Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/VpD9B7phrJXpX-TSmUR9MtMUlH0.roa
File: VpD9B7phrJXpX-TSmUR9MtMUlH0.roa (raw, json)
Hash identifier: wZfQA9FJGAMUbJetsOwquQfO8XiCfepunyIYAolkBR4=
Subject key identifier: 56:90:FD:07:BA:61:AC:95:E9:5F:E4:D2:99:44:7D:32:D3:14:94:7D
Certificate issuer: /CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Certificate serial: 05B8A03E
Authority key identifier: D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/VpD9B7phrJXpX-TSmUR9MtMUlH0.roa
Signing time: Wed 23 Feb 2022 12:12:10 +0000
ROA not before: Wed 23 Feb 2022 12:12:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16246
IP address blocks: 77.87.232.0/21 maxlen: 21
95.143.128.0/20 maxlen: 20
91.197.116.0/22 maxlen: 22
92.240.160.0/19 maxlen: 19
94.74.192.0/18 maxlen: 18
188.175.0.0/16 maxlen: 16
82.150.160.0/19 maxlen: 19
78.108.144.0/21 maxlen: 21
213.180.32.0/19 maxlen: 19
78.108.152.0/21 maxlen: 21
178.17.96.0/20 maxlen: 20
86.63.192.0/19 maxlen: 19
2a02:350::/29 maxlen: 29
2a00:d480::/32 maxlen: 32
2a00:1e60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95985726 (0x5b8a03e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Validity
Not Before: Feb 23 12:12:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5690fd07ba61ac95e95fe4d299447d32d314947d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:24:9f:cc:56:13:5e:18:29:21:e9:ae:e0:
eb:05:e2:6d:7f:3e:58:41:21:0c:eb:a0:f1:20:1d:
0a:97:d7:cb:2c:8e:43:2e:3b:7a:2b:ee:26:07:b9:
39:40:d4:a2:0c:5e:2b:b4:e1:77:0e:89:8c:ef:72:
c0:71:81:ac:d8:4e:0f:78:b2:df:f9:dc:ff:d3:0f:
10:13:99:2b:e3:ac:f9:29:1e:06:cb:af:3a:e5:3a:
4d:16:22:bf:f8:d6:bc:c6:9a:01:68:da:df:d1:1b:
b2:78:78:f3:e9:f8:b9:a7:e1:2b:5e:8d:65:75:ed:
05:ba:98:a9:fb:29:22:a2:e5:88:9a:ae:c4:16:32:
47:51:eb:13:e8:a4:ff:05:f1:f7:eb:3e:1c:b3:79:
42:10:ed:af:52:34:38:9a:ee:cf:ec:6a:2a:79:db:
62:a8:f3:72:d3:df:d3:fa:42:42:d0:a9:0a:70:99:
ba:88:cb:9f:3c:d4:21:33:ce:50:56:e8:14:bb:a5:
43:d6:7f:c8:1a:58:1e:86:46:d2:d5:3d:1d:a2:1d:
f2:de:dc:9b:8c:c5:51:e8:8e:69:05:4f:dc:48:98:
ea:08:71:1b:01:80:6d:7f:0c:d9:5b:59:3c:e1:e6:
16:af:c7:84:f2:41:33:92:ec:94:95:ff:ae:b1:d0:
b1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:90:FD:07:BA:61:AC:95:E9:5F:E4:D2:99:44:7D:32:D3:14:94:7D
X509v3 Authority Key Identifier:
keyid:D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/VpD9B7phrJXpX-TSmUR9MtMUlH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/1P8P7Ne_RBSJMXiN_n8g1npnoNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.232.0/21
78.108.144.0/20
82.150.160.0/19
86.63.192.0/19
91.197.116.0/22
92.240.160.0/19
94.74.192.0/18
95.143.128.0/20
178.17.96.0/20
188.175.0.0/16
213.180.32.0/19
IPv6:
2a00:1e60::/32
2a00:d480::/32
2a02:350::/29
Signature Algorithm: sha256WithRSAEncryption
09:f4:e4:e7:07:36:31:ad:9b:26:2b:ea:94:51:f7:69:53:de:
65:f5:a6:01:49:73:ca:6e:9f:c5:26:14:af:4f:f3:fd:92:41:
19:c4:58:36:03:f1:64:66:8e:27:c0:b4:71:65:c1:56:c9:70:
ce:ca:cc:b8:be:25:4f:14:c3:69:cb:a4:57:fa:0e:6f:0a:f6:
4f:e3:7b:32:ee:e6:30:22:b6:26:7e:2a:9d:87:5e:4f:9e:77:
3a:b7:74:b5:a5:00:5d:7c:e0:f6:43:8a:4b:7a:e2:30:28:4e:
2e:fb:9e:68:13:fa:03:1a:e3:6f:02:67:f7:4b:39:18:af:9e:
18:bd:a0:c3:55:10:c0:3e:fa:0e:b5:eb:34:80:2c:13:51:ba:
f4:81:2c:db:5e:bc:3f:0c:bd:36:24:53:ba:a0:3d:80:dd:05:
80:2c:df:c5:5d:38:d0:21:12:52:94:78:a5:57:b1:91:c5:c8:
39:b6:cf:21:a3:a3:c7:b7:cb:6f:b3:c4:a2:4f:bd:bc:47:2b:
a8:8d:8c:56:c0:01:0b:ec:09:be:a2:a7:a1:d4:60:1c:f8:fa:
a0:45:b3:8d:31:02:49:e1:4d:c5:97:b1:ea:6e:da:eb:a2:56:
91:e5:6c:a7:36:99:7e:83:6a:0c:ef:e9:56:ec:a9:6b:4b:2b:
f4:8a:de:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org