Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/_qumaDdLW6_aCZ3KLIYjX7vbpJw.roa
File: _qumaDdLW6_aCZ3KLIYjX7vbpJw.roa (raw, json)
Hash identifier: cVFOhg4+3J8VTemXAeJV9ZbC87/8OVGQzCUp/gbPY20=
Subject key identifier: FE:AB:A6:68:37:4B:5B:AF:DA:09:9D:CA:2C:86:23:5F:BB:DB:A4:9C
Certificate issuer: /CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Certificate serial: 295E0C4B
Authority key identifier: 0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/_qumaDdLW6_aCZ3KLIYjX7vbpJw.roa
Signing time: Sat 01 Jan 2022 10:03:59 +0000
ROA not before: Sat 01 Jan 2022 10:03:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 79.112.0.0/13 maxlen: 24
213.157.189.0/24 maxlen: 24
185.129.36.0/22 maxlen: 22
188.26.128.0/18 maxlen: 24
212.93.128.0/19 maxlen: 24
86.127.54.0/24 maxlen: 24
86.127.59.0/24 maxlen: 24
212.93.143.0/24 maxlen: 24
79.112.0.0/14 maxlen: 24
213.157.160.0/19 maxlen: 24
188.26.224.0/19 maxlen: 24
194.102.81.0/24 maxlen: 24
81.18.64.0/19 maxlen: 24
5.12.0.0/14 maxlen: 24
82.76.0.0/14 maxlen: 24
93.113.40.0/22 maxlen: 24
84.232.128.0/17 maxlen: 24
188.27.0.0/16 maxlen: 24
79.118.0.0/15 maxlen: 24
86.120.0.0/13 maxlen: 24
82.137.16.0/20 maxlen: 24
81.196.0.0/16 maxlen: 24
82.137.32.0/19 maxlen: 24
188.26.0.0/17 maxlen: 24
5.2.128.0/17 maxlen: 24
79.117.0.0/16 maxlen: 24
188.24.0.0/15 maxlen: 24
212.54.96.0/19 maxlen: 24
62.231.64.0/18 maxlen: 24
212.54.122.0/24 maxlen: 24
212.54.123.0/24 maxlen: 24
212.54.120.0/24 maxlen: 24
82.137.0.0/21 maxlen: 24
82.137.0.0/18 maxlen: 24
89.46.12.0/22 maxlen: 24
2a02:2f00::/28 maxlen: 48
2a02:2f0c:8002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 694029387 (0x295e0c4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b556acb5f3b961b5cc24a2995f34ee91f79dc16
Validity
Not Before: Jan 1 10:03:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=feaba668374b5bafda099dca2c86235fbbdba49c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3f:bd:99:d4:76:30:02:6e:1a:31:b6:ff:28:
f7:53:64:48:1e:19:f8:98:b5:80:f9:a6:19:40:ff:
a0:56:90:b6:7f:dc:bf:8c:ab:27:7d:8a:a0:6f:20:
05:67:82:6c:5a:55:90:2e:62:fe:00:43:5e:d3:05:
b1:a3:35:98:f9:28:8e:85:ec:c6:e1:9c:d8:24:a6:
78:c9:f4:b2:bb:f2:0e:c5:f1:33:9f:5e:e7:9e:07:
e1:43:b3:bd:43:9c:6e:d1:7c:51:18:57:b4:d9:1b:
e5:8d:2f:8a:7c:2f:37:50:69:7f:ba:11:f3:78:17:
66:33:47:9d:15:66:54:37:e5:56:79:25:c3:be:63:
bf:e0:ae:b6:a7:2c:fa:2a:20:6c:7d:16:c4:52:7a:
22:59:09:36:40:9f:41:ad:0d:06:bf:94:0a:d8:3a:
9c:6b:37:bc:82:be:0b:d1:7e:59:b4:05:29:df:ea:
de:c0:21:07:62:e2:3d:04:b9:62:03:73:35:db:6b:
b5:ca:7d:37:0b:a9:de:88:2e:6f:2d:34:1e:b6:39:
87:7a:ab:4c:8b:72:5a:65:6e:e1:87:8a:4f:6d:14:
bc:e4:b5:82:c3:8c:f9:69:41:45:67:28:05:eb:2f:
ca:0b:1f:09:1f:dc:88:15:cb:fc:50:ef:1f:2f:22:
f7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AB:A6:68:37:4B:5B:AF:DA:09:9D:CA:2C:86:23:5F:BB:DB:A4:9C
X509v3 Authority Key Identifier:
keyid:0B:55:6A:CB:5F:3B:96:1B:5C:C2:4A:29:95:F3:4E:E9:1F:79:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1Vqy187lhtcwkoplfNO6R953BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/_qumaDdLW6_aCZ3KLIYjX7vbpJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/829fdf-ba63-4c23-91d1-d2bbf37dabb4/1/C1Vqy187lhtcwkoplfNO6R953BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.2.128.0/17
5.12.0.0/14
62.231.64.0/18
79.112.0.0/13
81.18.64.0/19
81.196.0.0/16
82.76.0.0/14
82.137.0.0/18
84.232.128.0/17
86.120.0.0/13
89.46.12.0/22
93.113.40.0/22
185.129.36.0/22
188.24.0.0-188.26.191.255
188.26.224.0-188.27.255.255
194.102.81.0/24
212.54.96.0/19
212.93.128.0/19
213.157.160.0/19
IPv6:
2a02:2f00::/28
Signature Algorithm: sha256WithRSAEncryption
7a:c3:b5:17:76:8a:1e:3f:ce:b0:de:c3:08:c2:f6:1f:81:c6:
7a:c7:5a:51:ef:35:d5:2d:15:e1:bd:9e:25:8f:80:54:fd:e1:
ea:e1:c4:3a:56:af:b7:e6:0c:49:c1:9b:a8:53:17:64:de:f2:
66:14:2c:2b:46:75:f3:93:ba:fa:c9:de:a6:c2:9d:fa:49:3f:
1c:61:4e:0f:64:bf:d6:86:45:2e:c3:55:75:f8:ea:e7:eb:f7:
53:64:93:08:a7:4d:f1:cd:0b:ac:81:04:78:b3:82:73:99:71:
23:ff:3e:cc:2d:2c:8f:42:64:08:64:c9:4a:79:59:08:30:c2:
91:b6:b7:30:74:c9:61:85:e0:c8:7e:4b:6a:63:c9:52:f3:4e:
df:73:6e:e9:78:11:a9:50:d2:2a:99:c4:49:ce:4e:b5:84:10:
ee:c1:eb:d2:93:d0:b1:02:1d:d9:a9:39:97:4e:92:da:3e:ff:
19:60:0c:1d:f2:42:6c:6f:02:83:fd:4a:03:73:63:9e:60:7e:
b0:ca:08:1d:ed:6c:51:cc:54:53:ce:74:6e:04:9c:55:7e:dd:
70:45:3d:cf:20:0c:3f:7b:f9:25:82:86:da:e4:1b:39:f8:e9:
df:65:5f:29:98:e1:54:08:03:70:1b:b6:7b:e3:5f:de:48:43:
73:1b:c0:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:19 2023 by rpki-client on console-ams.rpki-client.org