Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/g_mZADRFJddSn5iJ7m1ldWT1eLM.roa
File: g_mZADRFJddSn5iJ7m1ldWT1eLM.roa (raw, json)
Hash identifier: MFq8FbQ0JCJMzsnJYSOEp4h/dowlR+rxr1ZMmtZaepg=
Subject key identifier: 83:F9:99:00:34:45:25:D7:52:9F:98:89:EE:6D:65:75:64:F5:78:B3
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 0184F83568122E1C084B235F4B92D2CD4645
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/g_mZADRFJddSn5iJ7m1ldWT1eLM.roa
Signing time: Fri 09 Dec 2022 18:46:00 +0000
ROA not before: Fri 09 Dec 2022 18:46:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203217
IP address blocks: 185.254.13.0/24 maxlen: 24
185.254.15.0/24 maxlen: 24
185.138.121.0/24 maxlen: 24
185.138.120.0/23 maxlen: 23
185.138.122.0/24 maxlen: 24
185.138.123.0/24 maxlen: 24
185.138.122.0/23 maxlen: 23
185.138.120.0/24 maxlen: 24
93.180.218.0/24 maxlen: 24
93.180.219.0/24 maxlen: 24
93.180.216.0/24 maxlen: 24
93.180.218.0/23 maxlen: 23
93.180.217.0/24 maxlen: 24
93.180.220.0/24 maxlen: 24
93.180.221.0/24 maxlen: 24
93.180.222.0/24 maxlen: 24
93.180.223.0/24 maxlen: 24
195.133.220.0/24 maxlen: 24
195.133.221.0/24 maxlen: 24
195.133.222.0/24 maxlen: 24
195.133.223.0/24 maxlen: 24
195.133.220.0/23 maxlen: 23
185.20.198.0/23 maxlen: 23
185.20.196.0/24 maxlen: 24
185.20.196.0/23 maxlen: 23
185.20.197.0/24 maxlen: 24
185.20.198.0/24 maxlen: 24
185.20.199.0/24 maxlen: 24
2a0b:1880::/48 maxlen: 48
2a0b:1880:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f8:35:68:12:2e:1c:08:4b:23:5f:4b:92:d2:cd:46:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: Dec 9 18:46:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83f99900344525d7529f9889ee6d657564f578b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0d:b6:70:d9:e9:19:48:09:48:32:7c:75:0d:
e5:d0:cb:6d:b9:90:d1:0e:85:d8:86:76:c9:c5:15:
dd:c6:f2:e7:0c:1d:cf:10:8d:0b:41:31:b8:ea:7d:
c3:10:c9:e0:c8:6c:9a:dc:b0:a1:4c:84:52:11:7c:
c7:ef:89:20:dc:a4:3e:37:d0:33:5b:13:c6:86:0d:
57:67:60:82:07:70:b8:55:75:af:23:e0:06:2b:0c:
c1:ae:07:0d:9d:02:42:b8:3c:4f:88:e5:70:6a:93:
63:0c:39:d6:37:7f:ea:27:c8:b2:e9:1a:22:2d:7b:
51:61:bc:83:0a:61:63:aa:d2:24:66:91:cd:fa:4a:
99:15:93:d3:55:9c:a3:b1:05:18:4f:bb:6e:2d:48:
3c:73:82:4b:87:44:19:1e:cd:ab:86:45:f5:39:36:
00:a2:47:27:ac:e4:dc:d9:f8:90:ae:9c:84:04:f5:
65:d9:74:e5:d4:21:34:0f:85:80:ed:64:64:80:0c:
5d:0b:47:11:de:ce:f8:07:b5:a2:ec:9b:45:45:f5:
f2:57:ec:4f:21:c8:15:96:58:2f:8a:d2:b8:7f:1a:
cd:90:65:d9:88:e8:5b:c8:69:88:25:f2:61:53:a3:
16:ac:e9:70:fd:47:b0:86:c8:ff:13:3f:5d:b2:af:
90:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F9:99:00:34:45:25:D7:52:9F:98:89:EE:6D:65:75:64:F5:78:B3
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/g_mZADRFJddSn5iJ7m1ldWT1eLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.216.0/21
185.20.196.0/22
185.138.120.0/22
185.254.13.0/24
185.254.15.0/24
195.133.220.0/22
IPv6:
2a0b:1880::/47
Signature Algorithm: sha256WithRSAEncryption
4e:b3:75:e1:49:ed:f6:2e:a5:f6:d2:92:a6:5e:c0:96:bb:39:
38:e0:77:05:f6:c6:37:36:eb:6d:be:d4:3e:5f:ac:07:e4:1f:
35:fb:55:01:50:c9:ce:0a:14:d8:b2:e3:e8:9f:8f:4b:ba:ec:
dd:5a:3f:d7:95:1b:bf:05:4b:34:93:ec:e1:9b:85:82:a4:6f:
d0:67:1c:2c:a0:59:ca:0a:cb:55:fe:9d:75:52:9d:05:9e:7b:
d6:22:62:2b:76:7f:00:58:db:57:7a:9b:06:3d:6e:6e:67:f3:
1b:03:30:13:7e:c1:c7:3a:e4:56:42:64:42:36:5e:a5:2d:cf:
94:b1:e4:6f:90:45:a1:be:10:08:48:bb:ec:37:c0:62:1a:53:
05:6f:dd:1f:fe:ca:c7:d0:79:f1:34:e6:cf:3b:4f:ca:42:87:
b0:dc:97:a6:b1:dc:ab:40:7c:49:a4:69:2d:df:ae:ec:49:f0:
50:74:08:ba:4a:c6:8d:95:c8:5f:e4:fc:24:1b:e1:ff:ee:6d:
68:bf:75:3d:65:6e:24:60:7e:80:9c:3d:26:9e:e7:38:29:1c:
4d:a0:9b:c3:84:7f:5e:34:d3:45:ee:1d:d4:19:6e:87:44:97:
e7:36:3d:71:30:86:3c:db:61:0b:04:e8:41:22:5c:40:f2:8e:
00:0d:d6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:27 2024 by rpki-client on console-ams.rpki-client.org