Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7ogLENCtdBUSVwOxbTFV0IlK-Tw.roa
File: 7ogLENCtdBUSVwOxbTFV0IlK-Tw.roa (raw, json)
Hash identifier: MLRqmHtfk6RJrpzQIVOC23EjdTZKISCAAhprxNpj7cI=
Subject key identifier: EE:88:0B:10:D0:AD:74:15:12:57:03:B1:6D:31:55:D0:89:4A:F9:3C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01843968F703C6F1975E29F6D5925E1C7E8D
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7ogLENCtdBUSVwOxbTFV0IlK-Tw.roa
Signing time: Wed 02 Nov 2022 17:34:51 +0000
ROA not before: Wed 02 Nov 2022 17:34:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51812
IP address blocks: 95.46.152.0/23 maxlen: 23
146.120.186.0/23 maxlen: 24
92.253.216.0/23 maxlen: 23
146.120.114.0/23 maxlen: 24
95.46.98.0/23 maxlen: 24
93.171.14.0/23 maxlen: 23
92.38.20.0/23 maxlen: 24
146.120.156.0/23 maxlen: 24
93.171.98.0/23 maxlen: 24
92.38.88.0/23 maxlen: 24
92.38.90.0/23 maxlen: 24
146.158.10.0/23 maxlen: 24
93.170.104.0/23 maxlen: 23
93.170.120.0/23 maxlen: 23
93.170.32.0/23 maxlen: 23
93.171.216.0/23 maxlen: 24
93.170.50.0/23 maxlen: 24
95.47.202.0/23 maxlen: 23
95.46.38.0/23 maxlen: 23
146.120.98.0/23 maxlen: 23
93.170.138.0/23 maxlen: 23
95.47.184.0/23 maxlen: 23
93.170.172.0/23 maxlen: 23
95.46.12.0/23 maxlen: 23
95.46.14.0/23 maxlen: 23
95.47.198.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:68:f7:03:c6:f1:97:5e:29:f6:d5:92:5e:1c:7e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Nov 2 17:34:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee880b10d0ad7415125703b16d3155d0894af93c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e9:51:3f:c0:93:aa:9a:af:15:b4:58:4a:19:
32:a6:ff:9e:36:43:5f:29:53:4f:81:0e:32:32:f4:
87:9d:2f:c9:12:11:c8:4c:41:28:9d:ea:fe:c9:c6:
b6:d0:81:4a:37:79:bc:38:df:50:37:44:8f:76:22:
e5:44:90:70:ce:3c:b4:d5:7c:8c:e8:4b:85:a4:c4:
43:9a:cf:aa:58:d5:3f:ba:e6:df:8d:fe:cc:48:2a:
a7:46:f1:07:6e:e6:e8:88:05:c4:e9:1d:5c:f8:09:
1d:e3:34:77:96:d5:7f:38:b2:e5:b5:6c:7f:3f:79:
01:c1:75:29:0d:73:2c:77:2a:84:9e:66:e5:2d:ec:
91:b0:5a:19:fb:47:37:66:38:2c:32:d6:28:80:3c:
cd:46:96:42:7a:d4:33:4d:27:4a:d4:12:65:dc:84:
bf:5d:c2:a2:6f:25:90:f2:15:97:ae:34:7f:97:48:
51:0a:ff:cb:ee:ad:47:36:7e:b3:8d:0d:ac:28:48:
f6:c5:47:7f:1e:c8:86:be:27:ae:10:c2:30:47:71:
2c:38:42:cb:70:b0:0a:67:e8:79:f3:08:e5:6c:b0:
bf:c8:5c:ef:a8:a5:b9:b8:b8:de:3c:27:74:98:d1:
c1:cb:f0:ae:5a:c7:c4:ce:18:f0:e2:a5:70:69:77:
ae:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:88:0B:10:D0:AD:74:15:12:57:03:B1:6D:31:55:D0:89:4A:F9:3C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/7ogLENCtdBUSVwOxbTFV0IlK-Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.20.0/23
92.38.88.0/22
92.253.216.0/23
93.170.32.0/23
93.170.50.0/23
93.170.104.0/23
93.170.120.0/23
93.170.138.0/23
93.170.172.0/23
93.171.14.0/23
93.171.98.0/23
93.171.216.0/23
95.46.12.0/22
95.46.38.0/23
95.46.98.0/23
95.46.152.0/23
95.47.184.0/23
95.47.198.0/23
95.47.202.0/23
146.120.98.0/23
146.120.114.0/23
146.120.156.0/23
146.120.186.0/23
146.158.10.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:62:3f:cb:82:8b:91:11:d6:01:19:29:6d:1c:05:13:e0:d8:
7c:5e:87:28:a7:11:bf:1f:28:60:6b:93:92:68:1e:69:55:b1:
c6:97:1f:3c:d7:dd:b1:48:22:db:be:ba:11:a1:54:6a:79:21:
24:e7:b5:b3:37:13:88:05:a7:e3:e7:9d:97:34:43:2f:56:f1:
b2:4e:72:a8:31:22:c8:ca:39:c1:7f:71:ca:ee:6f:e5:d9:66:
b2:1f:04:c7:93:d0:41:77:85:14:b8:79:0c:bf:bc:bf:c4:dd:
b4:47:c5:db:c2:63:a3:a0:20:43:7e:11:12:fd:30:89:76:6c:
72:a4:ec:99:3c:c8:1b:3b:6f:10:e1:8f:98:d2:69:f7:f5:08:
7f:06:60:4d:47:8b:b0:a8:c8:02:71:3e:c7:d8:6a:42:eb:8a:
51:e8:de:3c:65:38:7d:d5:28:4d:e3:85:cf:82:24:07:b9:5a:
83:f9:1b:fb:94:d8:e5:75:5a:1d:c2:39:04:6f:40:58:af:ca:
58:e4:ce:c8:ac:63:85:30:a2:60:2b:09:72:77:68:3e:2f:60:
98:64:e0:08:bf:76:bc:34:6f:4b:ac:e7:22:3a:3d:8b:b2:92:
68:f1:c5:18:27:70:9b:bf:ae:6d:88:d3:21:5b:5b:25:66:ab:
0f:cd:b1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 17:43:37 2025 by rpki-client