Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/_a73Fc5IHuXtlaFCGr74nBBu2Es.roa
File: _a73Fc5IHuXtlaFCGr74nBBu2Es.roa (raw, json)
Hash identifier: 3tBImQ6zF8DLGmiZAc6rzB0Boo5LtdHQesK38Xl8GZU=
Subject key identifier: FD:AE:F7:15:CE:48:1E:E5:ED:95:A1:42:1A:BE:F8:9C:10:6E:D8:4B
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0C19B8E2
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/_a73Fc5IHuXtlaFCGr74nBBu2Es.roa
Signing time: Wed 01 Jun 2022 12:13:20 +0000
ROA not before: Wed 01 Jun 2022 12:13:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20485
IP address blocks: 217.150.32.0/19 maxlen: 19
80.76.240.0/20 maxlen: 24
185.50.216.0/22 maxlen: 24
145.255.136.0/21 maxlen: 21
80.237.0.0/17 maxlen: 17
188.43.0.0/16 maxlen: 16
80.82.160.0/19 maxlen: 19
185.13.160.0/22 maxlen: 22
62.33.0.0/16 maxlen: 16
83.234.0.0/16 maxlen: 16
151.237.240.0/21 maxlen: 24
195.246.122.0/23 maxlen: 24
62.33.111.0/24 maxlen: 24
217.148.208.0/20 maxlen: 24
2a00:1e48::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203012322 (0xc19b8e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jun 1 12:13:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdaef715ce481ee5ed95a1421abef89c106ed84b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6c:1b:41:8d:95:39:c7:a4:12:7d:0c:ad:41:
d3:19:0b:3f:b7:7c:7a:df:8a:7f:a2:ab:fc:f3:e0:
9a:2a:38:95:1a:4b:8a:58:81:b4:b6:b7:47:25:7b:
52:a9:66:2d:6e:db:9e:bb:07:34:7d:9b:9a:3e:b6:
5c:3f:2e:9c:5e:8c:e9:65:c8:65:da:4c:d0:93:a2:
2c:f4:0d:86:c9:2d:7a:8c:c2:26:6e:2a:c7:96:55:
16:ef:76:bd:e0:fd:0a:f0:a6:5f:57:50:7b:08:67:
ee:39:d5:ef:66:f0:63:ff:1e:34:c7:ce:ee:32:a9:
f5:af:35:c5:b0:fb:6f:9f:f0:63:48:96:9b:a6:84:
17:b7:3e:10:41:94:77:56:d2:1c:fd:97:04:15:ad:
10:20:b7:02:3d:04:30:18:7a:1c:50:20:42:b6:8a:
39:fe:30:6a:66:c9:ed:82:bb:ae:51:dc:93:c6:06:
3c:27:ee:8c:24:33:0a:a3:db:ed:c2:35:10:6f:a2:
c0:e6:9b:40:60:7c:cc:d1:1d:f6:04:83:43:7a:9c:
c9:f8:44:8e:1e:a1:14:eb:94:71:61:ed:51:fc:ae:
dc:90:91:be:a1:c8:b2:4e:cf:cd:02:a1:a2:d4:b5:
1a:52:32:ac:99:f5:49:a0:71:b1:f3:f2:d1:5f:88:
48:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AE:F7:15:CE:48:1E:E5:ED:95:A1:42:1A:BE:F8:9C:10:6E:D8:4B
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/_a73Fc5IHuXtlaFCGr74nBBu2Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.33.0.0/16
80.76.240.0/20
80.82.160.0/19
80.237.0.0/17
83.234.0.0/16
145.255.136.0/21
151.237.240.0/21
185.13.160.0/22
185.50.216.0/22
188.43.0.0/16
195.246.122.0/23
217.148.208.0/20
217.150.32.0/19
IPv6:
2a00:1e48::/32
Signature Algorithm: sha256WithRSAEncryption
9c:ec:58:d4:44:b3:1a:36:c8:66:06:87:ef:78:ef:58:4e:b9:
91:22:84:f5:d8:87:8e:9d:08:96:28:ab:b9:ac:f8:bc:25:02:
e6:c5:da:a4:8e:de:97:6a:6a:df:7c:54:27:b1:a0:f9:48:e8:
19:99:7f:e0:dd:52:57:ec:70:6e:d5:63:2a:05:55:e8:ab:0c:
0f:11:16:89:61:10:a0:b9:f7:79:99:36:9b:bd:67:96:cf:b6:
6a:60:76:7a:1a:03:af:5d:e4:7e:9c:f1:79:d0:26:35:1a:50:
4d:98:e3:f1:a9:72:ab:7e:c3:be:72:6e:86:04:a2:96:d7:96:
2a:b6:8a:df:49:c7:01:1a:85:60:01:7f:e7:35:df:8c:ae:68:
27:c6:7c:95:e0:9b:84:f0:66:80:7d:8b:bd:43:73:ae:dd:7c:
11:a1:5f:a5:94:05:93:73:c3:00:ca:28:b4:78:c4:1b:bb:5f:
d1:db:3e:df:33:28:e4:ad:a3:87:2b:f5:f9:40:a9:f8:12:cd:
ea:87:aa:95:57:39:71:7b:fc:4a:59:0c:31:27:4b:70:c3:ee:
c5:eb:65:8c:8c:f8:74:07:9f:36:63:70:92:d9:9b:d1:fa:de:
22:c4:6b:31:d6:89:9c:7a:ff:8c:9c:17:c5:18:ad:96:7e:a8:
37:c2:8d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org