Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/IIOqmVqeFPmJs7hS5W7h0o9-LLU.roa
File: IIOqmVqeFPmJs7hS5W7h0o9-LLU.roa (raw, json)
Hash identifier: wfVrUp8W5Xsp3nAXtM3DJGfmKi+ow+CvebDqACaT0K4=
Subject key identifier: 20:83:AA:99:5A:9E:14:F9:89:B3:B8:52:E5:6E:E1:D2:8F:7E:2C:B5
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0677988A
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/IIOqmVqeFPmJs7hS5W7h0o9-LLU.roa
Signing time: Wed 15 Jun 2022 20:08:48 +0000
ROA not before: Wed 15 Jun 2022 20:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209372
IP address blocks: 185.100.156.0/23 maxlen: 24
185.77.136.0/23 maxlen: 24
185.104.150.0/24 maxlen: 24
185.104.148.0/23 maxlen: 24
185.101.202.0/24 maxlen: 24
185.101.200.0/23 maxlen: 24
213.170.222.0/24 maxlen: 24
213.170.223.0/24 maxlen: 24
213.170.220.0/24 maxlen: 24
213.170.221.0/24 maxlen: 24
185.111.24.0/23 maxlen: 24
185.111.26.0/24 maxlen: 24
185.78.78.0/23 maxlen: 24
185.97.78.0/24 maxlen: 24
185.97.76.0/23 maxlen: 24
185.98.42.0/24 maxlen: 24
185.98.40.0/23 maxlen: 24
185.103.62.0/24 maxlen: 24
185.103.60.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108501130 (0x677988a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jun 15 20:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2083aa995a9e14f989b3b852e56ee1d28f7e2cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b8:28:5d:8d:40:26:8d:ac:74:bd:c2:10:f1:
d5:c7:b7:8f:88:63:18:2d:f0:08:41:04:86:60:a1:
e4:17:7f:7f:68:c1:ee:e3:fd:f8:68:9a:0f:cb:5e:
f3:7c:f2:69:58:14:90:4e:5d:82:18:21:46:57:a7:
90:b6:c3:dc:a8:a6:32:7e:45:47:14:70:5a:c1:d6:
4f:dc:d0:1c:41:42:ef:0c:93:82:b4:1e:1d:2c:91:
57:d9:02:a9:d3:8f:96:c3:4c:75:56:c0:b5:2d:36:
89:2f:14:08:1f:15:99:ed:e0:63:56:ec:93:29:ad:
1d:ed:1b:1d:82:c2:fa:5a:30:dc:c6:65:21:43:21:
5e:70:35:4f:d0:2b:b9:4d:49:26:44:0d:7a:3c:1e:
1f:ff:77:b7:d0:12:25:83:bc:27:c8:ae:5c:44:cc:
71:19:a1:01:99:0a:66:c2:bd:2f:88:c9:01:69:ec:
77:57:86:b6:4d:2f:85:76:63:2e:9a:61:82:2d:fd:
2f:49:42:de:97:36:9b:bc:80:2a:ae:ee:01:97:ef:
3f:ec:05:1b:8f:37:59:fd:78:2c:45:5b:22:e5:81:
69:63:94:fe:80:22:e9:95:05:7a:ec:6e:88:d1:af:
99:f9:d6:a1:f4:35:76:b9:38:cc:24:aa:15:d7:95:
60:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:83:AA:99:5A:9E:14:F9:89:B3:B8:52:E5:6E:E1:D2:8F:7E:2C:B5
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/IIOqmVqeFPmJs7hS5W7h0o9-LLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.136.0/23
185.78.78.0/23
185.97.76.0-185.97.78.255
185.98.40.0-185.98.42.255
185.100.156.0/23
185.101.200.0-185.101.202.255
185.103.60.0-185.103.62.255
185.104.148.0-185.104.150.255
185.111.24.0-185.111.26.255
213.170.220.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:e1:ea:b7:e4:a3:ff:be:c9:6b:d4:d5:2a:a1:d5:1c:30:c6:
2f:96:ab:53:37:12:58:64:a5:b5:84:16:78:67:ef:8d:fb:b6:
d9:77:ad:1f:2b:e2:85:11:fc:4c:3c:12:67:fc:5a:cf:c8:81:
b5:8f:76:d7:ae:61:94:0d:fa:b9:f9:d5:be:c6:ed:9c:90:01:
32:8b:19:b6:bf:65:02:e7:97:f3:06:90:a6:a0:67:97:de:51:
13:b4:5f:b6:51:cc:ab:9e:80:39:f0:a5:64:19:25:75:a7:57:
44:ed:8f:0d:6c:32:c5:83:a3:cb:61:d6:31:70:8d:81:ea:fe:
3d:e3:73:1f:d8:69:10:88:f4:7b:67:18:05:19:0f:08:b5:f6:
8f:3c:4d:86:76:09:1c:22:4a:a7:c2:3f:c8:0b:3d:cd:ba:82:
c8:ee:ce:7b:74:1a:34:ec:89:05:91:55:d8:b2:13:be:cf:55:
d0:2e:f5:a3:98:9c:ee:54:39:7f:8d:30:f1:29:0b:4e:88:93:
c6:1f:c8:82:48:ef:27:d3:fe:c2:c6:f6:93:e5:01:e6:dd:20:
bb:2c:21:29:a2:f0:66:07:06:93:75:c6:c4:60:a1:6e:a5:fb:
74:c8:cd:b8:1b:7c:cf:f7:ad:a8:ff:fc:8d:5e:f1:db:4d:f0:
2d:89:dc:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:17 2023 by rpki-client on console-fra.rpki-client.org