Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/s64A8FfQpcxvB5UeJjteojVT8PQ.roa
File: s64A8FfQpcxvB5UeJjteojVT8PQ.roa (raw, json)
Hash identifier: QbCFQ4AFUSDCuK6O7ae5pb1CAsQP//nwJcB1UqdO/FI=
Subject key identifier: B3:AE:00:F0:57:D0:A5:CC:6F:07:95:1E:26:3B:5E:A2:35:53:F0:F4
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 04E74215
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/s64A8FfQpcxvB5UeJjteojVT8PQ.roa
Signing time: Sat 01 Jan 2022 07:56:31 +0000
ROA not before: Sat 01 Jan 2022 07:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 185.95.102.0/23 maxlen: 24
185.95.101.0/24 maxlen: 24
185.76.240.0/23 maxlen: 24
185.96.80.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.184.0/24 maxlen: 24
185.81.187.0/24 maxlen: 24
185.96.38.0/24 maxlen: 24
185.89.104.0/23 maxlen: 24
185.89.108.0/22 maxlen: 24
185.97.3.0/24 maxlen: 24
185.97.1.0/24 maxlen: 24
185.81.172.0/23 maxlen: 24
185.73.182.0/23 maxlen: 24
185.88.38.0/24 maxlen: 24
185.75.132.0/23 maxlen: 24
185.75.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82264597 (0x4e74215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 1 07:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3ae00f057d0a5cc6f07951e263b5ea23553f0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:a0:4c:12:89:49:01:40:d7:8f:7f:db:8f:
69:99:7b:65:af:eb:4c:bb:27:d5:ae:52:8e:30:e4:
59:62:a0:f2:4e:5d:d5:37:b3:69:d4:cd:76:dd:20:
d2:08:6c:f0:d0:0e:73:0b:00:09:b0:09:43:1f:2f:
a7:07:7e:24:90:32:ed:2b:2e:ac:3b:6b:cf:ec:30:
ee:ce:42:51:da:5a:9c:24:80:f2:4f:dd:fb:66:72:
6a:3a:0a:4b:70:b1:62:1d:f9:b6:cd:0c:eb:a5:cb:
d3:cb:ce:41:6c:d2:8f:fc:1c:5e:2b:e3:2d:db:d8:
94:26:8b:48:9c:c6:5c:a7:55:2e:a7:74:ed:b2:58:
15:d9:9e:9d:19:06:9c:d1:97:02:04:0d:60:54:a4:
6e:a6:90:bb:f5:35:9d:7a:1c:1d:bf:28:a1:ba:c1:
3c:b6:0c:82:ee:f6:03:bb:67:9a:56:9b:a9:5e:24:
16:ca:97:26:19:81:e9:f7:ef:1f:a2:80:15:2e:77:
7c:40:3f:75:40:95:c3:e4:64:7f:e0:3b:57:c9:d6:
b4:28:23:1d:c8:96:1d:1d:83:ba:07:23:2d:c2:11:
3b:e7:3f:ad:0c:96:a1:b5:44:ab:77:30:54:39:9c:
fe:a0:4b:f8:87:ad:36:03:e2:c4:06:d9:64:52:c2:
06:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AE:00:F0:57:D0:A5:CC:6F:07:95:1E:26:3B:5E:A2:35:53:F0:F4
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/s64A8FfQpcxvB5UeJjteojVT8PQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.182.0/23
185.75.132.0-185.75.134.255
185.76.240.0-185.76.242.255
185.81.172.0-185.81.174.255
185.81.184.0/24
185.81.187.0/24
185.88.38.0/24
185.89.104.0/23
185.89.108.0/22
185.95.101.0-185.95.103.255
185.96.38.0/24
185.96.80.0/24
185.97.1.0/24
185.97.3.0/24
Signature Algorithm: sha256WithRSAEncryption
82:3e:d2:cc:3f:0b:2b:ad:9f:02:20:07:71:4e:46:e6:c9:5c:
82:f9:78:ef:d0:5d:8c:ca:79:04:a8:7c:5d:01:cf:a8:9e:23:
f5:1c:46:58:c2:21:e5:c5:77:2b:83:75:61:97:83:f4:88:f9:
4d:6e:7d:9a:5f:d6:52:7c:5c:d9:d3:f9:8f:16:6f:23:a0:66:
8c:0f:fb:ff:ae:73:e0:b5:87:ad:d5:91:1f:c6:27:30:5c:00:
bf:60:d9:71:a1:49:b4:01:53:69:52:a3:bb:8f:68:fb:44:8e:
5c:60:6a:01:fe:32:e3:07:74:15:0a:be:a9:9e:03:85:87:e6:
0f:f1:dc:2b:54:7e:a7:df:30:1d:59:65:4b:f7:e7:2c:e1:d0:
6f:21:1f:12:90:35:5c:80:29:d7:88:43:dc:1f:05:48:3d:98:
7f:64:cd:32:cf:4b:2d:be:91:52:25:88:41:f0:46:18:8c:ee:
0f:8c:b7:58:fa:05:e7:af:93:55:f8:3a:43:7e:83:23:85:be:
57:36:43:e9:1f:8d:1f:e6:4b:49:f0:2d:9b:78:20:7c:c0:70:
28:2c:20:67:a0:16:f8:82:9e:73:99:93:46:00:51:37:06:9b:
17:16:a7:32:ee:56:01:89:2c:2b:8e:bc:f6:8a:18:4e:05:61:
a6:d8:d1:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org