Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/3a8dd0-3875-4eb2-b633-e2665d447d32/1/0VkLnsi28wuzpBXcFSE-gyD70-4.roa
File: 0VkLnsi28wuzpBXcFSE-gyD70-4.roa (raw, json)
Hash identifier: HXfMeIR6lhbcBUqx6wX/0n4CDOeQGeygWN8KeA++eoc=
Subject key identifier: D1:59:0B:9E:C8:B6:F3:0B:B3:A4:15:DC:15:21:3E:83:20:FB:D3:EE
Certificate issuer: /CN=9ae07c94a8a6af7a5d18f4eaaea79e26df932214
Certificate serial: 11563BC8
Authority key identifier: 9A:E0:7C:94:A8:A6:AF:7A:5D:18:F4:EA:AE:A7:9E:26:DF:93:22:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/muB8lKimr3pdGPTqrqeeJt-TIhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/3a8dd0-3875-4eb2-b633-e2665d447d32/1/0VkLnsi28wuzpBXcFSE-gyD70-4.roa
Signing time: Sat 01 Jan 2022 08:02:05 +0000
ROA not before: Sat 01 Jan 2022 08:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8462
IP address blocks: 185.170.84.0/22 maxlen: 22
46.249.128.0/19 maxlen: 19
193.218.98.0/24 maxlen: 24
194.37.88.0/22 maxlen: 22
77.110.160.0/19 maxlen: 19
77.111.128.0/18 maxlen: 18
185.172.44.0/22 maxlen: 22
185.165.108.0/22 maxlen: 22
193.227.196.0/22 maxlen: 22
79.121.104.0/21 maxlen: 21
185.3.136.0/22 maxlen: 22
79.121.112.0/21 maxlen: 21
77.110.128.0/19 maxlen: 19
185.187.248.0/22 maxlen: 22
185.166.136.0/22 maxlen: 22
95.168.64.0/19 maxlen: 19
185.195.52.0/22 maxlen: 22
193.151.116.0/22 maxlen: 22
91.146.128.0/18 maxlen: 18
185.235.112.0/22 maxlen: 22
212.16.128.0/19 maxlen: 19
95.168.32.0/19 maxlen: 19
185.166.132.0/22 maxlen: 22
2a01:5d0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290864072 (0x11563bc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ae07c94a8a6af7a5d18f4eaaea79e26df932214
Validity
Not Before: Jan 1 08:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1590b9ec8b6f30bb3a415dc15213e8320fbd3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b0:37:0b:fa:ff:12:e8:1a:27:3a:8c:9b:54:
83:13:75:08:a4:6a:41:4d:53:85:43:49:07:ef:60:
ac:9d:87:f9:56:ba:d0:22:33:88:32:7c:66:c0:41:
14:2e:1d:71:fa:55:30:59:54:79:32:ad:33:58:20:
44:91:78:57:c0:3c:3e:6d:be:cd:d1:10:51:a0:03:
12:3a:28:d9:df:a5:1b:ba:cb:76:7d:d5:54:0d:31:
bc:56:cb:eb:58:a6:06:e0:7a:4e:86:98:c6:71:d9:
6a:76:4c:51:d6:c5:4a:2d:30:f8:34:71:e6:09:66:
a4:7e:69:28:7f:af:df:93:20:ce:8c:98:69:a7:5c:
9a:30:49:d1:67:47:b3:af:eb:26:2c:c5:e4:4c:c2:
aa:08:e0:2f:de:c1:2d:4e:24:0a:c3:5e:0e:ee:5e:
41:bc:72:64:ed:e9:dd:f5:86:28:be:f1:37:af:8a:
cb:ef:0e:2d:2a:18:ee:6c:fe:ab:8d:9e:31:f5:59:
ea:89:c9:38:93:ec:86:6a:a2:bc:af:be:f6:c4:80:
e8:62:f4:38:ff:dd:4d:58:18:24:76:e4:b8:90:c6:
f9:6f:7f:bd:46:37:c2:ca:20:85:48:75:98:f1:28:
2d:2b:54:c4:99:85:76:9c:34:bd:43:c1:d2:aa:9f:
2c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:59:0B:9E:C8:B6:F3:0B:B3:A4:15:DC:15:21:3E:83:20:FB:D3:EE
X509v3 Authority Key Identifier:
keyid:9A:E0:7C:94:A8:A6:AF:7A:5D:18:F4:EA:AE:A7:9E:26:DF:93:22:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/muB8lKimr3pdGPTqrqeeJt-TIhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3a8dd0-3875-4eb2-b633-e2665d447d32/1/0VkLnsi28wuzpBXcFSE-gyD70-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3a8dd0-3875-4eb2-b633-e2665d447d32/1/muB8lKimr3pdGPTqrqeeJt-TIhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.128.0/19
77.110.128.0/18
77.111.128.0/18
79.121.104.0-79.121.119.255
91.146.128.0/18
95.168.32.0-95.168.95.255
185.3.136.0/22
185.165.108.0/22
185.166.132.0-185.166.139.255
185.170.84.0/22
185.172.44.0/22
185.187.248.0/22
185.195.52.0/22
185.235.112.0/22
193.151.116.0/22
193.218.98.0/24
193.227.196.0/22
194.37.88.0/22
212.16.128.0/19
IPv6:
2a01:5d0::/32
Signature Algorithm: sha256WithRSAEncryption
29:e1:3f:f5:08:2d:da:26:50:d8:08:0b:67:a2:ea:5c:fe:7c:
c6:00:f0:7c:7c:49:92:a0:a6:45:c4:23:50:4e:2b:99:f1:60:
5b:8b:cd:8a:39:b0:9c:75:7d:91:69:8f:94:28:04:6e:88:75:
f2:b2:bb:81:cf:de:e4:c2:64:84:f4:a3:b6:fb:e0:1a:9c:01:
b6:c8:66:2e:f6:97:69:cd:42:73:64:83:f4:71:eb:aa:2c:2f:
8b:5e:57:2f:57:2d:33:05:31:bf:0b:25:93:0c:31:5c:69:65:
8e:04:40:2c:e6:2d:63:16:a9:fa:aa:e4:3d:60:ba:d2:de:0f:
2b:b4:a3:7b:f7:ff:11:0c:33:ff:f6:4b:1e:81:42:a6:c9:5e:
54:ff:12:f4:08:0d:98:f8:ec:18:90:94:07:aa:82:99:14:fe:
5c:e8:26:63:14:43:1b:a6:be:8d:07:08:92:30:1d:ed:f7:ab:
f9:03:98:43:96:72:b0:2b:ef:de:9b:58:8c:19:23:e0:ab:c2:
f4:e3:ef:d5:ff:f9:a7:c8:89:a4:45:6b:e2:ba:b5:fe:f7:c9:
27:ab:4e:d7:7b:53:6e:a8:3d:0d:42:ea:28:fa:e7:da:72:4a:
d1:33:07:02:b4:13:1d:e9:04:a4:c0:18:13:04:08:64:d8:5e:
a2:f2:67:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:46 2023 by rpki-client on console-ams.rpki-client.org