Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/fJZuWnVz7wcJUrpYLQwXbKj0z0Q.roa
File: fJZuWnVz7wcJUrpYLQwXbKj0z0Q.roa (raw, json)
Hash identifier: FiLm6qRyU7sjicH8a3AeySQaiCn6hmSCiJ7h1wWRiQQ=
Subject key identifier: 7C:96:6E:5A:75:73:EF:07:09:52:BA:58:2D:0C:17:6C:A8:F4:CF:44
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 068F1389
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/fJZuWnVz7wcJUrpYLQwXbKj0z0Q.roa
Signing time: Fri 24 Jun 2022 14:54:40 +0000
ROA not before: Fri 24 Jun 2022 14:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 185.95.102.0/23 maxlen: 24
185.95.101.0/24 maxlen: 24
185.76.240.0/23 maxlen: 24
185.96.80.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.100.156.0/23 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.184.0/24 maxlen: 24
185.81.187.0/24 maxlen: 24
185.96.38.0/24 maxlen: 24
185.89.104.0/23 maxlen: 24
185.89.108.0/22 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.111.24.0/23 maxlen: 24
185.81.172.0/23 maxlen: 24
185.73.182.0/23 maxlen: 24
185.75.132.0/23 maxlen: 24
185.88.38.0/24 maxlen: 24
185.75.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110039945 (0x68f1389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jun 24 14:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c966e5a7573ef070952ba582d0c176ca8f4cf44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a0:06:04:a7:39:56:9e:88:c3:28:5b:9c:90:
39:54:ba:ec:6a:03:28:09:4b:c0:bc:5d:30:00:03:
58:ba:d9:06:22:71:6f:d3:5b:9c:e5:c8:a0:0e:39:
82:2a:2e:c1:89:39:63:20:d6:2a:1a:52:23:85:af:
a7:f2:a8:4c:65:89:98:42:c8:14:fc:68:60:5d:e9:
18:86:2d:c1:04:83:c4:f1:fc:76:2b:a7:23:e1:27:
45:8f:14:6d:7b:81:be:4f:87:81:54:c0:02:f8:4f:
49:9b:ba:cb:3b:4e:22:f2:9c:35:8d:fe:cd:74:7b:
f3:af:71:2e:b7:71:07:e5:6c:c5:e9:06:50:04:2e:
9c:bc:cf:d3:5f:c8:aa:98:22:5e:3d:93:7e:d0:35:
30:df:48:7a:80:f0:c3:45:3a:dc:7a:7d:19:be:fc:
ef:71:5f:47:85:bf:25:ad:87:7e:93:2e:05:9f:a2:
0d:1a:0e:00:4c:20:d6:f2:0b:7c:c0:80:98:88:08:
25:f7:86:cf:34:61:63:5a:5e:ef:55:f8:65:da:95:
89:c7:f0:2c:ce:1d:ba:72:d5:44:19:c5:a4:9f:24:
b9:0c:32:8e:18:15:20:08:0d:78:0b:61:68:bb:2c:
14:2f:e9:34:ac:b2:ba:ec:dc:d7:ea:db:7e:3e:21:
32:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:96:6E:5A:75:73:EF:07:09:52:BA:58:2D:0C:17:6C:A8:F4:CF:44
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/fJZuWnVz7wcJUrpYLQwXbKj0z0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.182.0/23
185.75.132.0-185.75.134.255
185.76.240.0-185.76.242.255
185.81.172.0-185.81.174.255
185.81.184.0/24
185.81.187.0/24
185.88.38.0/24
185.89.104.0/23
185.89.108.0/22
185.95.101.0-185.95.103.255
185.96.38.0/24
185.96.80.0/24
185.97.1.0/24
185.97.3.0/24
185.100.156.0/23
185.111.24.0/23
