Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/8jc5YXXi2Scom7jUS1njXERXgZk.roa
File: 8jc5YXXi2Scom7jUS1njXERXgZk.roa (raw, json)
Hash identifier: KvgXW2v4AgQ2cBPk58azblrF8vsTmzeU903/Xt6YRwE=
Subject key identifier: F2:37:39:61:75:E2:D9:27:28:9B:B8:D4:4B:59:E3:5C:44:57:81:99
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 032209E5
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/8jc5YXXi2Scom7jUS1njXERXgZk.roa
Signing time: Sat 01 Jan 2022 01:54:23 +0000
ROA not before: Sat 01 Jan 2022 01:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49334
IP address blocks: 188.132.129.0/24 maxlen: 32
188.132.131.0/24 maxlen: 32
188.132.141.0/24 maxlen: 32
188.132.146.0/24 maxlen: 32
188.132.149.0/24 maxlen: 32
212.68.58.0/24 maxlen: 32
212.68.54.0/24 maxlen: 32
212.68.53.0/24 maxlen: 32
212.68.63.0/24 maxlen: 32
212.68.62.0/24 maxlen: 32
185.17.139.0/24 maxlen: 32
185.17.138.0/24 maxlen: 32
77.92.152.0/24 maxlen: 32
77.92.153.0/24 maxlen: 32
31.210.34.0/24 maxlen: 32
188.132.173.0/24 maxlen: 32
188.132.182.0/24 maxlen: 32
188.132.181.0/24 maxlen: 32
188.132.187.0/24 maxlen: 32
78.135.65.0/24 maxlen: 32
31.210.53.0/24 maxlen: 32
31.210.52.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52562405 (0x32209e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f237396175e2d927289bb8d44b59e35c44578199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a6:6e:af:39:cb:ba:f9:05:98:82:6d:16:51:
88:db:48:cd:ec:62:78:37:d3:3a:47:5f:a9:b0:cc:
fe:70:03:26:9b:18:66:c2:73:bc:8b:43:14:eb:ac:
31:24:de:be:a7:46:18:cb:28:b6:d9:03:dc:ed:57:
1a:9f:50:bc:aa:9e:95:0f:6c:3e:ea:a6:5f:72:fd:
83:9b:bb:70:ff:a5:e7:d6:4b:e6:a4:57:92:11:eb:
2b:e2:76:15:1e:75:ae:11:d9:e3:33:e0:87:45:50:
65:2e:ec:b4:0e:ce:0c:95:eb:e6:4e:95:5b:b5:f1:
b8:40:70:64:67:a2:a6:44:41:24:8f:2c:ba:51:43:
cd:38:22:9a:2f:45:aa:b6:fd:2e:98:bb:4b:ea:0a:
05:92:14:1b:00:5d:d2:cf:71:29:b7:94:e5:67:6c:
b8:0a:44:95:de:2b:35:61:3c:3e:81:3a:59:bf:8d:
8f:3a:7a:9c:08:6e:3f:0c:52:20:51:e4:05:a7:52:
bf:c9:ca:99:3e:90:9a:10:23:68:3f:f8:65:59:f3:
49:5d:f5:68:e6:7b:1a:24:dd:41:95:43:d8:15:f9:
8f:60:69:c2:b3:dd:68:cb:42:b8:11:4d:9f:73:df:
ac:27:61:24:cf:f3:e9:61:b4:46:e6:95:45:c0:90:
5d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:37:39:61:75:E2:D9:27:28:9B:B8:D4:4B:59:E3:5C:44:57:81:99
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/8jc5YXXi2Scom7jUS1njXERXgZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.34.0/24
31.210.52.0/23
77.92.152.0/23
78.135.65.0/24
185.17.138.0/23
188.132.129.0/24
188.132.131.0/24
188.132.141.0/24
188.132.146.0/24
188.132.149.0/24
188.132.173.0/24
188.132.181.0-188.132.182.255
188.132.187.0/24
212.68.53.0-212.68.54.255
212.68.58.0/24
212.68.62.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:80:ca:ae:0d:aa:0d:5e:de:9e:e6:4b:e4:72:0a:ee:73:c0:
14:29:37:03:95:3f:fe:44:42:8f:ea:05:f0:b2:42:8f:c0:4a:
fa:ee:fb:48:32:22:63:68:58:41:d4:70:e1:e0:b0:f0:9c:f6:
29:c9:24:46:a3:90:1a:13:2f:bf:f0:ff:f3:52:8e:42:27:79:
f4:0b:df:f0:1f:7f:e2:ee:e1:7e:0f:08:0e:7f:4d:74:c3:df:
74:83:a9:21:e4:d1:7d:43:bc:83:44:e0:1b:93:17:b7:39:c6:
8e:96:45:fe:21:82:41:eb:63:83:c5:cc:7e:b1:d3:f0:b8:cd:
59:18:3e:b1:d6:44:91:50:6b:c9:70:47:fb:7a:a9:b7:12:9f:
f0:eb:46:2c:28:78:56:96:02:35:3d:b8:f6:26:99:b4:18:c4:
3d:63:ec:95:0e:a5:80:57:2c:5d:99:f0:97:f3:c4:1c:81:c8:
e6:8c:a6:dc:b0:b8:2e:fd:4b:ff:15:15:3b:02:72:5f:4f:b4:
c1:41:f9:2d:b5:8c:8b:85:b0:6a:f1:cb:de:c4:c6:02:c3:19:
73:5f:df:4d:d9:88:a8:3e:7e:0b:2f:b1:7a:f2:90:52:7b:e0:
21:b4:3b:3e:44:cf:dd:f3:2b:0c:a1:d2:00:c4:9c:b8:b2:fb:
23:06:17:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org