Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/AV8IepW3Cmg687BftUOTA4JE8so.roa
File: AV8IepW3Cmg687BftUOTA4JE8so.roa (raw, json)
Hash identifier: Tp7S75l3cs/NXl0YdRL/QzwZDhoRdPHOt4ZPdfVhXNQ=
Subject key identifier: 01:5F:08:7A:95:B7:0A:68:3A:F3:B0:5F:B5:43:93:03:82:44:F2:CA
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0698399C
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/AV8IepW3Cmg687BftUOTA4JE8so.roa
Signing time: Mon 27 Jun 2022 15:49:56 +0000
ROA not before: Mon 27 Jun 2022 15:49:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.112.58.0/23 maxlen: 24
185.177.238.0/23 maxlen: 24
185.177.237.0/24 maxlen: 24
185.79.138.0/24 maxlen: 24
185.100.159.0/24 maxlen: 24
185.24.108.0/23 maxlen: 24
185.77.138.0/23 maxlen: 24
89.19.56.0/22 maxlen: 24
185.113.138.0/23 maxlen: 24
185.175.224.0/23 maxlen: 24
185.95.230.0/23 maxlen: 24
185.68.244.0/23 maxlen: 24
185.105.46.0/23 maxlen: 24
213.170.223.0/24 maxlen: 24
185.102.114.0/23 maxlen: 24
185.182.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110639516 (0x698399c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jun 27 15:49:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=015f087a95b70a683af3b05fb54393038244f2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a1:80:bc:07:4d:29:c9:98:c1:bd:2f:89:ec:
f1:3f:b1:63:d4:7a:50:01:7a:ff:36:ea:9e:db:4e:
03:51:dc:65:7b:2f:04:20:fd:bf:c3:02:ff:63:55:
8c:c2:cb:83:03:40:c9:db:a4:62:e5:5f:ad:b5:5b:
52:7c:cc:48:02:bb:21:55:19:28:48:d7:4f:ea:da:
70:a1:7a:fc:bf:f6:b7:c1:09:b5:c4:69:03:fe:0b:
fe:ef:e1:6c:ba:87:04:0f:59:aa:a7:80:36:50:f8:
ac:fb:0a:a0:8e:92:ba:df:79:5e:b2:ce:8f:2a:a5:
06:c5:b1:3d:98:83:a8:0e:23:c8:8c:c0:80:1c:f8:
b4:53:08:21:27:02:5c:81:ca:73:84:b6:b8:2d:be:
d7:7a:ef:cb:90:35:79:64:60:d5:b4:bf:3e:4c:13:
21:57:18:8a:d7:78:44:f8:1c:70:9f:88:c5:64:da:
6e:c4:28:ca:e3:3a:22:7a:40:84:ce:83:80:87:52:
2a:0a:89:6e:05:e1:a9:40:be:2e:14:14:ca:4d:88:
56:72:49:0a:ff:a3:a7:d9:17:4d:36:50:a3:ae:41:
2c:69:15:2a:5b:c1:6e:1d:26:c6:a7:32:5a:0d:db:
ce:ff:3a:9e:04:33:ec:0f:89:96:f0:8e:27:78:e6:
59:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5F:08:7A:95:B7:0A:68:3A:F3:B0:5F:B5:43:93:03:82:44:F2:CA
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/AV8IepW3Cmg687BftUOTA4JE8so.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.56.0/22
185.24.108.0/23
185.68.244.0/23
185.77.138.0/23
185.79.138.0/24
185.95.230.0/23
185.100.159.0/24
185.102.114.0/23
185.105.46.0/23
185.112.58.0/23
185.113.138.0/23
185.175.224.0/23
185.177.237.0-185.177.239.255
185.182.130.0/23
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:80:b7:1f:50:3c:ac:9a:eb:68:95:99:ed:45:53:b3:82:25:
75:a7:c6:3e:ac:90:db:b5:8d:21:a3:85:f9:13:82:90:87:43:
d0:20:da:82:29:b9:7a:62:e4:b3:d9:c3:93:05:9b:85:80:f4:
13:0a:0a:31:f1:2d:38:08:1d:e9:e7:87:f1:30:62:cd:90:df:
ea:99:45:c0:f8:a1:e0:fa:f6:93:09:26:7c:a4:86:f0:6c:76:
e9:8b:c6:de:6a:fd:7d:36:b6:09:c2:fe:ae:d1:68:c6:08:e3:
1b:8a:44:22:0c:53:f3:20:d5:39:cb:a3:69:6b:2b:bb:19:05:
ee:97:6f:db:05:59:c5:e0:87:69:c1:b2:94:2d:7f:95:7b:e3:
9e:82:64:eb:e3:b5:ad:30:68:5c:b4:df:93:4f:84:a2:9f:26:
6a:0d:b9:47:1d:3e:dc:4a:10:c3:35:d5:8d:01:d8:3a:03:ec:
93:36:ea:7c:46:aa:2e:92:71:09:be:6e:50:4a:fb:6c:69:12:
36:ef:db:49:58:c0:be:c5:45:5f:25:c0:73:70:2a:8a:8c:59:
30:0d:4b:fe:7d:31:e0:37:a0:93:7c:5e:e4:ae:b5:41:1e:4f:
ef:6c:81:73:0e:3e:f1:83:cc:37:87:e6:c0:53:a3:7e:c6:e5:
1d:b9:d7:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org