Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/A0wX1D4SB1QCFS7ASSl9MFW81gA.roa
File: A0wX1D4SB1QCFS7ASSl9MFW81gA.roa (raw, json)
Hash identifier: 4rj6sN/tsF0lmBdj3mgNgqfrd6iDPHIP4736133Bi8I=
Subject key identifier: 03:4C:17:D4:3E:12:07:54:02:15:2E:C0:49:29:7D:30:55:BC:D6:00
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0BF7AD57
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/A0wX1D4SB1QCFS7ASSl9MFW81gA.roa
Signing time: Fri 20 May 2022 12:51:05 +0000
ROA not before: Fri 20 May 2022 12:51:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21438
IP address blocks: 178.76.215.0/24 maxlen: 24
86.110.162.0/23 maxlen: 23
86.110.164.0/23 maxlen: 23
86.110.172.0/24 maxlen: 24
86.110.166.0/23 maxlen: 23
5.149.147.0/24 maxlen: 24
5.149.148.0/24 maxlen: 24
178.76.192.0/24 maxlen: 24
178.76.193.0/24 maxlen: 24
178.76.200.0/22 maxlen: 22
178.76.204.0/24 maxlen: 24
178.76.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200781143 (0xbf7ad57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: May 20 12:51:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=034c17d43e12075402152ec049297d3055bcd600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8e:3b:cc:e0:9d:71:1d:0c:24:8d:86:de:86:
4a:14:b3:de:37:83:6a:30:14:d7:df:37:71:89:c6:
31:8b:b3:04:41:1a:dc:e7:fe:4b:e0:65:21:c9:01:
1c:ad:56:31:59:05:9f:87:96:54:85:c2:db:f7:cc:
64:31:e5:ff:f7:5b:33:91:12:6b:02:a6:57:07:8f:
26:7d:86:91:67:4e:bc:b1:c5:a1:9b:23:ab:e1:5b:
f7:3a:91:77:c5:b7:fb:ba:06:55:61:c2:49:a2:fa:
0a:e7:7b:fb:de:83:2f:ef:67:dd:d7:64:98:96:6b:
a9:7d:63:ca:16:11:e1:53:0c:6c:23:09:41:d7:83:
31:53:6c:e2:5d:ab:e9:bc:fe:c7:de:46:62:f5:93:
9a:9d:07:10:83:c1:1d:27:d6:05:8d:0a:2b:1e:b2:
f8:eb:f3:4a:46:ee:c0:4d:0c:8b:85:77:a2:eb:3f:
b3:3f:7c:20:82:9c:f3:df:ef:5d:a0:3d:e9:c1:2b:
64:9c:59:4d:92:45:2d:84:4e:5a:6b:fb:09:13:aa:
58:dd:b7:65:0c:9d:97:e2:f1:93:7b:2a:17:e7:30:
1b:9f:29:ad:ee:ee:67:b2:9a:4e:56:5a:35:a8:a3:
50:98:a9:42:f4:ae:24:0f:19:a8:30:f1:6b:db:e5:
a1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4C:17:D4:3E:12:07:54:02:15:2E:C0:49:29:7D:30:55:BC:D6:00
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/A0wX1D4SB1QCFS7ASSl9MFW81gA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.147.0-5.149.148.255
86.110.162.0-86.110.167.255
86.110.172.0/24
178.76.192.0/23
178.76.200.0-178.76.204.255
178.76.206.0/24
178.76.215.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:61:b5:79:75:c3:37:d6:d8:15:64:b8:d8:53:dc:dc:c2:91:
59:48:b3:43:15:f3:91:0e:d9:e7:28:ff:4b:93:36:30:27:1a:
7b:9d:f4:5e:05:91:ba:e9:23:aa:f4:da:66:ec:23:f2:fc:25:
98:f6:c5:17:dd:9a:c2:a2:3d:0c:b2:57:fb:5f:21:9e:4b:3f:
07:e3:39:4b:af:b9:5d:8f:72:ed:f5:2b:ae:2b:2c:2e:f5:4e:
a1:18:a0:4a:a3:45:3d:b8:94:5b:4d:ec:46:64:80:06:33:68:
26:4b:bd:21:fc:96:49:7d:e0:ff:6f:ec:c4:ba:41:02:57:8f:
4c:c8:0b:ce:41:98:c8:46:8e:86:c1:a8:25:03:93:04:3c:39:
c0:fc:9a:16:8d:b3:45:b1:13:f8:a3:9e:ee:f7:29:28:65:ba:
00:08:1d:e2:08:a0:9c:f5:9d:28:ba:a5:73:64:20:9c:5a:4a:
6c:07:bf:99:69:f5:96:a2:75:f0:cb:d7:08:3f:89:c3:2b:2a:
da:ee:5a:70:18:48:f7:5d:d4:8a:8f:b7:2b:04:a9:b1:56:33:
00:e4:5a:3d:84:0f:ff:03:34:42:9b:8a:2e:7c:23:d8:b7:63:
02:84:cb:f8:b1:47:96:16:cf:5c:85:68:fe:37:b1:82:54:56:
9e:55:f6:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org