:06:f1:3d:7e:fa:6c:51:21:10:
19:ea:ef:5f:d2:d0:c8:44:34:cf:b1:3d:f2:ad:25:0f:c3:43:
be:ea:6e:96:62:02:89:e9:d6:74:d6:02:89:f4:ce:af:b0:60:
70:69:f5:f1:df:06:11:65:88:7d:0a:d6:dd:37:f0:44:f7:84:
81:ef:29:23:be:1c:8e:b5:31:5c:8d:d5:bc:ea:ac:44:57:b5:
57:51:21:45:4f:24:eb:91:75:58:c2:92:dd:dc:65:44:57:74:
ac:6f:48:9a:74:14:5c:6d:bb:4e:a3:14:c3:3b:6f:5c:55:77:
36:74:23:cf:8c:4f:3a:c9:8e:9d:8c:a9:ac:01:e1:97:30:71:
7e:9f:23:64:3c:a1:10:06:c3:21:39:6d:5b:87:75:be:eb:97:
71:a4:a5:55:3b:73:af:a2:c1:80:c2:34:22:1f:e3:ce:d0:d5:
52:5c:6a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:18 2024 by rpki-client on console-fra.rpki-client.org