Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/n4kxgevdxIB2RlYSxS_iAB51aM4.roa
File: n4kxgevdxIB2RlYSxS_iAB51aM4.roa (raw, json)
Hash identifier: 5v3AojNsnV2b7wCTNCaWhLZEuuxaqL3SH9wYpSbYbxs=
Subject key identifier: 9F:89:31:81:EB:DD:C4:80:76:46:56:12:C5:2F:E2:00:1E:75:68:CE
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0184777FA2929519B73E6A87ABC28CDCE21B
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/n4kxgevdxIB2RlYSxS_iAB51aM4.roa
Signing time: Mon 14 Nov 2022 18:56:04 +0000
ROA not before: Mon 14 Nov 2022 18:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.114.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:77:7f:a2:92:95:19:b7:3e:6a:87:ab:c2:8c:dc:e2:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Nov 14 18:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f893181ebddc48076465612c52fe2001e7568ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bd:07:e9:12:3f:7e:35:8f:c0:99:93:ce:66:
d4:71:f5:8a:18:97:cf:09:ee:10:75:60:d5:30:17:
35:70:73:ac:8a:0c:65:c5:fe:df:25:e4:f5:ba:7e:
b7:c7:9c:08:a2:e4:f8:42:97:d1:03:9a:88:76:54:
a2:30:c8:53:dc:b4:44:9e:ab:cc:22:cc:f1:04:ba:
18:18:e1:b8:2d:d7:6c:5d:84:c0:6d:21:a6:7a:76:
33:c7:e4:3a:f7:fd:d0:ff:88:e7:84:85:3a:0c:3b:
9f:e0:64:35:62:29:15:34:4d:11:8c:94:5c:93:60:
e4:2a:0a:23:2d:23:3f:d2:d2:e4:30:38:d9:72:d1:
2b:f0:f3:f1:39:82:43:a0:20:09:aa:bf:0e:c9:4c:
4a:fe:d1:87:40:11:37:a1:61:3a:77:b9:03:55:59:
e0:8e:21:12:00:c4:ef:04:fb:c4:83:c0:3f:58:81:
5f:0c:08:d6:6a:ff:ce:26:51:45:fc:a1:ec:7a:f5:
48:ad:7d:b6:96:a8:31:c7:18:5c:6b:5c:0b:71:47:
49:62:13:e1:1f:3c:cd:db:8a:af:75:cf:46:96:c9:
42:b5:cf:65:6d:ca:c5:ea:c9:1c:9f:a8:b4:d1:e6:
39:c5:8b:4b:61:dc:eb:7b:ee:a9:51:c9:5a:2b:02:
8a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:89:31:81:EB:DD:C4:80:76:46:56:12:C5:2F:E2:00:1E:75:68:CE
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/n4kxgevdxIB2RlYSxS_iAB51aM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.112.0-80.66.118.255
80.66.120.0/23
80.66.123.0-80.66.124.255
89.42.70.0/24
89.44.150.0/24
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:7b:8e:75:73:e0:3d:51:1c:10:8c:9c:bc:90:1f:d0:12:c4:
8d:28:97:30:a2:53:cc:3a:d1:0a:18:0e:9d:f3:b1:6e:ec:84:
53:b8:1a:d9:10:06:b1:e0:46:e1:3a:76:a3:0e:ff:9e:ff:d8:
f7:57:72:2f:74:4d:06:e0:a0:1f:62:3d:48:52:29:62:42:0d:
0d:06:32:1d:7e:89:f5:ca:31:5c:43:81:c7:f1:b4:d8:6f:9f:
b5:ae:28:be:30:4a:69:30:48:1b:c0:6c:db:bc:9d:12:18:91:
c1:aa:c6:bc:5c:06:74:97:bf:e1:06:c6:a0:b7:6c:4f:8e:8a:
70:81:7a:c8:2e:cf:e9:1f:9d:35:8f:d1:3c:c1:3c:46:bc:4e:
e4:70:8b:1f:ab:27:a4:4f:1e:2f:1b:dd:02:51:ff:e0:20:48:
1e:42:d5:3d:0b:cc:dc:10:24:42:5a:69:84:9b:55:f4:25:db:
57:0f:e9:c3:50:af:23:6b:a4:90:72:61:f6:33:5e:8a:c7:35:
45:10:0d:f2:62:fb:ba:2e:0e:e3:bc:53:56:78:58:74:de:11:
ce:0a:b3:73:79:c0:1e:45:bd:14:72:5e:3c:b9:9d:f9:08:9d:
e8:8a:03:bd:9f:ad:fd:08:98:69:65:67:bf:4f:64:b8:6f:29:
03:91:2c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org