Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sdhz7koIYFeSma-AY5cVZpqTLpg.roa
File: sdhz7koIYFeSma-AY5cVZpqTLpg.roa (raw, json)
Hash identifier: iY/4BR4wkW0IjMOLKgx7uIEZ6pr7aDjHO8Ulp8WYG1M=
Subject key identifier: B1:D8:73:EE:4A:08:60:57:92:99:AF:80:63:97:15:66:9A:93:2E:98
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 0183AED9CECDA967FB5882552F72A4E84EEA
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sdhz7koIYFeSma-AY5cVZpqTLpg.roa
Signing time: Thu 06 Oct 2022 19:50:53 +0000
ROA not before: Thu 06 Oct 2022 19:50:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28924
IP address blocks: 195.90.98.0/24 maxlen: 24
195.90.99.0/24 maxlen: 24
195.90.114.0/23 maxlen: 23
212.52.160.0/22 maxlen: 22
212.52.160.0/24 maxlen: 24
212.52.160.0/19 maxlen: 19
212.52.163.0/24 maxlen: 24
212.52.164.0/24 maxlen: 24
212.52.161.0/24 maxlen: 24
212.52.162.0/24 maxlen: 24
212.52.165.0/24 maxlen: 24
212.52.166.0/24 maxlen: 24
212.52.170.0/24 maxlen: 24
212.52.171.0/24 maxlen: 24
212.52.168.0/22 maxlen: 22
212.52.168.0/24 maxlen: 24
212.52.169.0/24 maxlen: 24
212.52.172.0/24 maxlen: 24
212.52.167.0/24 maxlen: 24
212.52.174.0/24 maxlen: 24
212.52.173.0/24 maxlen: 24
212.52.177.0/24 maxlen: 24
212.52.178.0/24 maxlen: 24
212.52.175.0/24 maxlen: 24
212.52.176.0/24 maxlen: 24
212.52.179.0/24 maxlen: 24
212.52.184.0/24 maxlen: 24
212.52.185.0/24 maxlen: 24
212.52.182.0/24 maxlen: 24
212.52.183.0/24 maxlen: 24
212.52.186.0/24 maxlen: 24
212.52.181.0/24 maxlen: 24
212.52.180.0/24 maxlen: 24
212.52.187.0/24 maxlen: 24
212.52.188.0/24 maxlen: 24
212.52.191.0/24 maxlen: 24
212.52.189.0/24 maxlen: 24
212.52.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ae:d9:ce:cd:a9:67:fb:58:82:55:2f:72:a4:e8:4e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Oct 6 19:50:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1d873ee4a0860579299af80639715669a932e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:69:58:4f:8f:18:f8:94:da:96:cd:44:40:80:
0c:bc:69:95:29:6d:ec:02:ec:0a:ad:b2:9c:7f:8e:
75:f0:a3:1e:25:4c:d0:f5:1e:c6:fc:76:79:8d:f7:
e1:9f:07:b9:a8:c5:fc:05:49:87:e2:e9:ba:fc:c0:
96:e0:22:de:b3:5e:ed:0b:5c:f4:90:a5:0b:43:f8:
6b:e7:8d:e8:d3:31:ad:70:e8:ac:22:37:e0:1f:12:
e2:f5:00:ab:fe:0f:21:53:a5:79:7e:7c:66:37:7d:
0e:99:db:43:98:7e:dd:a0:d0:fe:15:5d:34:ed:c1:
df:40:e3:8f:d9:e4:d8:20:48:56:7b:b0:a8:d8:11:
b1:ba:1b:8d:23:3f:a4:5f:39:09:75:a5:aa:71:fd:
44:e4:cd:aa:64:db:7a:7f:84:37:b3:15:8a:13:8e:
ac:5a:b4:66:00:26:92:f5:18:f0:53:fd:ca:33:9f:
81:65:06:d1:e9:c1:6e:0a:39:46:f1:e2:21:f3:e1:
ae:a9:4a:4a:24:f9:10:31:d5:7f:c7:43:f5:74:39:
37:50:f1:e0:c5:8b:65:b9:3b:ce:2c:7b:29:9d:0f:
d1:da:ee:a6:9f:7f:13:19:78:fb:e7:5b:b8:59:b9:
d5:63:9a:c8:cb:97:58:5b:13:1a:ef:08:5f:cc:db:
51:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D8:73:EE:4A:08:60:57:92:99:AF:80:63:97:15:66:9A:93:2E:98
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sdhz7koIYFeSma-AY5cVZpqTLpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.90.98.0/23
195.90.114.0/23
212.52.160.0/19
Signature Algorithm: sha256WithRSAEncryption
56:b3:2b:5c:bb:2c:62:5d:b1:5c:da:91:28:df:25:63:84:03:
bd:44:93:32:1d:1a:2d:d1:09:98:9c:3d:5f:b0:22:3a:8e:4e:
0f:f3:bf:1b:0e:fc:4b:bc:c5:7a:21:e7:33:d7:a5:61:ab:39:
49:9c:98:b9:ad:72:1b:97:b6:84:96:a2:51:41:96:ac:a6:74:
f2:77:40:31:13:9e:00:b1:65:48:70:e3:a9:ef:dd:c6:54:fe:
08:45:44:10:56:97:ca:bd:98:53:b2:4b:ac:cd:bc:60:3c:80:
a5:14:76:b8:fb:ce:b5:26:f0:7d:36:be:e0:80:ee:68:2d:40:
14:db:18:31:36:f2:80:a2:69:40:11:a8:a5:47:e8:31:43:c3:
fa:39:77:f4:59:66:d6:56:7b:ba:0e:cd:f8:e1:fe:33:5c:9a:
23:e6:7e:b3:74:cd:e1:99:61:49:0f:b5:ac:40:73:a8:4e:b2:
ea:8d:38:96:8a:b5:1f:a7:3d:22:94:62:95:6f:16:52:76:9b:
d7:fc:59:d4:42:dd:8d:3d:20:af:a9:e5:e8:5d:fe:97:c5:4d:
36:86:a2:09:24:3a:14:d7:3b:a3:02:a1:6d:55:8b:1b:ed:33:
77:8b:27:a5:ca:cf:f6:c9:c4:de:b0:e9:87:b1:fc:80:ab:33:
c3:0a:2b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:03 2024 by rpki-client on console-fra.rpki-client.org