Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/gVbwAbru6vpTteTQZoDTKcXfjN4.roa
File: gVbwAbru6vpTteTQZoDTKcXfjN4.roa (raw, json)
Hash identifier: RqppygVqthNtFQOUELvWsme3sw6HY3pmsO3TY3qqxX4=
Subject key identifier: 81:56:F0:01:BA:EE:EA:FA:53:B5:E4:D0:66:80:D3:29:C5:DF:8C:DE
Certificate issuer: /CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38
Certificate serial: 0B26B749
Authority key identifier: 31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/gVbwAbru6vpTteTQZoDTKcXfjN4.roa
Signing time: Sat 01 Jan 2022 14:57:26 +0000
ROA not before: Sat 01 Jan 2022 14:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43009
IP address blocks: 193.105.74.0/24 maxlen: 24
81.23.249.0/24 maxlen: 24
81.23.250.0/24 maxlen: 24
81.23.251.0/24 maxlen: 24
81.23.252.0/24 maxlen: 24
81.23.248.0/24 maxlen: 24
81.23.253.0/24 maxlen: 24
185.255.9.0/24 maxlen: 24
185.255.10.0/24 maxlen: 24
185.255.11.0/24 maxlen: 24
185.255.8.0/24 maxlen: 24
202.22.160.0/24 maxlen: 24
202.22.164.0/24 maxlen: 24
202.22.165.0/24 maxlen: 24
202.22.166.0/24 maxlen: 24
202.22.161.0/24 maxlen: 24
202.22.162.0/24 maxlen: 24
202.22.163.0/24 maxlen: 24
202.22.171.0/24 maxlen: 24
202.22.172.0/24 maxlen: 24
202.22.168.0/24 maxlen: 24
202.22.169.0/24 maxlen: 24
202.22.170.0/24 maxlen: 24
202.22.167.0/24 maxlen: 24
202.22.173.0/24 maxlen: 24
202.22.174.0/24 maxlen: 24
202.22.175.0/24 maxlen: 24
81.23.254.0/24 maxlen: 24
81.23.255.0/24 maxlen: 24
2a0c:55c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187086665 (0xb26b749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38
Validity
Not Before: Jan 1 14:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8156f001baeeeafa53b5e4d06680d329c5df8cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:67:56:cf:2b:75:e5:fc:c4:5d:77:fe:44:a1:
4a:31:78:39:85:0e:1b:a5:2e:00:51:88:71:d1:04:
79:17:1f:bb:f7:8d:73:4f:c4:31:14:bf:a2:22:82:
5b:96:3f:de:ee:60:cb:7d:13:f1:e6:5c:cd:e4:1c:
e3:ac:98:8e:4f:48:fb:30:4e:48:56:aa:eb:72:1c:
37:bb:5c:ba:dc:49:cd:a7:6a:38:87:ee:18:53:df:
df:bc:87:4a:ea:31:f1:95:9d:55:78:05:db:78:6c:
86:b3:a6:61:29:31:5d:65:b8:2b:38:f0:bd:12:18:
59:0b:bf:e2:8d:6b:ba:81:7c:0e:95:21:2b:3b:b9:
4e:d4:e2:ff:0a:bd:16:97:66:32:f5:54:78:08:7b:
6d:93:ed:9d:2a:bd:bb:e2:e1:05:c2:9e:3a:44:1f:
db:ff:13:ef:9c:b8:af:1a:40:3b:57:97:75:6a:98:
5f:8d:86:7a:8d:b4:9c:a5:f2:10:df:26:47:dc:15:
64:39:47:6f:78:7c:f2:d5:72:d4:8a:3a:1f:6d:70:
39:ec:f7:73:2c:4a:3c:dc:4b:c0:9f:62:ad:6f:f1:
7a:4e:c0:60:4a:a2:0a:b0:2e:9d:d4:e3:6a:cf:11:
b6:18:fc:f2:4f:04:86:f6:f1:30:bc:49:55:35:fc:
10:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:56:F0:01:BA:EE:EA:FA:53:B5:E4:D0:66:80:D3:29:C5:DF:8C:DE
X509v3 Authority Key Identifier:
keyid:31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/gVbwAbru6vpTteTQZoDTKcXfjN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/MeubLbSjvd-MkvxQuXEwQ91W3Dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.23.248.0/21
185.255.8.0/22
193.105.74.0/24
202.22.160.0/20
IPv6:
2a0c:55c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
35:4b:d5:45:66:f3:1d:f0:fc:b1:7a:f0:e0:43:f8:14:f0:2c:
ac:60:51:fd:f0:c6:97:a7:53:ad:d1:75:b8:e9:3d:44:2a:34:
48:7b:90:e6:d1:54:94:79:f5:e0:dd:9c:a9:27:d6:a7:8a:60:
0d:8a:42:b0:29:24:ce:2d:7e:ac:06:5d:da:8b:fd:24:48:fa:
b1:cd:c1:09:4b:e0:9f:22:8a:63:ab:89:2d:72:cf:b2:ca:62:
41:3e:85:ff:9c:39:55:92:bf:66:fc:a1:ba:a8:17:e9:9f:b1:
2c:3f:65:b1:9a:a7:97:b4:4b:32:ed:d7:0b:40:95:dd:a4:f8:
01:1a:ae:79:23:03:9b:af:1d:54:34:6f:0d:f7:91:1f:0b:8e:
4b:75:93:c0:90:56:7f:09:57:ab:80:f1:49:df:c1:71:e1:3a:
cf:83:51:d8:47:22:95:65:cf:24:cd:35:0d:13:32:ac:65:44:
49:a5:b1:c5:67:d5:e0:35:7b:cb:2f:99:1d:f7:e3:72:95:64:
f6:b8:27:04:1c:6a:cf:33:7c:2f:47:9c:3e:a4:12:3d:b9:81:
f0:b0:8c:30:03:23:4c:71:d9:0f:bd:fd:92:57:99:28:6b:a1:
e1:a9:5c:4e:33:f9:f4:fb:57:e7:ca:1c:56:93:b0:a0:6c:1f:
6b:54:bd:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:34 2024 by rpki-client on console-ams.rpki-client.org