Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/gu4LaSy1QesCfo9SFsvqoPgLzFI.roa
File: gu4LaSy1QesCfo9SFsvqoPgLzFI.roa (raw, json)
Hash identifier: 3Zb9TD4Nh7N1lduUcfT37on62//Et45YVrLSZc2bwIg=
Subject key identifier: 82:EE:0B:69:2C:B5:41:EB:02:7E:8F:52:16:CB:EA:A0:F8:0B:CC:52
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 01827CF3EBD4468B70B522CBFED0876688CF
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/gu4LaSy1QesCfo9SFsvqoPgLzFI.roa
Signing time: Mon 08 Aug 2022 10:15:36 +0000
ROA not before: Mon 08 Aug 2022 10:15:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26548
IP address blocks: 213.108.0.0/24 maxlen: 24
213.108.1.0/24 maxlen: 24
213.108.3.0/24 maxlen: 24
5.183.252.0/24 maxlen: 24
185.77.220.0/22 maxlen: 24
83.171.225.0/24 maxlen: 24
77.220.192.0/24 maxlen: 24
77.220.195.0/24 maxlen: 24
141.98.84.0/24 maxlen: 24
194.104.8.0/24 maxlen: 24
194.104.9.0/24 maxlen: 24
45.10.164.0/24 maxlen: 24
45.10.165.0/24 maxlen: 24
45.10.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:f3:eb:d4:46:8b:70:b5:22:cb:fe:d0:87:66:88:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Aug 8 10:15:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82ee0b692cb541eb027e8f5216cbeaa0f80bcc52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:16:4a:32:17:a2:c6:7d:fe:93:e5:1e:bd:91:
10:0f:55:1a:7f:62:b8:df:32:a7:0f:8f:29:c3:f0:
14:5f:92:69:33:18:8e:6f:fc:fc:f4:fd:4a:5f:c0:
75:78:13:67:75:66:11:d6:f5:23:02:11:65:ef:c5:
bd:f8:06:75:d3:46:6a:ce:69:3e:69:08:d5:83:d7:
c4:28:fb:4e:96:e7:dd:c5:1b:c7:79:17:59:5e:f9:
0c:7a:57:64:42:b9:08:07:13:4e:c4:54:3e:c2:bf:
48:2e:73:aa:c4:c7:62:a5:8d:fe:e8:5b:4c:ba:ba:
f8:fc:ea:54:c4:47:ab:98:75:fe:68:6b:2f:de:58:
b0:7d:37:35:bd:05:7c:5c:4f:34:28:e6:da:72:6f:
bd:51:d4:69:7d:c9:e4:59:f7:09:19:38:b2:c9:ef:
0d:22:5b:93:93:bb:b4:5e:ef:16:64:18:14:4f:bb:
2b:51:8f:01:39:dc:3a:51:f1:e8:d8:e3:d6:a7:8b:
dd:4e:f7:f6:22:17:07:24:e6:09:9f:f7:d4:2a:75:
0f:27:d1:d3:85:ab:04:8c:c1:14:ac:e5:9f:f7:3d:
c6:02:77:76:cb:ec:c1:38:38:61:b6:bb:76:e5:61:
d2:5e:a1:cc:bf:3b:a1:61:db:04:a5:e3:6d:1e:78:
89:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:EE:0B:69:2C:B5:41:EB:02:7E:8F:52:16:CB:EA:A0:F8:0B:CC:52
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/gu4LaSy1QesCfo9SFsvqoPgLzFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.252.0/24
45.10.164.0/23
45.10.167.0/24
77.220.192.0/24
77.220.195.0/24
83.171.225.0/24
141.98.84.0/24
185.77.220.0/22
194.104.8.0/23
213.108.0.0/23
213.108.3.0/24
Signature Algorithm: sha256WithRSAEncryption
75:f2:51:a5:d9:5b:3a:63:0f:88:6e:a6:d3:43:62:04:18:03:
4d:6c:8f:a8:50:0e:14:59:9c:90:2d:e5:2c:e0:ab:03:c4:eb:
bd:02:48:ac:43:cd:0c:cc:69:1c:5b:9d:de:95:cc:47:f4:09:
55:57:bb:d2:83:50:d7:06:a5:89:54:46:95:1c:d2:82:fb:c0:
10:43:59:47:4e:13:31:2b:85:8a:b9:a6:47:35:da:42:80:0c:
2e:04:6b:ff:b5:56:78:8a:f5:9c:22:b7:f5:2f:83:9d:54:aa:
93:dd:58:23:15:db:b0:ec:20:ff:15:f6:05:ef:6b:0f:76:3e:
4f:1e:ec:93:5d:95:e0:50:e7:55:6e:e9:8e:ae:30:38:f5:57:
5a:27:97:04:43:6e:52:1c:74:e7:7a:e4:61:2c:64:0a:e7:69:
17:d2:36:ad:55:92:04:44:b4:2d:57:03:db:ef:db:a1:06:fe:
3d:81:c0:04:ed:2f:2e:63:e4:2e:d5:3d:33:6a:47:49:3e:b1:
40:a8:38:49:1a:8e:5e:17:0a:f0:69:2c:b9:22:0c:55:d6:05:
73:97:19:c3:04:1b:4d:10:14:64:78:63:3e:33:9e:ab:9a:ae:
69:be:5d:7f:9b:40:e2:dc:6b:c9:73:8a:e3:48:13:50:ad:04:
0b:df:75:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org