Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/_cs08xV387yHisvpE6W86ZE3xJE.roa
File: _cs08xV387yHisvpE6W86ZE3xJE.roa (raw, json)
Hash identifier: oKlYODrgDwXrhqAF4pFOj2f1LK6QAxEcsw+Ti3OGUrk=
Subject key identifier: FD:CB:34:F3:15:77:F3:BC:87:8A:CB:E9:13:A5:BC:E9:91:37:C4:91
Certificate issuer: /CN=628a08e28b31bbe5c1812fda90e7e8c8a48335e8
Certificate serial: 02449D
Authority key identifier: 62:8A:08:E2:8B:31:BB:E5:C1:81:2F:DA:90:E7:E8:C8:A4:83:35:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YooI4osxu-XBgS_akOfoyKSDNeg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/_cs08xV387yHisvpE6W86ZE3xJE.roa
Signing time: Mon 10 Jan 2022 20:22:20 +0000
ROA not before: Mon 10 Jan 2022 20:22:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199494
IP address blocks: 193.0.192.0/22 maxlen: 22
193.0.197.0/24 maxlen: 24
193.0.196.0/24 maxlen: 24
176.115.80.0/21 maxlen: 21
91.201.88.0/22 maxlen: 22
83.142.216.0/22 maxlen: 22
83.142.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148637 (0x2449d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=628a08e28b31bbe5c1812fda90e7e8c8a48335e8
Validity
Not Before: Jan 10 20:22:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdcb34f31577f3bc878acbe913a5bce99137c491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:65:d4:82:06:b3:21:60:60:5a:ce:07:aa:80:
1b:0e:4f:9a:c8:52:9e:a9:de:0c:71:5f:33:0a:75:
91:4c:8a:f5:03:11:95:c1:56:71:a0:38:4f:08:db:
5a:6e:96:af:a7:dd:3b:26:c8:17:94:81:25:b2:92:
c4:e1:bb:c2:62:7d:e8:b8:6b:f0:7c:8f:f0:e1:f6:
21:01:c8:55:57:04:00:41:ca:6e:0e:66:94:8f:14:
75:47:9a:1b:22:1a:84:53:ae:76:3c:1d:4b:28:d3:
c8:e6:82:98:75:4d:fc:87:65:40:33:a0:4d:17:31:
92:47:28:ed:b6:98:c7:82:20:46:b9:2b:d8:a3:53:
64:5e:32:4e:31:4a:93:04:9f:e9:a7:4c:7f:df:69:
2a:27:5d:ab:42:6a:9e:82:ab:bf:b4:23:98:7e:18:
5e:ab:d5:e8:6b:f4:5d:8c:3b:69:87:a5:58:a3:08:
4a:3a:33:3e:1e:25:40:8a:2d:a5:88:a6:fb:45:ad:
e7:fe:30:30:c1:0c:60:84:06:c3:61:cc:fa:9e:62:
50:be:67:c5:6f:99:20:0e:97:43:57:94:bb:0f:6a:
f0:1f:4c:3f:d6:59:43:a6:4f:74:15:26:1f:7a:ef:
df:84:f0:42:df:fe:08:c5:0a:1b:76:5b:30:0a:7e:
95:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:CB:34:F3:15:77:F3:BC:87:8A:CB:E9:13:A5:BC:E9:91:37:C4:91
X509v3 Authority Key Identifier:
keyid:62:8A:08:E2:8B:31:BB:E5:C1:81:2F:DA:90:E7:E8:C8:A4:83:35:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YooI4osxu-XBgS_akOfoyKSDNeg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/_cs08xV387yHisvpE6W86ZE3xJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/869325-12c2-4fc0-b19b-0a1d4c022e51/1/YooI4osxu-XBgS_akOfoyKSDNeg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.216.0/21
91.201.88.0/22
176.115.80.0/21
193.0.192.0-193.0.197.255
Signature Algorithm: sha256WithRSAEncryption
9f:81:6d:71:5b:c8:d6:6b:cd:7e:93:88:d7:7a:4f:c9:d0:a1:
ed:65:1b:88:af:d9:1d:64:a7:21:0c:df:1f:27:02:e5:58:f9:
93:49:c6:e8:df:ae:ed:6f:90:45:b6:43:7c:eb:3d:7c:43:2b:
d3:cb:bb:c0:ea:fb:fc:d7:a8:29:aa:ff:5c:4a:b9:de:06:ab:
60:c3:45:b4:5f:54:30:98:42:ec:85:cd:f7:52:8d:31:66:17:
09:fd:8c:5e:2f:eb:b3:51:2f:9c:82:d8:df:ae:5d:b4:09:81:
24:ea:b6:b6:ad:bb:30:ad:b4:3b:9b:3a:97:71:1d:20:2d:4e:
9e:19:79:cf:a1:9d:b9:94:5e:61:d0:83:1a:5c:37:e6:da:50:
03:6f:91:a4:1b:85:1a:42:eb:2e:93:40:fd:2a:c1:f0:b8:9f:
3e:3c:39:5a:4d:46:d1:0e:32:ff:7b:c2:ea:9d:74:d3:3b:c4:
35:f3:b2:3c:13:e3:2f:69:73:d8:26:2a:d7:69:c0:ba:f6:43:
00:b4:94:e8:e6:3c:6a:e9:06:f5:b5:76:dc:21:d1:8b:77:3a:
52:02:fa:38:6b:86:8b:a3:6b:74:38:85:17:df:d3:52:46:25:
1c:1a:71:bb:b9:d4:80:48:bd:1c:bd:60:e1:d9:28:29:c0:66:
6b:89:b6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org