Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/9cf95f-73d3-4e4f-a979-d8bd2f56bc8c/1/ENuL9zyPed95QaWrOTqpUyGKUZk.roa
File: ENuL9zyPed95QaWrOTqpUyGKUZk.roa (raw, json)
Hash identifier: T2LgPHR1CEXw+8tuelGBO8TvwPJXYq6itbwDPlsIy6M=
Subject key identifier: 10:DB:8B:F7:3C:8F:79:DF:79:41:A5:AB:39:3A:A9:53:21:8A:51:99
Certificate issuer: /CN=d031655023bd141731d56fb8453ff0514f728865
Certificate serial: 0369418E
Authority key identifier: D0:31:65:50:23:BD:14:17:31:D5:6F:B8:45:3F:F0:51:4F:72:88:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DFlUCO9FBcx1W-4RT_wUU9yiGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/9cf95f-73d3-4e4f-a979-d8bd2f56bc8c/1/ENuL9zyPed95QaWrOTqpUyGKUZk.roa
Signing time: Sat 01 Jan 2022 15:00:16 +0000
ROA not before: Sat 01 Jan 2022 15:00:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59862
IP address blocks: 176.223.92.0/22 maxlen: 22
188.215.20.0/22 maxlen: 22
188.215.20.0/24 maxlen: 24
93.119.20.0/24 maxlen: 24
93.119.20.0/23 maxlen: 23
188.215.22.0/24 maxlen: 24
93.119.22.0/24 maxlen: 24
188.215.21.0/24 maxlen: 24
93.119.21.0/24 maxlen: 24
188.215.23.0/24 maxlen: 24
85.204.172.0/22 maxlen: 22
85.204.172.0/24 maxlen: 24
85.204.173.0/24 maxlen: 24
85.204.175.0/24 maxlen: 24
85.204.174.0/24 maxlen: 24
185.63.88.0/24 maxlen: 24
185.63.88.0/22 maxlen: 22
176.223.88.0/22 maxlen: 22
176.223.88.0/21 maxlen: 21
185.63.90.0/24 maxlen: 24
185.63.89.0/24 maxlen: 24
185.63.91.0/24 maxlen: 24
153.92.176.0/22 maxlen: 22
153.92.177.0/24 maxlen: 24
153.92.176.0/24 maxlen: 24
153.92.178.0/24 maxlen: 24
153.92.179.0/24 maxlen: 24
2a03:a60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57229710 (0x369418e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d031655023bd141731d56fb8453ff0514f728865
Validity
Not Before: Jan 1 15:00:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10db8bf73c8f79df7941a5ab393aa953218a5199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b7:22:a9:22:ba:68:3a:7c:1f:4d:97:a1:cf:
1a:e1:3b:af:fe:43:69:b6:7e:f0:6b:10:d1:8d:ac:
02:95:c5:c8:bb:b0:de:ef:2c:3f:50:7a:40:99:76:
c4:cb:92:dd:b3:78:c5:13:81:dd:05:0e:4c:5f:24:
7c:ff:26:7c:79:4c:ff:38:a8:81:f9:cb:79:65:cd:
b5:0a:df:03:19:18:02:70:19:94:8b:84:b3:99:7d:
54:ec:6d:a7:87:95:eb:38:da:8d:18:43:d8:89:88:
20:91:94:21:dd:76:56:74:4b:48:d7:b0:8f:72:b4:
44:18:3c:77:09:df:ae:a8:fe:af:1e:87:aa:bd:1f:
1a:db:62:5d:59:45:c7:eb:f4:76:ee:d7:b0:00:fb:
2c:7d:9c:35:01:8c:79:98:e0:15:83:67:55:91:07:
e0:80:e3:09:94:f4:14:b9:07:8f:ff:76:13:69:a1:
d6:9f:9b:28:e3:7a:60:e8:26:f1:60:c5:3b:7c:f5:
e4:70:8b:13:ce:86:96:6f:57:6a:a4:2d:45:2d:48:
e8:7b:67:bc:11:e5:ee:6f:e6:21:32:db:a4:93:aa:
e8:81:96:a1:9b:24:20:16:ee:d4:ee:17:33:bd:d7:
71:06:a4:65:d8:57:f7:f3:d6:0f:20:47:f0:8d:3c:
12:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:DB:8B:F7:3C:8F:79:DF:79:41:A5:AB:39:3A:A9:53:21:8A:51:99
X509v3 Authority Key Identifier:
keyid:D0:31:65:50:23:BD:14:17:31:D5:6F:B8:45:3F:F0:51:4F:72:88:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DFlUCO9FBcx1W-4RT_wUU9yiGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/9cf95f-73d3-4e4f-a979-d8bd2f56bc8c/1/ENuL9zyPed95QaWrOTqpUyGKUZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/9cf95f-73d3-4e4f-a979-d8bd2f56bc8c/1/0DFlUCO9FBcx1W-4RT_wUU9yiGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.172.0/22
93.119.20.0-93.119.22.255
153.92.176.0/22
176.223.88.0/21
185.63.88.0/22
188.215.20.0/22
IPv6:
2a03:a60::/32
Signature Algorithm: sha256WithRSAEncryption
b9:6c:80:1d:a2:94:4f:b2:fe:54:ca:f0:7e:a4:d7:41:00:ed:
5f:47:51:98:39:d6:9b:52:17:9e:d6:fa:3e:90:60:cd:e8:35:
73:a5:92:c9:78:b3:c4:be:7b:e6:9e:b1:5e:29:09:dd:5d:de:
ab:70:bf:28:3c:b8:8c:a9:b7:4f:13:5a:6d:9d:eb:bc:bc:cb:
5c:fe:88:8b:47:7f:83:fb:9e:87:20:e1:ee:ed:7c:2d:7a:0e:
92:89:da:26:a7:fd:41:e6:cf:4d:58:08:2d:ad:b7:2c:f5:1f:
95:42:02:67:09:c3:53:39:89:06:a2:84:0f:2f:4e:b4:26:ea:
78:48:b0:4f:58:71:c3:76:9d:ab:d5:79:56:f1:65:75:91:af:
4d:e1:40:7a:46:88:2f:88:9e:67:ac:a7:c2:95:63:e8:51:4f:
bd:50:9c:34:3f:01:a5:74:1d:f0:11:f2:15:48:1c:78:ab:20:
0e:c2:3b:0c:d0:4c:c7:d2:d4:54:ad:f9:ff:82:67:d4:43:fe:
ce:e2:b6:bf:28:a1:77:83:27:ec:ac:cf:f3:87:d9:02:dc:0a:
b8:d7:81:9c:56:c2:46:8e:3d:c0:32:24:de:b1:6b:0f:e9:2b:
f9:2d:67:a2:82:7e:7f:fd:69:88:91:3f:5d:f9:17:f7:59:03:
41:b6:46:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:59 2023 by rpki-client on console-fra.rpki-client.org