Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/9NuJBLm4XlQEphFuFTdGdFPdIFA.roa
File: 9NuJBLm4XlQEphFuFTdGdFPdIFA.roa (raw, json)
Hash identifier: R1s1/iXxLtECN6VGnceOAT6x4Gp/KsGSNwKj/pxCZKI=
Subject key identifier: F4:DB:89:04:B9:B8:5E:54:04:A6:11:6E:15:37:46:74:53:DD:20:50
Certificate issuer: /CN=167782bea46fd271768ff46d9b45c057a9df5481
Certificate serial: 0184E17D7E47B651CD1C53409F320CA1360C
Authority key identifier: 16:77:82:BE:A4:6F:D2:71:76:8F:F4:6D:9B:45:C0:57:A9:DF:54:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FneCvqRv0nF2j_Rtm0XAV6nfVIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/9NuJBLm4XlQEphFuFTdGdFPdIFA.roa
Signing time: Mon 05 Dec 2022 08:53:28 +0000
ROA not before: Mon 05 Dec 2022 08:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205399
IP address blocks: 194.26.108.0/24 maxlen: 24
194.26.109.0/24 maxlen: 24
194.26.115.0/24 maxlen: 24
194.26.114.0/24 maxlen: 24
185.229.13.0/24 maxlen: 24
185.229.12.0/24 maxlen: 24
185.229.12.0/22 maxlen: 24
185.229.15.0/24 maxlen: 24
141.98.118.0/24 maxlen: 24
185.181.208.0/22 maxlen: 24
185.181.208.0/24 maxlen: 24
185.181.210.0/24 maxlen: 24
185.181.209.0/24 maxlen: 24
185.181.211.0/24 maxlen: 24
141.98.117.0/24 maxlen: 24
141.98.116.0/24 maxlen: 24
141.98.119.0/24 maxlen: 24
185.219.132.0/24 maxlen: 24
185.219.134.0/24 maxlen: 24
185.219.133.0/24 maxlen: 24
185.219.135.0/24 maxlen: 24
2a0a:e080::/29 maxlen: 29
2a0d:ae00::/29 maxlen: 48
2a0b:e8c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:7d:7e:47:b6:51:cd:1c:53:40:9f:32:0c:a1:36:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=167782bea46fd271768ff46d9b45c057a9df5481
Validity
Not Before: Dec 5 08:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4db8904b9b85e5404a6116e1537467453dd2050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:40:8e:18:ff:56:23:48:2b:8e:d0:c0:3c:27:
6a:bf:8c:5c:51:d5:82:b2:35:93:6f:2e:a0:8d:b3:
69:3e:9f:56:ba:60:ff:4e:5a:b6:07:31:b4:94:17:
70:b4:18:1a:83:af:ea:13:12:34:08:82:59:9b:38:
a7:85:8c:49:8b:1b:bc:9c:12:9e:97:a1:23:3b:32:
c6:0f:c4:20:77:6b:d5:39:db:e5:3b:0b:86:06:9a:
ab:12:b0:34:c5:55:a6:80:2f:ea:41:00:3e:39:7f:
48:1c:3f:d4:82:ea:86:93:f3:9e:ab:73:51:38:d7:
ca:08:8b:bb:38:b2:ab:bf:08:fe:f5:e1:72:a1:03:
2b:0c:73:e2:68:0f:9f:89:44:66:29:cf:cd:54:34:
85:20:0a:65:f9:c5:c9:9a:f8:80:54:30:4d:3d:53:
9d:07:13:ae:64:06:49:23:3b:44:87:d7:75:f5:2c:
23:d9:13:1f:c8:e5:53:84:89:92:77:4a:1e:f2:a2:
6d:5e:e6:47:7b:de:c9:03:ca:3c:72:91:9d:d6:61:
94:79:24:33:3c:a2:d2:7e:d9:c5:c7:2f:7f:7a:2a:
07:ee:d1:15:e7:ef:f3:e6:1f:aa:5e:b4:90:5c:3c:
cc:11:87:27:39:99:ac:73:1f:b6:98:8e:e6:ea:84:
c4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:DB:89:04:B9:B8:5E:54:04:A6:11:6E:15:37:46:74:53:DD:20:50
X509v3 Authority Key Identifier:
keyid:16:77:82:BE:A4:6F:D2:71:76:8F:F4:6D:9B:45:C0:57:A9:DF:54:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FneCvqRv0nF2j_Rtm0XAV6nfVIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/9NuJBLm4XlQEphFuFTdGdFPdIFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ef0b92-5d85-4792-b551-9a358362829c/1/FneCvqRv0nF2j_Rtm0XAV6nfVIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.116.0/22
185.181.208.0/22
185.219.132.0/22
185.229.12.0/22
194.26.108.0/23
194.26.114.0/23
IPv6:
2a0a:e080::/29
2a0b:e8c0::/29
2a0d:ae00::/29
Signature Algorithm: sha256WithRSAEncryption
70:4e:a3:bd:f0:d7:74:57:3e:97:4e:3e:dc:b0:fa:9d:ee:14:
9d:c7:ac:d7:f1:0d:94:10:ee:a6:1b:49:a1:d9:61:af:5b:11:
23:4d:4f:fd:29:be:27:e5:f4:8d:1f:e8:10:7e:05:1c:47:6c:
71:30:cd:44:47:25:f4:8c:04:c3:7f:c3:95:38:25:20:c6:a7:
ea:d9:0e:5e:e4:f6:03:23:9f:ff:09:42:88:71:a4:47:db:1f:
41:4e:e4:ed:35:d2:ce:34:fa:3c:57:96:ee:bb:6c:5c:d6:bc:
2d:2e:20:09:4f:29:78:e2:ea:04:b3:ee:6e:d7:d3:04:7c:83:
36:9c:a4:ad:78:b0:46:37:a8:a0:9b:a0:62:af:9a:7d:5f:5d:
05:84:89:69:56:da:18:44:a4:26:f7:e7:39:4e:60:76:1f:69:
7b:12:f1:67:d7:50:af:51:27:a9:e1:9c:9a:84:52:f4:16:8d:
76:09:bc:23:77:31:a1:7f:31:b7:82:ab:64:b5:49:81:9a:8e:
41:e9:57:2b:bc:85:b7:06:49:94:db:67:a6:b0:c1:f0:15:5f:
b9:0b:2b:48:27:36:50:de:ca:6c:37:79:f0:3a:21:2d:e2:5c:
64:f8:cd:27:29:54:cc:73:d6:96:b0:03:53:a3:c7:62:67:f9:
f9:f5:be:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-fra.rpki-client.org