Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/e37d1d-d4fb-496c-af49-3420684c7e41/1/fuXonemj9s2mDWfoqwranWOYYTE.roa
File: fuXonemj9s2mDWfoqwranWOYYTE.roa (raw, json)
Hash identifier: I68J6ehDTmaUnw0+IL2HomnxzyyzPDGXXHL+uFfKH38=
Subject key identifier: 7E:E5:E8:9D:E9:A3:F6:CD:A6:0D:67:E8:AB:0A:DA:9D:63:98:61:31
Certificate issuer: /CN=0a41a925f8d6684c86107d2756b4aa93881f02ae
Certificate serial: 08A5CF75
Authority key identifier: 0A:41:A9:25:F8:D6:68:4C:86:10:7D:27:56:B4:AA:93:88:1F:02:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGpJfjWaEyGEH0nVrSqk4gfAq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/e37d1d-d4fb-496c-af49-3420684c7e41/1/fuXonemj9s2mDWfoqwranWOYYTE.roa
Signing time: Thu 02 Jun 2022 14:06:20 +0000
ROA not before: Thu 02 Jun 2022 14:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12601
IP address blocks: 185.113.40.0/22 maxlen: 22
80.94.176.0/22 maxlen: 22
80.94.185.0/24 maxlen: 24
80.94.182.0/23 maxlen: 23
80.94.184.0/24 maxlen: 24
185.211.140.0/22 maxlen: 22
185.194.80.0/22 maxlen: 22
213.159.9.0/24 maxlen: 24
64.126.192.0/23 maxlen: 23
80.94.188.0/23 maxlen: 23
64.126.194.0/23 maxlen: 23
194.5.134.0/24 maxlen: 24
64.126.200.0/22 maxlen: 22
64.126.208.0/24 maxlen: 24
64.126.212.0/22 maxlen: 22
64.126.212.0/24 maxlen: 24
194.126.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145084277 (0x8a5cf75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a41a925f8d6684c86107d2756b4aa93881f02ae
Validity
Not Before: Jun 2 14:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ee5e89de9a3f6cda60d67e8ab0ada9d63986131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f8:88:82:d0:38:4c:d9:6a:37:38:a7:82:4f:
4a:ba:6b:f8:8a:da:b9:ff:23:ce:e2:0a:57:04:86:
d9:fe:23:36:71:97:8a:21:76:4f:17:d2:bc:c9:ff:
6e:34:0a:c1:ed:2b:29:f0:4c:2e:c3:30:82:1a:4b:
93:1a:d7:7e:75:d1:c2:a1:f0:1d:99:93:95:2f:7a:
a3:92:16:34:3b:2f:62:80:0d:6e:2d:7e:12:ab:02:
3b:e4:34:53:ee:f7:3f:0c:41:b3:ea:e8:57:d8:96:
29:6c:32:b3:7e:fd:a9:90:c6:cc:66:84:f0:15:e6:
f3:f1:e3:f5:a4:be:c0:34:c4:c9:3a:fc:88:f9:88:
b9:1c:d4:8b:70:b0:da:b3:4b:f8:10:b5:37:8a:67:
2c:79:01:ef:83:8f:c1:be:91:1d:19:99:94:30:08:
7d:05:fc:26:ae:f9:f8:b8:53:97:e5:b3:03:15:f0:
28:c0:05:6c:d4:21:67:40:b4:c1:0e:57:ab:b5:07:
6f:f9:b8:87:94:77:82:61:d7:c5:44:fe:19:0c:e0:
75:af:ca:1c:1d:da:60:14:68:78:fa:76:67:61:09:
c1:2d:ea:24:61:94:71:b3:12:45:55:f7:0e:23:cb:
27:81:6e:bc:6d:d4:f4:a1:0e:f8:e0:1e:f4:48:92:
62:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E5:E8:9D:E9:A3:F6:CD:A6:0D:67:E8:AB:0A:DA:9D:63:98:61:31
X509v3 Authority Key Identifier:
keyid:0A:41:A9:25:F8:D6:68:4C:86:10:7D:27:56:B4:AA:93:88:1F:02:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGpJfjWaEyGEH0nVrSqk4gfAq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e37d1d-d4fb-496c-af49-3420684c7e41/1/fuXonemj9s2mDWfoqwranWOYYTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e37d1d-d4fb-496c-af49-3420684c7e41/1/CkGpJfjWaEyGEH0nVrSqk4gfAq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.126.192.0/22
64.126.200.0/22
64.126.208.0/24
64.126.212.0/22
80.94.176.0/22
80.94.182.0-80.94.185.255
80.94.188.0/23
185.113.40.0/22
185.194.80.0/22
185.211.140.0/22
194.5.134.0/24
194.126.236.0/24
213.159.9.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:5b:33:f9:11:af:d9:ca:ab:e4:96:7c:40:10:ad:3b:8a:e6:
51:19:66:a2:02:4d:38:4f:46:1d:d9:09:1b:ba:9a:70:80:b4:
65:e8:4f:20:6d:2b:c2:64:70:fd:6c:90:09:31:29:e6:a1:02:
29:66:85:94:4e:80:4f:ae:27:2a:a1:6d:c8:d2:54:11:82:ce:
72:39:1d:81:f8:4e:33:10:57:2b:5d:73:49:f7:ad:18:05:f2:
7c:7e:d2:4e:c0:b4:fd:ed:49:0e:d6:2a:96:27:2b:b6:0e:15:
8e:fd:ce:c3:66:72:c3:62:05:30:52:69:0b:92:56:d0:0b:fc:
99:cf:b8:5e:4a:af:f4:fb:b8:85:c4:39:fd:9d:6f:5f:26:8d:
e9:bf:21:e4:ad:7a:2e:12:53:3e:d7:d3:66:0b:0f:b4:d0:f5:
5b:5c:0d:95:86:74:34:3e:db:7f:ac:e2:e4:08:74:ea:a6:90:
48:12:b7:88:ef:d3:bb:c4:5e:fe:4d:22:5f:61:88:43:ac:cb:
fd:57:6b:90:45:df:37:ab:f5:0c:d1:0b:27:45:8f:3c:53:2b:
33:b3:01:2f:a3:40:3c:7c:99:18:89:7d:73:1e:d2:79:89:aa:
f6:23:48:f1:4b:27:0d:bf:96:df:62:b2:0f:53:b8:51:7f:73:
3d:44:8d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:21 2023 by rpki-client on console-ams.rpki-client.org