Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/M_5oHhbYH4mLFvRiA63a8Xz0TgQ.roa
File: M_5oHhbYH4mLFvRiA63a8Xz0TgQ.roa (raw, json)
Hash identifier: UPfMQ9/ie/v/eFEoR4SizIJnogyYR0k5ACqf0kxn/jk=
Subject key identifier: 33:FE:68:1E:16:D8:1F:89:8B:16:F4:62:03:AD:DA:F1:7C:F4:4E:04
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 01835A2BE92103482A7F3505BC94896736B9
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/M_5oHhbYH4mLFvRiA63a8Xz0TgQ.roa
Signing time: Tue 20 Sep 2022 09:12:50 +0000
ROA not before: Tue 20 Sep 2022 09:12:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39608
IP address blocks: 91.216.165.0/24 maxlen: 24
185.53.76.0/23 maxlen: 24
185.53.78.0/24 maxlen: 24
176.39.0.0/16 maxlen: 16
176.39.34.0/23 maxlen: 24
176.39.36.0/23 maxlen: 24
194.33.189.0/24 maxlen: 24
86.111.64.0/19 maxlen: 19
193.107.224.0/22 maxlen: 22
176.38.0.0/16 maxlen: 17
193.93.160.0/22 maxlen: 22
86.111.88.0/21 maxlen: 22
194.50.85.0/24 maxlen: 24
91.194.81.0/24 maxlen: 24
176.36.0.0/16 maxlen: 17
176.36.0.0/14 maxlen: 14
176.37.0.0/16 maxlen: 17
194.60.69.0/24 maxlen: 24
2a01:bf20::/32 maxlen: 32
2a01:5800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5a:2b:e9:21:03:48:2a:7f:35:05:bc:94:89:67:36:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Sep 20 09:12:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33fe681e16d81f898b16f46203addaf17cf44e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ad:54:f3:1b:18:48:12:76:58:9b:76:45:1e:
ab:a2:f9:10:4e:ed:2c:db:6a:ff:22:dd:f9:6d:93:
77:7b:58:1d:46:b0:ba:65:0f:f5:7d:72:ff:fb:fa:
7d:b1:58:48:40:cb:00:8a:52:f5:3e:bf:bc:c7:e9:
fd:90:92:45:48:50:51:5e:de:24:d5:b4:cc:15:bf:
24:c5:fa:49:21:3a:bc:3f:97:36:a4:98:df:d0:e2:
54:60:2a:ca:63:a1:f1:35:1d:a6:4c:0d:1a:af:ba:
90:65:0d:f5:77:6f:03:9a:40:d0:f4:d1:f7:33:e3:
fd:94:ff:50:fd:5f:0d:de:0d:88:db:af:6b:54:ba:
f1:26:37:72:ea:15:4e:d6:09:6e:06:5d:a5:7e:5a:
84:be:8b:37:ea:09:54:5f:db:ae:6e:bf:2e:41:f3:
db:54:cd:e5:83:6a:de:de:82:22:70:87:d1:92:c8:
34:e2:02:3c:81:5a:dc:cf:7b:e9:40:8e:79:c9:d5:
b2:32:bc:6f:cc:39:6d:36:4a:7d:38:cf:d2:0d:c0:
f1:95:d3:d2:af:2a:81:a2:a4:6f:1e:46:9f:4a:66:
2f:b9:61:a6:1a:ce:6c:4d:73:a3:13:98:43:81:3e:
63:bb:21:e5:0f:07:60:0d:1a:d6:44:38:cf:19:87:
b7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FE:68:1E:16:D8:1F:89:8B:16:F4:62:03:AD:DA:F1:7C:F4:4E:04
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/M_5oHhbYH4mLFvRiA63a8Xz0TgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.64.0/19
91.194.81.0/24
91.216.165.0/24
176.36.0.0/14
185.53.76.0-185.53.78.255
193.93.160.0/22
193.107.224.0/22
194.33.189.0/24
194.50.85.0/24
194.60.69.0/24
IPv6:
2a01:5800::/32
2a01:bf20::/32
Signature Algorithm: sha256WithRSAEncryption
4f:0a:72:6c:dd:6d:0e:1d:95:bf:9f:c0:90:69:f7:11:fd:57:
eb:55:c9:59:44:d0:1d:0b:ca:f0:b1:88:8c:54:ff:b0:b2:16:
3c:9c:15:cf:9a:1a:8e:6f:6b:60:db:ca:0e:ef:fb:61:c6:a2:
cd:a5:fb:0e:ff:2f:cb:2b:a4:8c:a7:34:99:80:cf:59:7a:ef:
5b:c2:23:89:7f:5d:8f:cf:36:94:53:4e:bc:e2:2e:65:f9:b1:
24:34:40:4e:d6:4d:4a:5e:1b:9a:d9:ff:3d:af:14:a6:41:8a:
68:84:fc:11:e8:f3:1b:a9:1b:7e:94:50:d9:b8:37:47:7e:cb:
e6:d6:26:97:2f:18:5a:58:60:10:4b:7c:76:1e:68:b6:c4:7e:
69:7b:26:fb:dc:6e:c0:42:d5:29:82:0e:29:1d:38:29:32:9b:
15:74:72:d4:03:57:77:61:27:77:9c:71:90:91:90:6a:de:6b:
88:ad:09:a0:63:3b:9a:2c:86:d3:8f:af:96:8f:fa:b4:fb:4a:
b3:a2:a2:1f:6b:49:54:70:9c:0e:99:e3:5f:23:67:7d:22:4b:
d3:cd:d4:6f:4a:65:ba:eb:fc:a4:d8:c8:35:b4:ee:a9:9f:f2:
ba:25:84:17:67:60:ff:c2:35:88:76:69:6e:69:d7:16:6b:bb:
39:47:bf:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org