Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/A3GYtzLp_SAurMD0IBIgT38Di4E.roa
File: A3GYtzLp_SAurMD0IBIgT38Di4E.roa (raw, json)
Hash identifier: NpcmqJfw99w6mv6TmXBQdPjlLPh9m5oNrjqcSHaS/co=
Subject key identifier: 03:71:98:B7:32:E9:FD:20:2E:AC:C0:F4:20:12:20:4F:7F:03:8B:81
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 018B91E4
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/A3GYtzLp_SAurMD0IBIgT38Di4E.roa
Signing time: Sat 01 Jan 2022 12:03:43 +0000
ROA not before: Sat 01 Jan 2022 12:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203217
IP address blocks: 185.138.121.0/24 maxlen: 24
185.138.120.0/23 maxlen: 23
185.138.122.0/24 maxlen: 24
185.138.123.0/24 maxlen: 24
185.138.122.0/23 maxlen: 23
185.138.120.0/24 maxlen: 24
93.180.218.0/24 maxlen: 24
93.180.219.0/24 maxlen: 24
93.180.216.0/24 maxlen: 24
93.180.218.0/23 maxlen: 23
93.180.217.0/24 maxlen: 24
93.180.220.0/24 maxlen: 24
93.180.221.0/24 maxlen: 24
93.180.222.0/24 maxlen: 24
93.180.223.0/24 maxlen: 24
195.133.220.0/24 maxlen: 24
195.133.221.0/24 maxlen: 24
195.133.222.0/24 maxlen: 24
195.133.223.0/24 maxlen: 24
195.133.220.0/23 maxlen: 23
185.20.198.0/23 maxlen: 23
185.20.196.0/24 maxlen: 24
185.20.196.0/23 maxlen: 23
185.20.197.0/24 maxlen: 24
185.20.198.0/24 maxlen: 24
185.20.199.0/24 maxlen: 24
2a0b:1880::/48 maxlen: 48
2a0b:1880:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25924068 (0x18b91e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: Jan 1 12:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=037198b732e9fd202eacc0f42012204f7f038b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6b:94:b9:32:b2:8c:c4:6e:86:7c:78:c9:e0:
d2:38:b9:6a:e6:fa:41:12:0a:5d:c8:f1:23:e3:58:
a1:28:6a:7d:39:8d:9d:3e:a5:8c:1c:49:36:65:09:
31:ee:a4:65:36:9d:54:47:a2:f1:c5:a1:ed:26:8b:
63:bf:46:7e:39:b6:80:38:b3:44:24:8d:89:fe:7b:
2e:14:41:08:db:24:13:6b:17:79:b4:30:6b:9a:fb:
b4:9c:e2:75:a4:95:fd:2e:61:36:ba:e1:c3:10:5a:
d1:b7:8d:41:15:5d:60:f5:0c:10:46:1b:18:5a:88:
d1:c8:7f:6b:fb:f1:79:95:9b:ee:c4:31:c1:76:23:
e6:53:8f:9f:b7:e9:af:ef:5d:66:92:29:d1:04:8e:
04:1e:f3:11:d6:51:ef:bf:53:b0:1c:de:17:a4:88:
a3:21:2a:4e:54:14:ea:65:08:a2:34:15:26:d7:d1:
17:da:6f:64:b8:58:df:e2:c5:dc:fe:45:c7:91:e8:
db:b7:3c:29:d3:9a:1d:75:e2:cc:0a:42:c0:6e:61:
c7:e1:91:19:15:77:80:3c:fe:82:ac:fb:8c:04:e9:
e4:04:f6:1d:dd:25:d8:f2:67:e4:8f:12:75:4f:5c:
c7:99:0f:7c:1e:11:83:00:e7:f1:6f:3d:b4:b1:2f:
3a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:71:98:B7:32:E9:FD:20:2E:AC:C0:F4:20:12:20:4F:7F:03:8B:81
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/A3GYtzLp_SAurMD0IBIgT38Di4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.216.0/21
185.20.196.0/22
185.138.120.0/22
195.133.220.0/22
IPv6:
2a0b:1880::/47
Signature Algorithm: sha256WithRSAEncryption
0d:d4:ba:0b:45:4e:f6:67:c0:2e:4f:7e:f6:7b:52:9e:65:f3:
9a:43:98:e9:3e:07:23:b6:50:e2:75:ec:95:dd:08:bb:00:6f:
69:ff:57:71:57:fb:ea:5e:b3:6b:18:11:33:07:27:36:14:8e:
d9:7b:a6:74:07:b4:ce:d1:9e:bc:f9:25:3c:47:f7:5d:1d:fa:
02:d8:67:e2:f6:0e:19:f0:a4:da:07:83:ce:a5:44:e2:81:b4:
a0:4f:be:f3:7d:7a:af:f1:76:f7:5d:18:da:f6:b3:ea:da:49:
d4:99:8c:d8:d4:89:cd:96:f6:c4:60:d3:2c:a8:5b:37:ed:e7:
b2:e1:cd:88:33:70:64:19:7e:7b:f2:68:86:71:8d:04:a4:68:
f2:90:d7:49:de:a0:84:d7:90:86:15:6a:6b:fe:96:d3:7c:40:
24:2f:0c:eb:2b:d9:a0:4a:47:a9:c9:bb:c4:c0:32:4e:1b:b6:
96:d8:bd:53:cf:10:12:c2:81:6e:3a:95:82:ee:5b:4f:3e:b1:
35:31:a9:74:b0:e3:00:ad:14:3e:78:93:80:2f:8f:9c:22:6a:
18:6a:87:75:a3:5f:b4:be:7f:ba:a9:72:44:6d:bd:b3:cd:57:
ab:d5:12:ea:83:ef:8b:3e:b3:b6:f3:7a:4a:83:7e:da:68:75:
84:21:dc:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:10 2023 by rpki-client on console-ams.rpki-client.org