Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/r8wK7qNyxcMAgTmaOgnFenfhUNU.roa
File: r8wK7qNyxcMAgTmaOgnFenfhUNU.roa (raw, json)
Hash identifier: xJLltAnxtRhoxOdt4nT8dAJy17Wv/yw0U9VHhqaceG8=
Subject key identifier: AF:CC:0A:EE:A3:72:C5:C3:00:81:39:9A:3A:09:C5:7A:77:E1:50:D5
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 05495398
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/r8wK7qNyxcMAgTmaOgnFenfhUNU.roa
Signing time: Fri 11 Feb 2022 07:11:23 +0000
ROA not before: Fri 11 Feb 2022 07:11:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 45.148.124.0/24 maxlen: 24
45.66.208.0/24 maxlen: 24
45.138.100.0/24 maxlen: 24
185.61.217.0/24 maxlen: 24
185.61.219.0/24 maxlen: 24
185.61.218.0/24 maxlen: 24
147.78.183.0/24 maxlen: 24
185.61.221.0/24 maxlen: 24
147.78.180.0/24 maxlen: 24
185.61.223.0/24 maxlen: 24
147.78.182.0/24 maxlen: 24
185.61.222.0/24 maxlen: 24
147.78.181.0/24 maxlen: 24
77.220.194.0/24 maxlen: 24
77.220.193.0/24 maxlen: 24
185.88.100.0/24 maxlen: 24
45.132.184.0/24 maxlen: 24
93.177.118.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88691608 (0x5495398)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 11 07:11:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afcc0aeea372c5c30081399a3a09c57a77e150d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d7:75:14:07:aa:1e:cf:08:10:b5:42:75:51:
ce:82:85:63:d3:d6:e2:ee:cd:7e:6d:3b:15:3e:02:
ef:23:3e:c4:74:53:63:9b:2c:cb:98:24:09:1c:53:
26:23:0c:da:03:10:29:0d:ef:31:48:65:a7:94:24:
b5:e7:17:a7:17:38:58:31:34:c0:9d:3b:7d:33:8e:
35:56:76:e2:8a:14:3b:66:61:15:35:89:e3:a3:46:
76:cb:73:67:53:af:53:4c:d6:ae:d5:52:69:54:8c:
04:9e:20:08:b9:60:9b:e3:d2:c8:e3:14:8b:72:a3:
21:ad:97:18:a5:b6:ed:17:e4:b7:72:da:a8:2f:95:
2c:bb:c0:9c:bb:95:80:5e:50:b1:92:e1:d9:4d:51:
3a:ff:d7:39:f5:7c:00:ea:3b:94:29:29:a5:56:6c:
d9:06:f2:38:81:8e:cd:0e:32:7c:29:00:58:56:4d:
7c:bd:79:6a:8f:c0:8a:c4:ae:42:7e:8d:44:04:54:
c1:bd:be:03:40:3b:23:9a:8a:16:9a:f3:93:0f:64:
94:66:28:8b:71:59:31:2f:c4:41:d8:0c:fe:99:0f:
94:5b:67:30:b0:1c:6e:8b:86:71:66:8c:b2:f5:6a:
32:21:e5:bb:bb:14:68:0b:df:28:05:17:4b:76:40:
97:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CC:0A:EE:A3:72:C5:C3:00:81:39:9A:3A:09:C5:7A:77:E1:50:D5
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/r8wK7qNyxcMAgTmaOgnFenfhUNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.208.0/24
45.132.184.0/24
45.138.100.0/24
45.148.124.0/24
77.220.193.0-77.220.194.255
93.177.118.0/23
147.78.180.0/22
185.61.217.0-185.61.219.255
185.61.221.0-185.61.223.255
185.88.100.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:de:1c:a5:d7:99:97:40:88:59:e4:ff:6d:a1:8d:4f:7e:5f:
34:f6:66:9f:0e:15:65:8b:31:9b:50:6f:d5:1a:2b:f6:4e:60:
1a:2d:3c:6e:ef:5c:cd:98:50:76:8a:84:56:63:2a:35:14:e3:
d5:ae:e7:f2:df:25:fa:6e:89:90:1d:9a:51:27:e0:7e:88:bd:
cd:4d:e0:7e:f9:e5:7d:b9:6c:c7:3f:cb:9e:bf:17:d1:0b:66:
49:d9:47:fa:ed:fc:11:4a:58:a0:9a:b0:48:a3:18:25:7c:53:
34:b7:5d:f1:f6:d1:a5:9b:98:54:a3:a9:a6:4b:ac:0d:f1:83:
f4:ce:76:67:02:58:1c:0f:e0:c4:db:19:3e:c4:e9:b4:9f:26:
56:49:f4:18:f4:a7:03:3a:ad:45:cc:97:24:01:cf:89:0a:6b:
9b:7b:4a:4b:12:0c:27:71:40:bb:37:29:42:b5:9e:29:c2:aa:
b8:fd:6c:6b:05:56:bb:b3:46:a8:4e:9d:49:86:70:83:99:c5:
d0:27:d8:ab:d6:a7:fa:6f:90:c1:78:2c:fb:5d:5a:2c:c4:7c:
6d:b5:79:e6:e4:7b:f8:2a:31:c4:c1:d3:dc:90:29:1d:f2:de:
1e:3f:ec:63:7e:32:21:94:6c:ca:51:d0:87:06:82:f5:5f:34:
e5:e1:80:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org