Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/wQe-N-GpoDjo2gmeZJ3AzJCqssY.roa
File: wQe-N-GpoDjo2gmeZJ3AzJCqssY.roa (raw, json)
Hash identifier: TggQx5tcNVjPMMU1YWuO1lDBBdC2BQ/xmIUvl8+CRcw=
Subject key identifier: C1:07:BE:37:E1:A9:A0:38:E8:DA:09:9E:64:9D:C0:CC:90:AA:B2:C6
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 06992FF0
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/wQe-N-GpoDjo2gmeZJ3AzJCqssY.roa
Signing time: Mon 27 Jun 2022 15:49:56 +0000
ROA not before: Mon 27 Jun 2022 15:49:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 185.95.102.0/23 maxlen: 24
185.95.101.0/24 maxlen: 24
185.76.240.0/23 maxlen: 24
185.96.80.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.184.0/24 maxlen: 24
185.81.187.0/24 maxlen: 24
185.96.38.0/24 maxlen: 24
185.89.104.0/23 maxlen: 24
185.89.108.0/22 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.111.24.0/23 maxlen: 24
185.81.172.0/23 maxlen: 24
185.73.182.0/23 maxlen: 24
185.75.132.0/23 maxlen: 24
185.88.38.0/24 maxlen: 24
185.75.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110702576 (0x6992ff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jun 27 15:49:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c107be37e1a9a038e8da099e649dc0cc90aab2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:70:2e:3d:8b:b0:b6:fd:a8:8b:6e:19:16:
d7:a8:a4:c3:5e:1b:15:d5:3d:8d:d4:4a:98:0c:f6:
fe:f4:37:0d:6f:83:ad:cb:ff:ec:19:cb:4a:a8:de:
ec:c8:7f:b2:83:40:8a:3a:7d:07:e6:f8:2a:7e:22:
2e:02:ab:98:56:10:74:a1:3b:a5:db:d4:25:a7:b1:
d5:aa:8a:d7:18:f0:84:3a:0a:c6:f7:5d:e9:a7:0b:
71:75:6a:74:56:68:3f:dd:5f:6b:52:63:a0:c6:88:
43:dc:3a:da:2c:b7:a0:f7:11:6a:fd:69:b4:c7:8c:
72:53:a0:c6:2b:a8:65:7a:16:0e:2c:f5:dd:5f:40:
5d:36:a8:db:ca:ef:a7:6f:28:93:dc:33:1d:d6:df:
b3:c5:de:e8:95:4b:87:10:5f:51:fe:92:2e:d2:ca:
e2:5a:3f:a2:f2:40:d0:33:7f:9b:b2:96:f9:64:b5:
76:44:5d:d9:51:f5:d7:60:fd:9e:7d:68:a0:34:ac:
a3:f4:db:67:1f:29:ca:d1:5c:f2:4b:23:b4:49:68:
c1:a2:b1:60:c0:e3:99:96:cc:f9:34:f4:ab:49:8e:
8e:a0:e1:e4:f6:31:b2:92:cc:4e:d8:f6:01:e3:f3:
86:b6:dc:87:51:3b:a3:8e:a6:e5:86:19:c6:fc:b8:
f6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:07:BE:37:E1:A9:A0:38:E8:DA:09:9E:64:9D:C0:CC:90:AA:B2:C6
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/wQe-N-GpoDjo2gmeZJ3AzJCqssY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.182.0/23
185.75.132.0-185.75.134.255
185.76.240.0-185.76.242.255
185.81.172.0-185.81.174.255
185.81.184.0/24
185.81.187.0/24
185.88.38.0/24
185.89.104.0/23
185.89.108.0/22
185.95.101.0-185.95.103.255
185.96.38.0/24
185.96.80.0/24
185.97.1.0/24
185.97.3.0/24
185.111.24.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:9b:b4:36:f9:21:2e:fb:bc:9a:c1:09:a6:33:3b:42:0f:ed:
ca:09:95:9f:71:67:d4:41:2f:10:e1:b3:52:f6:38:6e:9f:a0:
64:af:a7:42:c5:1f:48:45:23:c6:38:66:75:22:b3:5e:a9:74:
fa:7a:df:ab:42:4b:25:a6:5c:e8:8b:30:c7:81:db:ae:ec:42:
5d:f5:e7:2d:61:ef:96:59:a7:a3:ec:cd:bb:bb:81:be:f5:52:
11:e3:fd:a0:2a:03:e1:26:ff:25:41:7f:e1:56:85:d6:5c:b5:
a9:75:d2:ee:5a:28:ec:ea:8e:ac:15:f6:5b:dd:ce:ff:68:b8:
ff:48:35:13:52:e7:7d:d9:f0:8b:21:0a:e0:0b:16:d6:59:7a:
b2:9d:7f:f3:7d:45:08:19:ca:c4:fe:c2:e8:16:b8:cb:42:76:
54:88:c1:c8:43:5c:cd:78:5b:ea:ad:35:9c:86:ed:da:0a:08:
87:5f:41:ff:9b:38:ef:5e:d5:21:1e:30:d9:f5:9c:4b:99:2c:
e3:fd:3d:2f:82:23:93:0d:50:58:f4:39:37:6f:7e:8b:1d:e6:
bf:d2:89:69:43:51:68:ce:f0:d8:91:f7:32:36:74:66:99:36:
67:f9:e4:ba:42:3d:61:15:34:d8:39:45:53:49:7a:a9:a3:ed:
7f:60:64:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:18 2023 by rpki-client on console-fra.rpki-client.org