Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/vqBnwnlowTzqf5Y0Mvt8gM5kJuQ.roa
File: vqBnwnlowTzqf5Y0Mvt8gM5kJuQ.roa (raw, json)
Hash identifier: gl5+uu1bgIxFEX4ps3e1nPpEPy1NdekmU+zh3hFemFM=
Subject key identifier: BE:A0:67:C2:79:68:C1:3C:EA:7F:96:34:32:FB:7C:80:CE:64:26:E4
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0185534F448E5E090D53FCD9FD6CD121A224
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/vqBnwnlowTzqf5Y0Mvt8gM5kJuQ.roa
Signing time: Tue 27 Dec 2022 11:19:41 +0000
ROA not before: Tue 27 Dec 2022 11:19:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 185.95.102.0/23 maxlen: 24
185.95.101.0/24 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.184.0/24 maxlen: 24
185.81.187.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.97.1.0/24 maxlen: 24
185.68.246.0/24 maxlen: 24
185.89.43.0/24 maxlen: 24
185.89.42.0/24 maxlen: 24
185.68.247.0/24 maxlen: 24
194.104.10.0/24 maxlen: 24
185.68.184.0/24 maxlen: 24
5.181.169.0/24 maxlen: 24
5.181.168.0/24 maxlen: 24
185.96.80.0/24 maxlen: 24
213.232.122.0/24 maxlen: 24
213.232.120.0/24 maxlen: 24
83.171.226.0/24 maxlen: 24
83.171.224.0/24 maxlen: 24
83.171.227.0/24 maxlen: 24
185.96.38.0/24 maxlen: 24
185.89.104.0/23 maxlen: 24
185.89.108.0/22 maxlen: 24
141.98.87.0/24 maxlen: 24
185.81.172.0/23 maxlen: 24
5.183.255.0/24 maxlen: 24
185.88.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:53:4f:44:8e:5e:09:0d:53:fc:d9:fd:6c:d1:21:a2:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Dec 27 11:19:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bea067c27968c13cea7f963432fb7c80ce6426e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:79:13:07:20:58:5b:b4:e6:8a:04:8a:3f:11:
8c:6a:25:83:cd:c8:a5:4a:22:f6:c2:92:74:81:45:
5a:f5:b3:e6:58:8a:84:5f:f0:7d:82:57:b3:ed:d6:
1a:be:5c:71:2c:df:e4:f0:94:43:5b:d0:21:87:32:
dd:16:41:97:57:ee:d6:fa:06:7f:07:8b:49:4a:f2:
eb:c9:77:82:68:35:34:31:d0:ff:09:63:36:aa:ee:
32:6c:e6:2d:b5:3a:75:6b:eb:6a:d3:ce:d4:42:50:
92:88:18:f8:a7:64:09:3c:e4:86:ed:4a:f1:f3:44:
30:6e:d2:38:94:48:10:df:9f:ec:5d:8a:c6:4b:fd:
b8:0a:47:b2:fa:ba:03:29:06:f6:56:86:46:28:f7:
24:c9:55:de:cb:8e:8d:97:c8:d4:68:4a:97:28:b0:
aa:0b:88:6b:a2:18:35:d5:c0:9a:4b:56:8e:14:c1:
4c:bd:94:ab:b1:07:cb:3b:94:65:9d:aa:6d:47:c9:
eb:2c:db:3c:4b:ed:cc:75:f5:46:82:54:7f:a9:74:
27:62:36:cb:2c:8f:11:8c:92:68:03:78:bf:22:d9:
68:2e:c0:85:ab:b7:29:03:bb:51:8b:fe:2e:ec:24:
19:0d:c7:06:8c:65:51:f1:69:53:93:32:22:4b:6a:
1c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A0:67:C2:79:68:C1:3C:EA:7F:96:34:32:FB:7C:80:CE:64:26:E4
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/vqBnwnlowTzqf5Y0Mvt8gM5kJuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.168.0/23
5.183.255.0/24
83.171.224.0/24
83.171.226.0/23
141.98.87.0/24
185.68.184.0/24
185.68.246.0/23
185.81.172.0-185.81.174.255
185.81.184.0/24
185.81.187.0/24
185.88.36.0/24
185.89.42.0/23
185.89.104.0/23
185.89.108.0/22
185.95.101.0-185.95.103.255
185.96.38.0/24
185.96.80.0/24
185.97.1.0/24
185.97.3.0/24
194.104.10.0/24
213.232.120.0/24
213.232.122.0/24
Signature Algorithm: sha256WithRSAEncryption
89:0f:7d:5c:d5:04:94:e4:e6:6f:5f:df:84:57:d9:4b:37:c3:
4d:52:68:e2:42:e0:2a:fb:23:6e:56:94:9b:c5:27:c7:f6:7b:
c4:9a:8a:ad:fc:e3:a6:c5:6f:96:6f:a0:be:13:6f:2d:d1:0c:
25:ae:3d:ce:a1:57:9b:c4:19:3f:c9:e7:11:53:c8:89:41:1a:
60:f1:98:ea:72:c7:75:09:f8:06:02:ed:18:af:95:6f:ba:4b:
99:94:6f:78:05:af:32:53:de:1e:5e:1f:0e:6c:1b:2d:4f:59:
fe:19:a2:2c:d3:8f:0d:1c:64:78:8c:6e:21:91:12:26:5e:13:
2a:5b:e3:76:02:8f:23:ec:de:7a:74:d8:59:79:3b:8e:2a:be:
22:ed:f1:17:65:9a:45:74:73:5b:ae:0d:2a:f6:89:6c:ca:61:
0f:67:3b:81:0a:a1:90:5a:26:82:f5:fc:a3:28:c5:5a:74:e9:
be:5c:4a:a9:4d:9a:2b:93:f3:71:bb:45:67:d7:6b:a8:6e:a3:
c2:5e:03:88:c5:ea:63:73:e2:15:e0:a2:4e:bc:a3:52:a0:0c:
bf:b5:b6:dc:08:09:2c:a6:40:25:87:a3:5b:c3:65:17:a3:bf:
4c:b3:5b:85:95:df:cd:4a:f6:29:b5:81:cb:3a:28:a4:b2:49:
cb:c7:20:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:18 2024 by rpki-client on console-ams.rpki-client.org