Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/4fYve8Q8HKdlnKFRnAzhdkQPADI.roa
File: 4fYve8Q8HKdlnKFRnAzhdkQPADI.roa (raw, json)
Hash identifier: zZgJjw2O8WhN7Lwt+8XTrmeCrFPdZpYAtpY2eYJhxKA=
Subject key identifier: E1:F6:2F:7B:C4:3C:1C:A7:65:9C:A1:51:9C:0C:E1:76:44:0F:00:32
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 05416768
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/4fYve8Q8HKdlnKFRnAzhdkQPADI.roa
Signing time: Tue 08 Feb 2022 19:35:50 +0000
ROA not before: Tue 08 Feb 2022 19:35:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 185.100.156.0/23 maxlen: 24
185.77.136.0/23 maxlen: 24
185.104.148.0/23 maxlen: 24
185.104.150.0/24 maxlen: 24
185.101.200.0/23 maxlen: 24
185.101.202.0/24 maxlen: 24
185.111.24.0/23 maxlen: 24
185.111.26.0/24 maxlen: 24
185.78.78.0/23 maxlen: 24
185.97.76.0/23 maxlen: 24
185.97.78.0/24 maxlen: 24
185.98.42.0/24 maxlen: 24
185.98.40.0/23 maxlen: 24
185.103.60.0/23 maxlen: 24
185.103.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88172392 (0x5416768)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 8 19:35:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1f62f7bc43c1ca7659ca1519c0ce176440f0032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:2f:fb:26:95:f0:57:b5:b4:92:d9:b7:6a:4e:
5d:76:a9:1e:71:41:db:9e:9a:11:93:fd:7b:0c:65:
7c:80:de:7a:04:50:1d:29:07:cc:11:04:16:25:7c:
21:c1:de:b3:45:5a:9f:3b:ad:b9:06:ee:d2:ef:f4:
a8:31:92:91:4c:36:5f:96:57:ed:a1:0c:fe:6a:6e:
54:a8:9b:4b:95:76:e4:ac:90:cf:ee:05:e5:d9:fc:
0d:db:2e:23:e1:e6:b7:6e:07:8f:e1:a7:fb:37:6c:
8a:cd:0f:ed:4e:6a:14:86:1d:c2:2a:aa:b6:27:7d:
2f:76:03:26:21:da:bd:76:c8:27:28:c0:d0:02:99:
07:6c:05:5e:83:0d:db:cc:e5:60:36:0c:c3:ce:da:
1a:14:0e:c9:dc:8c:f3:a2:ed:ed:b8:96:f4:de:51:
7f:e0:9d:01:e1:14:40:5b:8a:91:d7:84:bf:c5:69:
a6:09:68:c1:dd:b0:6d:06:e3:e7:95:a3:fb:bd:4c:
be:be:1e:19:be:6d:cd:87:51:79:44:5b:65:fc:28:
52:fb:9b:70:05:7c:9b:39:a6:1a:0b:b6:51:73:46:
ec:82:92:03:34:34:57:1d:82:d4:0f:a2:68:aa:af:
3d:fb:60:54:04:01:df:89:4f:e9:61:d3:8f:14:e5:
0f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F6:2F:7B:C4:3C:1C:A7:65:9C:A1:51:9C:0C:E1:76:44:0F:00:32
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/4fYve8Q8HKdlnKFRnAzhdkQPADI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.136.0/23
185.78.78.0/23
185.97.76.0-185.97.78.255
185.98.40.0-185.98.42.255
185.100.156.0/23
185.101.200.0-185.101.202.255
185.103.60.0-185.103.62.255
185.104.148.0-185.104.150.255
185.111.24.0-185.111.26.255
Signature Algorithm: sha256WithRSAEncryption
42:5b:c4:17:78:9b:27:7e:b4:f0:08:98:49:6d:c0:47:b0:1b:
cb:de:7b:6d:e4:14:07:25:66:c6:93:6a:c1:13:48:66:f7:67:
78:ca:f8:7f:98:5a:d6:e3:e2:74:3e:01:5c:53:f9:e2:7b:ca:
04:e0:94:46:a7:09:0f:bf:af:87:94:f9:b0:75:2b:25:c5:01:
d6:61:6e:57:e9:34:89:ec:23:01:99:f0:32:7a:c0:77:2c:c9:
a0:db:dc:e6:63:91:78:b9:99:8b:72:5b:4c:17:df:06:dc:2f:
44:03:14:e7:28:7f:36:16:82:29:70:37:af:00:7b:27:c5:f4:
ce:df:0a:d5:4e:dc:15:52:1f:7f:8d:07:a6:e8:60:34:60:db:
a4:4a:52:01:d4:2e:a4:d3:b8:d8:6e:b6:ba:6c:b3:70:a1:56:
2d:9f:de:2d:a2:59:c4:df:4d:2e:9d:aa:3d:8d:32:4c:9c:78:
de:d9:6c:10:5e:52:bd:93:73:4c:8d:a2:ab:c8:1c:91:dc:c3:
f5:5f:06:ab:3e:03:5c:c8:27:1e:c7:7c:21:46:72:c7:2d:bd:
09:5e:28:73:b4:25:56:1b:43:04:11:b9:b0:9f:25:e4:b3:9d:
fb:b2:89:24:9e:32:ce:73:d6:d0:58:55:55:f8:69:90:c7:fb:
0f:b1:e2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org