Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/un_cc-fRVB3bFGzOtpR8zjmgvCM.roa
File: un_cc-fRVB3bFGzOtpR8zjmgvCM.roa (raw, json)
Hash identifier: n0nDzhpdgUYKl9jwy9ez1mK/RfJCsJ2DndrDgnc4evU=
Subject key identifier: BA:7F:DC:73:E7:D1:54:1D:DB:14:6C:CE:B6:94:7C:CE:39:A0:BC:23
Certificate issuer: /CN=b06551937efc96e145e33a1ebca24492dc120ecb
Certificate serial: 0183FA89177229680BE35CD47AD9D5B1E002
Authority key identifier: B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/un_cc-fRVB3bFGzOtpR8zjmgvCM.roa
Signing time: Fri 21 Oct 2022 12:33:51 +0000
ROA not before: Fri 21 Oct 2022 12:33:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47288
IP address blocks: 193.218.105.0/24 maxlen: 24
193.218.121.0/24 maxlen: 24
193.218.40.0/24 maxlen: 24
193.218.43.0/24 maxlen: 24
93.184.144.0/24 maxlen: 24
93.184.145.0/24 maxlen: 24
93.184.147.0/24 maxlen: 24
93.184.146.0/24 maxlen: 24
93.184.149.0/24 maxlen: 24
93.184.148.0/24 maxlen: 24
93.184.151.0/24 maxlen: 24
93.184.150.0/24 maxlen: 24
93.184.152.0/24 maxlen: 24
93.184.157.0/24 maxlen: 24
93.184.159.0/24 maxlen: 24
93.184.158.0/24 maxlen: 24
93.184.154.0/24 maxlen: 24
93.184.153.0/24 maxlen: 24
93.184.156.0/24 maxlen: 24
93.184.155.0/24 maxlen: 24
185.168.152.0/24 maxlen: 24
185.168.154.0/24 maxlen: 24
185.168.154.0/23 maxlen: 23
185.168.153.0/24 maxlen: 24
185.168.155.0/24 maxlen: 24
2a00:dc00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:89:17:72:29:68:0b:e3:5c:d4:7a:d9:d5:b1:e0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06551937efc96e145e33a1ebca24492dc120ecb
Validity
Not Before: Oct 21 12:33:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba7fdc73e7d1541ddb146cceb6947cce39a0bc23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:29:51:7d:c5:a0:e8:2f:6f:0d:48:88:05:c7:
14:6c:9a:0e:47:3c:75:0d:ac:3c:ae:5d:ec:b1:cb:
e5:e0:1f:a8:13:fe:16:ab:6f:d0:d3:6d:d1:41:35:
b9:22:e8:2f:b8:5d:da:01:5e:8a:35:fd:fd:41:95:
be:ed:2f:9e:9e:ad:36:c1:9e:ce:f8:9a:58:ae:d6:
da:e9:21:19:81:71:5f:c1:1f:2e:0b:73:d3:32:17:
ab:51:9d:aa:fe:82:41:c4:06:e0:ac:1d:c1:01:5d:
c7:e2:a0:b6:c2:2e:5c:dd:1a:cd:22:ad:0e:61:7f:
01:63:1c:c9:07:39:3d:cd:61:8c:e0:6d:c8:47:16:
f3:73:ab:1b:1f:8e:2f:5a:fb:2a:e6:a7:81:26:6f:
f6:6f:d9:08:9a:3c:a3:70:c3:b8:b0:3f:a1:f7:8d:
b5:a3:1d:21:84:67:36:71:f3:af:af:d6:6f:39:4b:
23:26:cd:8b:b4:39:94:0a:f1:23:8a:cd:a8:65:f0:
6c:f7:ec:81:c7:d5:51:10:7e:89:88:09:1e:57:22:
7d:30:da:e4:07:26:a4:cc:e2:c8:bb:e7:e7:39:08:
ed:b5:77:da:3b:f3:18:22:d6:4a:58:1d:cf:30:59:
39:d4:dd:45:75:82:62:22:1e:29:80:cb:df:92:e4:
d0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7F:DC:73:E7:D1:54:1D:DB:14:6C:CE:B6:94:7C:CE:39:A0:BC:23
X509v3 Authority Key Identifier:
keyid:B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/un_cc-fRVB3bFGzOtpR8zjmgvCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.184.144.0/20
185.168.152.0/22
193.218.40.0/24
193.218.43.0/24
193.218.105.0/24
193.218.121.0/24
IPv6:
2a00:dc00::/32
Signature Algorithm: sha256WithRSAEncryption
67:6a:80:f3:4d:e8:8e:49:6c:53:88:ca:b6:3b:0e:4c:7e:5c:
c6:4c:61:64:e4:11:4a:a3:e1:18:c6:74:30:4b:3b:dc:3e:e4:
3c:b7:89:be:69:3c:c1:ce:93:df:aa:35:28:c6:55:c8:1a:c2:
b6:61:21:ac:83:d1:c9:fc:cd:34:9c:22:59:b0:6a:e3:6e:b0:
8d:3d:1c:2d:05:88:cf:46:46:f5:39:66:60:b3:e7:0e:9b:50:
58:74:d1:b2:71:32:73:40:8a:eb:c2:e5:84:06:05:dc:89:f4:
bd:b0:34:85:98:88:a2:a0:c0:25:3b:14:0e:30:dc:81:f8:d0:
ba:2c:5a:53:22:ef:8c:07:c9:8f:26:2d:94:54:16:3f:b2:5b:
a1:de:48:a4:c8:a0:c7:0a:25:ae:cd:1a:0f:f2:a1:b0:b6:c7:
29:e2:f7:14:cb:33:91:2d:15:1c:f8:a8:bb:64:15:a9:a5:bb:
8c:f7:5a:77:4a:ec:1e:c0:e0:58:f5:a8:00:54:88:65:12:15:
18:66:26:48:40:3a:18:ef:66:66:ec:36:48:6c:3b:3a:1a:3e:
30:43:71:8f:85:4e:fc:3f:33:19:cd:4d:22:2d:14:55:22:69:
3b:ac:67:52:36:1b:2e:52:f1:d4:2c:f6:fc:a8:ad:0e:6a:79:
5a:d7:18:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:16 2023 by rpki-client on console-fra.rpki-client.org