Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/FTKTsACT3tgQn2509PBZMTBkGGk.roa
File: FTKTsACT3tgQn2509PBZMTBkGGk.roa (raw, json)
Hash identifier: rHXyyMrQnVH4WZTEMmj5kecduTrO7bYY2Agu1TKl6j0=
Subject key identifier: 15:32:93:B0:00:93:DE:D8:10:9F:6E:74:F4:F0:59:31:30:64:18:69
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 0185712786EB1922C36E6D42094E3E56755C
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/FTKTsACT3tgQn2509PBZMTBkGGk.roa
Signing time: Mon 02 Jan 2023 06:24:53 +0000
ROA not before: Mon 02 Jan 2023 06:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31376
IP address blocks: 217.119.16.0/20 maxlen: 28
213.108.32.0/21 maxlen: 21
91.215.252.0/23 maxlen: 23
94.125.8.0/21 maxlen: 21
91.190.80.0/21 maxlen: 21
93.92.192.0/21 maxlen: 28
109.71.176.0/21 maxlen: 28
185.42.60.0/22 maxlen: 28
91.219.180.0/22 maxlen: 22
80.79.240.0/21 maxlen: 21
80.79.248.0/22 maxlen: 22
80.79.252.0/23 maxlen: 23
91.215.254.0/24 maxlen: 24
91.215.255.0/24 maxlen: 24
80.249.176.0/20 maxlen: 28
80.73.192.0/20 maxlen: 20
188.93.240.0/21 maxlen: 28
93.190.224.0/21 maxlen: 28
193.110.237.0/24 maxlen: 24
193.110.236.0/22 maxlen: 22
2a02:16e8::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:86:eb:19:22:c3:6e:6d:42:09:4e:3e:56:75:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 2 06:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=153293b00093ded8109f6e74f4f0593130641869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:60:68:89:59:b2:8e:43:52:84:d0:3a:95:9b:
05:11:c4:26:17:35:98:e6:75:01:27:38:11:d8:42:
22:da:9a:47:fc:c3:b6:9e:a8:a3:29:f8:75:2a:4a:
97:fb:56:d1:fc:4c:54:a8:54:12:42:37:d8:23:db:
e7:42:c4:61:9e:93:91:20:c5:f1:59:e4:74:75:b5:
83:7f:07:3f:01:04:d8:89:f0:d5:fb:a3:fa:8f:28:
ac:ab:1a:68:35:9d:85:be:13:2a:90:12:8e:d7:6f:
09:51:54:1a:17:44:44:ad:40:8b:31:14:e3:2f:21:
98:92:e5:9c:d3:d1:07:c9:94:99:5c:e0:04:91:54:
3c:63:23:f2:45:5c:3f:a6:46:80:a7:25:ef:19:de:
f7:13:4a:9b:5e:11:79:97:89:f4:c1:0d:42:24:b5:
0a:15:bd:fa:f7:c2:10:87:2f:5e:11:42:75:e9:01:
54:75:38:44:3f:e2:55:2a:28:38:b5:fb:bc:09:74:
2d:1b:51:d0:b8:f2:63:e7:54:d9:1c:0e:04:3d:ec:
a1:9a:28:4b:d9:a0:cb:36:a0:b7:40:52:ea:d3:69:
fb:57:d6:f5:31:3c:aa:7c:56:10:c3:6f:0c:05:38:
b9:d0:1e:1a:8a:47:df:0a:11:2e:57:bb:36:35:06:
8b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:32:93:B0:00:93:DE:D8:10:9F:6E:74:F4:F0:59:31:30:64:18:69
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/FTKTsACT3tgQn2509PBZMTBkGGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.192.0/20
80.79.240.0-80.79.253.255
80.249.176.0/20
91.190.80.0/21
91.215.252.0/22
91.219.180.0/22
93.92.192.0/21
93.190.224.0/21
94.125.8.0/21
109.71.176.0/21
185.42.60.0/22
188.93.240.0/21
193.110.236.0/22
213.108.32.0/21
217.119.16.0/20
IPv6:
2a02:16e8::/32
Signature Algorithm: sha256WithRSAEncryption
49:b0:2f:ab:0f:b4:52:77:95:d2:86:c9:4a:40:bb:47:5d:5a:
62:82:f0:58:d3:f4:cb:88:d0:c9:b0:6a:e6:df:12:d1:b5:57:
31:4e:68:22:f4:a8:15:c6:ff:ce:6a:8f:60:14:2b:f0:49:61:
0f:58:38:24:02:72:8b:a5:41:2a:2d:c9:e1:9f:16:b2:4e:12:
2d:38:5d:1f:4c:64:ab:d8:3d:5a:26:4d:a7:59:3d:46:93:50:
71:1a:27:fa:06:e9:78:56:eb:6a:66:64:b6:2b:cd:df:e5:17:
eb:cb:ca:33:67:3c:be:3b:74:a2:d9:2a:a2:3b:77:e0:50:7a:
53:30:5e:0d:1f:dc:4f:6c:57:a7:57:74:93:4b:f5:de:cc:48:
46:0d:23:a7:fc:fb:95:82:22:6b:c5:70:55:4c:4f:d7:17:14:
24:a7:53:24:7e:74:1d:d4:66:39:e5:4e:10:95:23:bc:2d:5c:
f7:f3:13:8c:9e:51:10:4c:f8:d0:c0:a6:93:bd:5c:67:65:05:
f7:10:3b:be:6f:81:84:2c:73:9f:f6:89:38:08:e9:ba:da:d0:
ce:04:08:0d:01:32:25:2e:66:95:dc:9c:e2:4a:57:0e:13:c9:
91:c8:3e:ce:e4:87:d7:ac:b8:7f:86:84:03:92:15:d1:d1:75:
2c:75:a2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:16 2025 by rpki-client