Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/DLpESaRpayW7z5Wjm5nlWMif8Xo.roa
File: DLpESaRpayW7z5Wjm5nlWMif8Xo.roa (raw, json)
Hash identifier: TMZkwxNbWpMEqE1qVfK5QtifjbIOTy0OFlSbiu7deWo=
Subject key identifier: 0C:BA:44:49:A4:69:6B:25:BB:CF:95:A3:9B:99:E5:58:C8:9F:F1:7A
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 086C4215
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/DLpESaRpayW7z5Wjm5nlWMif8Xo.roa
Signing time: Sat 01 Jan 2022 00:53:27 +0000
ROA not before: Sat 01 Jan 2022 00:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8764
IP address blocks: 88.119.0.0/18 maxlen: 24
85.206.176.0/20 maxlen: 24
195.12.160.0/19 maxlen: 24
88.118.192.0/18 maxlen: 24
194.176.32.0/19 maxlen: 24
85.206.128.0/19 maxlen: 24
85.206.244.0/22 maxlen: 24
85.206.248.0/21 maxlen: 24
213.190.32.0/19 maxlen: 24
88.119.128.0/19 maxlen: 24
188.69.0.0/16 maxlen: 24
85.206.192.0/19 maxlen: 24
88.119.64.0/18 maxlen: 24
85.206.224.0/20 maxlen: 24
212.47.96.0/19 maxlen: 24
212.59.0.0/19 maxlen: 24
88.118.0.0/17 maxlen: 24
88.119.184.0/21 maxlen: 24
88.119.192.0/18 maxlen: 24
78.56.0.0/13 maxlen: 24
195.22.160.0/19 maxlen: 24
82.135.128.0/17 maxlen: 24
81.7.64.0/18 maxlen: 24
62.212.192.0/19 maxlen: 24
85.206.0.0/17 maxlen: 24
88.118.128.0/18 maxlen: 24
2a00:1eb8::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141312533 (0x86c4215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cba4449a4696b25bbcf95a39b99e558c89ff17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cb:d8:e5:d2:a8:b7:2a:5c:4a:92:bd:8c:c5:
da:70:87:d2:28:02:e6:5f:79:79:39:e1:28:7c:38:
f7:1b:6a:b9:36:33:cf:48:f3:fb:57:44:c6:e4:4a:
f6:e9:d4:7d:fc:67:14:aa:49:03:48:f7:cf:41:f0:
0a:3f:0f:d9:80:2e:37:07:97:4c:45:e1:15:78:4f:
18:52:1c:5f:80:3e:16:3a:d7:bc:91:43:f3:8e:c4:
93:29:6a:40:b4:4c:c6:7c:bd:25:6c:6b:5e:4c:5a:
06:6e:08:f4:4a:eb:e3:5c:1c:d3:e4:67:dd:b2:8f:
8a:a6:2f:b8:20:1e:7f:91:dc:0e:e0:34:18:49:cb:
15:4d:36:f9:08:c8:b6:33:c4:81:1f:1b:8f:bb:d1:
8e:ef:34:e0:56:b7:05:6a:15:d5:87:ae:30:7c:84:
28:c8:ca:1f:7f:a8:39:d7:df:a6:49:c5:e8:75:83:
e9:19:03:ed:f9:9c:ff:98:62:ec:9a:ad:b7:af:6d:
9d:9e:77:08:47:e0:79:d4:84:40:af:29:86:79:9f:
7c:da:4c:31:ed:0d:23:1f:8c:5c:28:49:1d:dd:11:
fd:dd:6e:8a:d8:26:51:d7:cf:e7:ed:bf:dc:47:5e:
79:23:c5:46:73:e0:e4:b8:5a:96:13:1c:d4:7a:ec:
c4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:BA:44:49:A4:69:6B:25:BB:CF:95:A3:9B:99:E5:58:C8:9F:F1:7A
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/DLpESaRpayW7z5Wjm5nlWMif8Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.212.192.0/19
78.56.0.0/13
81.7.64.0/18
82.135.128.0/17
85.206.0.0-85.206.159.255
85.206.176.0-85.206.239.255
85.206.244.0-85.206.255.255
88.118.0.0-88.119.159.255
88.119.184.0-88.119.255.255
188.69.0.0/16
194.176.32.0/19
195.12.160.0/19
195.22.160.0/19
212.47.96.0/19
212.59.0.0/19
213.190.32.0/19
IPv6:
2a00:1eb8::/32
Signature Algorithm: sha256WithRSAEncryption
44:83:9a:97:05:bb:b8:1d:27:cb:c5:b3:61:13:01:94:dc:76:
3a:b9:ad:40:1b:54:60:53:29:3d:b8:c7:a4:20:77:72:33:27:
59:1d:e0:14:a7:22:53:27:2f:42:a5:b9:9c:33:48:28:91:05:
39:79:a5:b7:fe:ff:7e:96:3a:ed:58:bc:85:b2:21:44:8d:60:
d7:6e:85:4f:2f:cd:73:c9:79:04:3e:1d:c8:02:9f:40:33:69:
5d:51:55:7d:2c:3a:39:0f:19:64:82:12:6a:04:08:ce:cf:df:
cb:63:c6:d5:da:f2:b5:4c:81:4e:f2:1f:0e:4f:7b:91:f4:ff:
8d:20:03:cc:ab:2d:a5:33:d0:e0:d2:d2:d5:ab:1e:9d:75:24:
ff:ca:a4:ca:6c:c9:d0:4f:27:1f:e4:ad:f5:31:ab:cd:4d:8c:
af:63:9e:0b:51:92:20:37:74:83:55:23:ca:02:ca:57:ab:96:
ff:bb:28:1c:80:1a:d5:d1:a4:df:31:5b:7d:06:55:65:94:dc:
bd:40:2d:07:b3:2e:e6:cb:4c:6c:a3:fa:bb:7e:21:a8:0f:86:
34:9e:85:1b:0f:6d:75:ae:75:61:08:55:54:b9:49:a8:4a:7a:
1e:90:32:07:04:ca:71:cc:21:3d:25:2f:07:f8:a5:05:02:ca:
89:1c:20:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:14 2023 by rpki-client on console-fra.rpki-client.org