Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/UTg4QHqfduScQZWazRJkolmI73Y.roa
File: UTg4QHqfduScQZWazRJkolmI73Y.roa (raw, json)
Hash identifier: 5LYpgoKiILTxNHKSRtgh9yp7goMr82vYZej99LhV9Do=
Subject key identifier: 51:38:38:40:7A:9F:76:E4:9C:41:95:9A:CD:12:64:A2:59:88:EF:76
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0181FCCF419FFFB293A01D070BB86C64D9A9
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/UTg4QHqfduScQZWazRJkolmI73Y.roa
Signing time: Thu 14 Jul 2022 13:04:09 +0000
ROA not before: Thu 14 Jul 2022 13:04:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 185.95.102.0/23 maxlen: 24
185.95.101.0/24 maxlen: 24
185.76.240.0/23 maxlen: 24
185.96.80.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.184.0/24 maxlen: 24
185.81.187.0/24 maxlen: 24
185.96.38.0/24 maxlen: 24
185.89.104.0/23 maxlen: 24
185.89.108.0/22 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.81.172.0/23 maxlen: 24
185.73.182.0/23 maxlen: 24
185.75.132.0/23 maxlen: 24
185.88.38.0/24 maxlen: 24
185.75.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:cf:41:9f:ff:b2:93:a0:1d:07:0b:b8:6c:64:d9:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jul 14 13:04:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=513838407a9f76e49c41959acd1264a25988ef76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1c:3b:39:07:eb:72:b8:e5:82:b0:f5:10:e4:
65:00:cb:49:40:8f:10:41:98:5f:85:f9:0c:61:27:
66:b8:a2:12:1f:25:9c:49:3e:5c:f7:63:e6:23:62:
c5:51:c1:c5:34:03:3a:65:77:56:68:dd:fe:78:07:
63:d3:32:6e:1f:7b:77:d7:5c:1a:ce:c9:03:5d:0b:
b8:94:94:c0:83:73:3e:61:55:91:ae:86:9c:0a:53:
9f:d7:04:b3:47:f0:4e:8e:ea:d3:29:b3:d2:3e:ea:
66:d9:bd:b4:26:f6:22:e6:c2:f3:30:b1:c3:77:8a:
6f:b5:fc:07:c2:75:d8:d0:0e:8f:98:a7:df:4b:18:
7e:d0:15:4a:b9:86:a4:4e:a9:80:bc:d5:eb:8e:89:
3b:da:34:03:5e:72:96:be:0d:91:1e:f2:13:f0:8f:
1f:ae:02:2c:08:9d:07:47:b8:6b:43:69:81:49:df:
01:39:60:e4:4c:0e:7d:ad:76:25:95:0d:ad:90:f4:
5c:d4:64:83:21:b2:4b:27:78:74:79:70:fc:12:78:
29:3d:ae:97:ad:47:4b:d2:8d:5c:3d:86:c9:39:d4:
f6:d1:89:2d:b7:48:a3:da:d2:ad:be:c1:1a:1c:e6:
6f:3c:f8:8d:8b:7a:92:d3:c0:d9:b9:67:c5:f9:5d:
33:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:38:38:40:7A:9F:76:E4:9C:41:95:9A:CD:12:64:A2:59:88:EF:76
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/UTg4QHqfduScQZWazRJkolmI73Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.182.0/23
185.75.132.0-185.75.134.255
185.76.240.0-185.76.242.255
185.81.172.0-185.81.174.255
185.81.184.0/24
185.81.187.0/24
185.88.38.0/24
185.89.104.0/23
185.89.108.0/22
185.95.101.0-185.95.103.255
185.96.38.0/24
185.96.80.0/24
185.97.1.0/24
185.97.3.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3f:a8:80:db:8e:24:18:1a:ef:85:4a:bc:73:d3:46:3d:f5:
9c:69:6b:aa:ab:e1:68:c9:29:c1:3a:de:29:73:4c:a6:36:17:
a0:4f:34:0e:ba:2e:3c:5d:00:c1:d7:88:a9:2d:c6:97:cf:7c:
a7:5c:db:73:69:e3:7c:72:ec:77:da:b5:81:09:87:76:ff:a8:
35:10:30:83:29:10:5a:9b:9e:22:bc:82:bc:f2:17:59:32:b8:
3b:79:7c:2b:85:ed:a8:b2:1f:a5:c9:b3:34:d7:f9:e7:8b:df:
a4:6b:6b:a7:e6:02:05:25:74:bb:9e:98:97:89:ae:81:bf:40:
44:f7:8a:f6:b4:8d:c0:56:4d:ea:fd:a9:e4:77:b9:cc:1f:20:
52:03:22:3f:e7:3a:85:ea:c5:3c:48:ff:7c:d3:90:81:b7:7e:
5e:ce:ac:49:cb:03:44:66:7c:87:75:18:d9:ce:20:0e:d6:77:
3d:b5:a4:08:41:13:74:86:8d:fe:c6:f6:a9:9f:b1:47:c3:9f:
1a:2a:fc:34:61:89:5f:d6:fc:7d:7a:de:5d:96:7c:45:0c:af:
34:8d:4a:85:df:b5:5f:3f:f0:00:f7:d1:41:5e:df:54:9e:c3:
3c:2b:c3:c2:ac:79:fe:24:bd:92:68:45:7a:9e:ba:49:74:32:
9d:0d:64:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org