Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/jiSdXGcjwSpXnGVS_F__u-WCuMo.roa
File: jiSdXGcjwSpXnGVS_F__u-WCuMo.roa (raw, json)
Hash identifier: ppzEyRkF0f2S+bkmWtFku0eJiRQQom+vBTr0+Wx/RHk=
Subject key identifier: 8E:24:9D:5C:67:23:C1:2A:57:9C:65:52:FC:5F:FF:BB:E5:82:B8:CA
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 0A0FF53F
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/jiSdXGcjwSpXnGVS_F__u-WCuMo.roa
Signing time: Fri 25 Feb 2022 09:44:01 +0000
ROA not before: Fri 25 Feb 2022 09:44:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200943
IP address blocks: 192.44.9.0/24 maxlen: 24
153.96.64.0/22 maxlen: 22
153.96.62.0/23 maxlen: 23
153.96.160.0/21 maxlen: 21
192.102.149.0/24 maxlen: 24
192.102.146.0/23 maxlen: 23
192.102.157.0/24 maxlen: 24
192.102.154.0/23 maxlen: 23
192.102.166.0/24 maxlen: 24
192.88.97.0/24 maxlen: 24
192.102.173.0/24 maxlen: 24
129.233.202.0/24 maxlen: 24
129.233.200.0/23 maxlen: 23
153.96.142.0/24 maxlen: 24
2a03:db80:5460::/48 maxlen: 48
2001:67c:61c::/48 maxlen: 48
2a03:db80:5464::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168817983 (0xa0ff53f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Feb 25 09:44:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e249d5c6723c12a579c6552fc5fffbbe582b8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6e:0c:bb:be:1c:51:d1:33:20:d2:b5:5d:dd:
e4:b0:6a:5d:08:5b:0d:71:e0:bf:70:44:2a:15:cf:
53:18:99:9e:3d:f2:9d:b5:8c:55:0e:35:06:15:78:
71:db:4b:87:cc:c0:60:f0:b5:7e:f1:ac:73:55:0b:
69:e8:e7:ef:a4:90:68:65:a1:27:7f:39:94:20:e1:
70:a1:39:db:e9:03:29:c2:5f:8f:2f:a7:01:fd:59:
cc:8c:f3:71:a7:a9:a1:b3:a2:2c:01:d2:18:b6:72:
65:28:56:60:e0:80:ef:f8:25:e1:5a:57:a2:e5:21:
13:ce:86:5e:2d:71:5d:fd:95:fa:bb:34:86:37:c4:
c3:95:aa:2f:7e:e1:93:1e:70:df:41:75:bf:85:5e:
22:5a:09:6a:42:1c:f8:ff:59:7f:08:75:cf:e5:31:
98:a6:0e:ca:6c:20:07:43:e4:12:82:d8:f1:46:96:
1d:84:37:72:58:52:99:6c:38:65:9d:84:09:c3:1d:
32:4b:26:9a:93:dd:99:70:c2:fc:bd:8a:52:80:43:
69:58:18:04:ca:89:eb:91:60:c9:38:44:5a:2f:8d:
a4:17:65:9d:50:fc:27:6b:40:bb:46:fd:51:84:fb:
6f:17:a9:d5:7a:e8:07:d4:dd:e2:f9:d9:0f:20:0e:
5a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:24:9D:5C:67:23:C1:2A:57:9C:65:52:FC:5F:FF:BB:E5:82:B8:CA
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/jiSdXGcjwSpXnGVS_F__u-WCuMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.233.200.0-129.233.202.255
153.96.62.0-153.96.67.255
153.96.142.0/24
153.96.160.0/21
192.44.9.0/24
192.88.97.0/24
192.102.146.0/23
192.102.149.0/24
192.102.154.0/23
192.102.157.0/24
192.102.166.0/24
192.102.173.0/24
IPv6:
2001:67c:61c::/48
2a03:db80:5460::/48
2a03:db80:5464::/48
Signature Algorithm: sha256WithRSAEncryption
ab:8f:0a:19:17:14:73:0e:02:0a:26:60:26:50:cb:30:55:e2:
b4:88:7c:ff:b6:75:d0:10:bd:ff:ff:3d:bf:29:cc:37:41:51:
4b:db:e3:23:5c:be:9f:f9:15:ca:db:a3:60:19:eb:56:b5:30:
61:58:1e:c5:95:35:b1:70:c7:54:bb:dd:57:fd:95:61:29:c9:
09:1b:36:d3:64:76:75:66:46:c7:9d:ab:6f:01:24:6c:ee:11:
81:f4:79:77:72:3d:30:36:b8:2e:d1:50:90:0e:ec:08:06:e2:
ba:c5:79:68:d1:ff:1e:34:77:05:f6:e7:ab:23:b0:a2:09:6e:
0c:df:31:b9:b9:4e:8a:82:ab:05:e3:3b:a9:0d:97:69:40:4e:
78:d6:0a:cd:1e:a0:29:70:16:a9:5d:f8:4a:d6:52:04:5a:9a:
d3:c3:0d:aa:a3:08:f3:a3:00:fa:95:68:df:6d:d0:85:ce:1c:
72:ee:84:49:c4:e6:26:88:fa:98:79:1b:cc:ef:e0:9f:c1:ae:
99:e8:f3:7b:94:25:34:94:b6:6f:7d:b7:dd:46:75:23:a2:71:
3d:d0:0f:38:b8:3c:f3:bc:b3:92:29:87:f4:89:e3:41:90:ed:
66:eb:64:85:32:2b:13:f9:d7:24:c3:38:c8:b4:c8:97:92:2f:
b6:c5:ed:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-fra.rpki-client.org