Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/fQVSX8i2WxOkgiWK-_gc1SByuyg.roa
File: fQVSX8i2WxOkgiWK-_gc1SByuyg.roa (raw, json)
Hash identifier: 4ubniS4n2o0m1J6pw3kHyoEwH+QB9yzAw5o7nMv6xeY=
Subject key identifier: 7D:05:52:5F:C8:B6:5B:13:A4:82:25:8A:FB:F8:1C:D5:20:72:BB:28
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 018335BD6E39C4C039DEA7DF666A29E50849
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/fQVSX8i2WxOkgiWK-_gc1SByuyg.roa
Signing time: Tue 13 Sep 2022 07:25:50 +0000
ROA not before: Tue 13 Sep 2022 07:25:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28924
IP address blocks: 195.90.99.0/24 maxlen: 24
195.90.114.0/23 maxlen: 23
212.52.160.0/22 maxlen: 22
212.52.160.0/24 maxlen: 24
212.52.160.0/19 maxlen: 19
212.52.163.0/24 maxlen: 24
212.52.164.0/24 maxlen: 24
212.52.161.0/24 maxlen: 24
212.52.162.0/24 maxlen: 24
212.52.165.0/24 maxlen: 24
212.52.166.0/24 maxlen: 24
212.52.170.0/24 maxlen: 24
212.52.171.0/24 maxlen: 24
212.52.168.0/22 maxlen: 22
212.52.168.0/24 maxlen: 24
212.52.169.0/24 maxlen: 24
212.52.172.0/24 maxlen: 24
212.52.167.0/24 maxlen: 24
212.52.174.0/24 maxlen: 24
212.52.173.0/24 maxlen: 24
212.52.177.0/24 maxlen: 24
212.52.178.0/24 maxlen: 24
212.52.175.0/24 maxlen: 24
212.52.176.0/24 maxlen: 24
212.52.179.0/24 maxlen: 24
212.52.184.0/24 maxlen: 24
212.52.185.0/24 maxlen: 24
212.52.182.0/24 maxlen: 24
212.52.183.0/24 maxlen: 24
212.52.186.0/24 maxlen: 24
212.52.181.0/24 maxlen: 24
212.52.180.0/24 maxlen: 24
212.52.187.0/24 maxlen: 24
212.52.188.0/24 maxlen: 24
212.52.191.0/24 maxlen: 24
212.52.189.0/24 maxlen: 24
212.52.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:bd:6e:39:c4:c0:39:de:a7:df:66:6a:29:e5:08:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Sep 13 07:25:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d05525fc8b65b13a482258afbf81cd52072bb28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bb:3f:8b:e5:b7:5a:d3:51:49:49:3e:07:f2:
c9:1d:f9:c5:cb:49:b8:0d:47:6a:d3:42:08:e4:1c:
3c:4a:78:3a:cb:31:5f:2a:d9:1a:5c:36:85:e7:e2:
a1:30:c4:0c:b7:7e:d4:97:ab:36:73:5b:67:aa:1a:
ae:17:ac:59:9b:c3:f0:1c:99:9e:9a:74:5b:2b:d8:
cc:3a:53:7c:84:c5:14:8d:35:aa:3b:e6:53:c3:c0:
a2:af:3d:19:e8:c2:2d:6d:2f:b4:5d:e7:16:90:12:
c3:f6:98:79:22:5a:f9:6a:cf:17:a2:dd:b9:f1:68:
e1:70:21:2a:ec:a2:66:d0:03:e8:66:5b:0e:bc:e3:
19:56:7c:8e:7c:bb:a9:38:b1:e0:b9:c9:e0:0e:5f:
ed:2d:6b:08:f9:64:5f:cc:ca:0b:cb:33:ca:02:1b:
ec:82:1c:51:e3:72:7e:c0:34:ed:e5:85:6b:67:f9:
4f:5f:fd:b7:49:92:e0:db:fa:35:5a:91:2a:e7:00:
23:10:61:2a:31:d3:70:36:da:78:e9:36:3e:2a:28:
ec:ed:d2:74:cd:e1:ea:9e:b6:53:c6:0e:ee:f6:3f:
87:74:1c:51:13:31:b1:25:73:a5:27:3f:8b:cb:89:
67:5b:ee:40:9f:e7:aa:b7:bd:bd:52:63:ac:a2:f0:
f4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:05:52:5F:C8:B6:5B:13:A4:82:25:8A:FB:F8:1C:D5:20:72:BB:28
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/fQVSX8i2WxOkgiWK-_gc1SByuyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.90.99.0/24
195.90.114.0/23
212.52.160.0/19
Signature Algorithm: sha256WithRSAEncryption
5d:28:90:05:75:3b:dd:0a:18:1f:40:7c:c0:69:d5:26:36:41:
61:c7:41:31:3c:16:6c:a0:c9:5f:07:4b:c1:7d:70:0f:17:2e:
c2:41:98:17:23:6f:b1:26:be:84:bb:a4:78:c2:b1:42:da:d4:
59:e8:2a:ba:c8:f0:88:0d:1e:e9:fa:a0:da:19:15:41:d0:58:
58:28:fb:50:62:e2:dd:fe:f0:37:f2:12:f7:60:66:19:79:e9:
0e:46:d7:90:58:73:eb:39:85:b1:c8:94:c8:c0:8a:e9:1d:aa:
4a:3f:20:6c:9a:8e:3f:17:c9:ef:34:9c:0b:0a:73:99:2e:52:
d6:d4:b2:b9:a8:c8:a1:8c:ff:32:e3:90:5a:78:8e:3c:7a:97:
2a:c2:cd:ca:3b:df:ff:b6:6a:55:86:00:08:14:c7:fc:47:1c:
fa:2c:eb:59:7d:90:92:c7:c9:73:9b:ca:ff:e5:69:2b:25:75:
2c:02:1c:18:3e:b4:d1:df:fa:b9:67:b9:bf:f8:61:ad:d6:d9:
cf:ab:6f:e0:b4:c6:6a:14:cd:0d:72:39:70:f9:e1:bc:be:e2:
bd:9b:19:5d:e2:b6:46:75:9f:78:d2:64:99:e4:50:d2:24:06:
a0:49:56:64:45:97:eb:44:33:ac:71:20:9a:59:b4:c0:ff:08:
53:68:28:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:03 2024 by rpki-client on console-fra.rpki-client.org