Signature Algorithm: sha256WithRSAEncryption
12:cd:2c:6f:51:16:57:51:53:4c:58:e7:a8:ec:1f:1f:5e:80:
4e:6d:f6:95:bd:da:39:d4:c9:ea:8d:ef:93:49:0e:55:83:cb:
57:cb:6a:cd:48:ad:87:cb:4c:b6:b8:fa:23:d7:71:4c:f1:a1:
50:a3:4c:0f:1b:c1:6f:ca:bc:dd:73:b0:9e:7b:26:9d:a0:b2:
8a:1f:b0:e3:8b:f2:d4:7f:43:f8:4d:cd:2c:32:19:62:f8:e5:
70:93:97:cb:c7:c7:86:46:bf:61:2d:b0:9f:9d:24:bf:1e:89:
16:e9:e7:07:6c:6f:f9:4f:4a:cb:61:01:33:8e:fb:ca:21:35:
f8:11:8b:1e:71:4f:ca:ee:9b:12:ae:86:8c:03:2a:e5:09:ca:
44:ad:58:6d:09:fd:17:5d:a2:36:5e:87:79:a8:b5:49:69:a0:
ef:92:4f:62:73:91:39:c4:c8:ed:db:21:d2:c7:8a:58:57:3a:
7d:b6:6c:4a:a7:60:91:39:b0:db:80:2a:3f:1b:15:ff:3d:ec:
ee:0c:46:21:85:32:bf:09:b5:11:c5:19:2d:b0:c5:fa:54:cd:
a5:26:46:e8:2d:18:82:68:66:3c:84:03:cf:c6:2e:0e:2f:81:
57:00:c2:08:1a:83:d3:7b:31:fe:95:8f:09:7b:70:bb:01:75:
c3:10:00:40
-----BEGIN CERTIFICATE-----
MIIFbjCCBFagAwIBAgIEBo8TiTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YWVlMTVjMzNkZTM1ODkzOGQ2OTAwYTFiM2MxNDQ4MGEzODllODViMB4XDTIyMDYy
NDE0NTQ0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2M5NjZlNWE3NTcz
ZWYwNzA5NTJiYTU4MmQwYzE3NmNhOGY0Y2Y0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIqgBgSnOVaeiMMoW5yQOVS67GoDKAlLwLxdMAADWLrZBiJx
b9NbnOXIoA45giouwYk5YyDWKhpSI4Wvp/KoTGWJmELIFPxoYF3pGIYtwQSDxPH8
diunI+EnRY8UbXuBvk+HgVTAAvhPSZu6yztOIvKcNY3+zXR7869xLrdxB+VsxekG
UAQunLzP01/IqpgiXj2TftA1MN9IeoDww0U63Hp9Gb7873FfR4W/Ja2HfpMuBZ+i
DRoOAEwg1vILfMCAmIgIJfeGzzRhY1pe71X4ZdqVicfwLM4dunLVRBnFpJ8kuQwy
jhgVIAgNeAthaLssFC/pNKyyuuzc1+rbfj4hMm0CAwEAAaOCAogwggKEMB0GA1Ud
DgQWBBR8lm5adXPvBwlSulgtDBdsqPTPRDAfBgNVHSMEGDAWgBSa7hXDPeNYk41p
AKGzwUSAo4noWzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L211NFZ3ejNqV0pPTmFRQ2hzOEZFZ0tPSjZGcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvNzJmNzdmLTc2YWItNGU3OS1hMDYyLTZlZTUzNGQ5MmU1Mi8x
L2ZKWnVXblZ6N3djSlVycFlMUXdYYktqMHowUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
NzJmNzdmLTc2YWItNGU3OS1hMDYyLTZlZTUzNGQ5MmU1Mi8xL211NFZ3ejNqV0pP
TmFRQ2hzOEZFZ0tPSjZGcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
nQYIKwYBBQUHAQcBAf8EgY0wgYowgYcEAgABMIGAAwQBuUm2MAwDBAK5S4QDBAC5
S4YwDAMEBLlM8AMEALlM8jAMAwQCuVGsAwQAuVGuAwQAuVG4AwQAuVG7AwQAuVgm
AwQBuVloAwQCuVlsMAwDBAC5X2UDBAO5X2ADBAC5YCYDBAC5YFADBAC5YQEDBAC5
YQMDBAG5ZJwDBAG5bxgwDQYJKoZIhvcNAQELBQADggEBABLNLG9RFldRU0xY56js
Hx9egE5t9pW92jnUyeqN75NJDlWDy1fLas1IrYfLTLa4+iPXcUzxoVCjTA8bwW/K
vN1zsJ57Jp2gsoofsOOL8tR/Q/hNzSwyGWL45XCTl8vHx4ZGv2EtsJ+dJL8eiRbp
5wdsb/lPSsthATOO+8ohNfgRix5xT8rumxKuhowDKuUJykStWG0J/RddojZeh3mo
tUlpoO+ST2JzkTnEyO3bIdLHilhXOn22bEqnYJE5sNuAKj8bFf897O4MRiGFMr8J
tRHFGS2wxfpUzaUmRugtGIJoZjyEA8/GLg4vgVcAwggag9N7Mf6Vjwl7cLsBdcMQ
AEA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org