Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/8Zii3DkMtoUbCN3O60yRJLSgMKQ.roa
File: 8Zii3DkMtoUbCN3O60yRJLSgMKQ.roa (raw, json)
Hash identifier: yME4MWARUoS6MLPtXCJ68jly7O16rTC2uNxuWt7RaFU=
Subject key identifier: F1:98:A2:DC:39:0C:B6:85:1B:08:DD:CE:EB:4C:91:24:B4:A0:30:A4
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 018489B92A66100D25A2252DB76A9F428DC4
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/8Zii3DkMtoUbCN3O60yRJLSgMKQ.roa
Signing time: Fri 18 Nov 2022 07:52:04 +0000
ROA not before: Fri 18 Nov 2022 07:52:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39150
IP address blocks: 95.85.85.0/25 maxlen: 25
95.85.85.0/24 maxlen: 24
95.85.83.0/24 maxlen: 24
95.85.83.128/25 maxlen: 25
95.85.83.0/25 maxlen: 25
95.85.85.128/25 maxlen: 25
91.196.139.0/24 maxlen: 24
91.196.138.0/24 maxlen: 24
91.196.137.0/24 maxlen: 24
91.196.136.0/24 maxlen: 24
109.196.133.0/24 maxlen: 24
93.179.121.128/25 maxlen: 25
93.179.121.0/24 maxlen: 24
93.179.121.0/25 maxlen: 25
195.182.8.0/24 maxlen: 24
93.179.69.0/24 maxlen: 24
93.179.68.0/23 maxlen: 23
93.179.68.0/24 maxlen: 24
93.179.66.0/24 maxlen: 24
95.181.213.0/24 maxlen: 24
95.181.212.0/24 maxlen: 24
95.181.212.0/23 maxlen: 23
2a04:8680::/32 maxlen: 32
2a09:d5c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:b9:2a:66:10:0d:25:a2:25:2d:b7:6a:9f:42:8d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Nov 18 07:52:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f198a2dc390cb6851b08ddceeb4c9124b4a030a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:25:af:1c:fa:f6:46:2e:e1:ce:7c:22:cb:50:
be:24:a6:92:73:42:bd:0d:09:db:07:a3:fb:42:68:
60:09:af:46:ba:8c:7d:6f:62:60:36:85:45:6a:05:
12:70:82:45:f1:01:7c:92:73:9b:73:75:af:90:6f:
f7:76:d4:1f:c3:49:f6:6b:d3:d6:55:e6:75:43:2f:
ad:c9:79:b8:9f:80:44:6d:51:87:76:26:c3:ab:a1:
99:97:3b:3b:de:fa:2e:05:13:4c:3f:c9:84:f8:bd:
c1:e9:8c:53:e0:a8:28:1a:a5:e1:3d:63:2c:56:48:
1f:23:88:e1:0c:b9:fd:34:b4:89:be:40:ee:cd:0c:
35:f5:72:59:2c:7f:31:62:c1:19:35:5a:e1:68:42:
82:b1:26:3b:cb:9c:57:fb:2e:be:9e:23:c5:36:90:
51:04:d4:a4:82:c8:83:79:1a:12:e6:61:36:30:b6:
ca:4b:cb:ad:ad:7a:ec:06:73:7a:4e:61:4f:57:da:
86:2c:af:fa:df:95:7d:05:2c:39:b9:70:78:10:92:
9c:3d:1f:45:00:af:4c:25:32:0e:b6:a6:ca:57:35:
ba:27:eb:54:19:b1:70:fa:95:09:f4:14:86:ab:6a:
42:7e:aa:74:01:c5:95:9d:fb:69:c9:04:00:e0:79:
df:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:98:A2:DC:39:0C:B6:85:1B:08:DD:CE:EB:4C:91:24:B4:A0:30:A4
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/8Zii3DkMtoUbCN3O60yRJLSgMKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.136.0/22
93.179.66.0/24
93.179.68.0/23
93.179.121.0/24
95.85.83.0/24
95.85.85.0/24
95.181.212.0/23
109.196.133.0/24
195.182.8.0/24
IPv6:
2a04:8680::/32
2a09:d5c0::/32
Signature Algorithm: sha256WithRSAEncryption
8d:b7:40:2d:e3:84:ed:74:a3:db:2c:21:9f:19:e2:c9:65:ec:
a5:c9:af:48:24:16:1b:d9:7e:db:1c:da:92:f0:c1:37:7d:ff:
14:f5:5e:38:22:77:be:68:94:90:24:16:98:63:6a:81:e5:29:
8a:03:23:50:7a:e3:60:0e:d6:20:bc:0d:7f:bb:de:e3:a1:08:
8d:69:d3:1d:bf:38:f4:3f:ca:b6:78:5c:20:e4:34:fe:e9:fe:
06:db:fa:3f:d5:13:8b:db:c7:6e:f9:03:49:ad:6e:20:7e:be:
66:81:e7:7c:54:08:64:f2:4a:10:85:a2:15:80:13:a9:b6:de:
f9:e4:09:95:04:ce:fa:58:ae:a3:03:af:ab:4f:e0:59:c7:de:
fa:0b:d7:3e:be:89:bc:5f:1d:1b:07:a1:51:0c:bc:82:fa:a8:
21:cd:79:8b:4c:bf:ff:a9:a5:ef:a0:85:0d:62:3e:6f:4d:b8:
1c:2d:c7:8f:2e:5b:a6:0b:4b:17:72:fb:aa:f3:71:f8:40:98:
f8:78:c5:72:66:25:49:ce:97:36:43:34:2e:ac:b5:0c:6b:c7:
e3:c8:18:80:ea:be:d1:75:ee:1a:ca:fa:0a:f1:d7:96:f1:ed:
4a:93:5a:65:c7:86:57:44:ad:d9:4c:33:bc:06:9f:ad:d7:e9:
45:d3:b0:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:22 2024 by rpki-client on console-ams.rpki-client.org