Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/nXesMDE0eGb7QlLNTu3jbEGweh4.roa
File: nXesMDE0eGb7QlLNTu3jbEGweh4.roa (raw, json)
Hash identifier: gHkka2hNB0GIBqRtdF58XEvJV74T1Uu/Cv/FLRS4iKI=
Subject key identifier: 9D:77:AC:30:31:34:78:66:FB:42:52:CD:4E:ED:E3:6C:41:B0:7A:1E
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 07BFBE4B
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/nXesMDE0eGb7QlLNTu3jbEGweh4.roa
Signing time: Sat 01 Jan 2022 15:02:48 +0000
ROA not before: Sat 01 Jan 2022 15:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 194.85.107.0/24 maxlen: 32
193.232.136.0/24 maxlen: 32
193.232.135.0/24 maxlen: 32
193.232.140.0/24 maxlen: 32
194.190.119.0/24 maxlen: 32
194.85.177.0/24 maxlen: 32
194.226.100.0/22 maxlen: 32
193.232.87.0/24 maxlen: 32
195.208.208.0/21 maxlen: 32
193.232.244.0/24 maxlen: 32
2001:7f8:20:201::/64 maxlen: 128
2001:7f8:20:401::/64 maxlen: 128
2001:7f8:20:1101::/64 maxlen: 128
2001:7f8:20:601::/64 maxlen: 128
2001:7f8:20:801::/64 maxlen: 128
2001:7f8:20:101::/64 maxlen: 128
2001:7f8:20:301::/64 maxlen: 128
2001:7f8:20:501::/64 maxlen: 128
2001:7f8:20:701::/64 maxlen: 128
2001:7f8:20:901::/64 maxlen: 128
2001:7f8:20:202::/64 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130006603 (0x7bfbe4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jan 1 15:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d77ac3031347866fb4252cd4eede36c41b07a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:79:29:8e:a8:6a:d5:90:13:d0:91:0f:78:e1:
54:95:bd:89:b5:b0:8c:07:b6:1e:74:de:a2:88:4b:
ce:01:23:75:e9:8d:c7:16:6b:06:94:c0:38:8e:b1:
9e:2c:7a:3d:02:0c:65:22:0d:e2:41:ba:7a:7c:9e:
5d:a3:ce:c3:03:61:fe:eb:c3:a4:e6:4a:10:5a:d6:
05:ea:89:36:c7:86:bf:50:8d:0d:a7:74:9d:7e:ac:
3b:97:29:7d:d1:fe:43:b6:91:c1:32:9b:24:eb:04:
a2:3a:1e:5b:4b:8f:89:0a:0f:88:d0:ba:1e:cd:8f:
4f:37:98:3b:c5:11:23:08:f6:16:d2:c4:a2:66:ae:
93:46:19:ba:6f:fa:76:b2:39:ca:0c:5d:94:61:cf:
1f:d2:15:f6:1a:eb:03:61:74:03:b0:6b:5a:6c:d7:
09:18:e4:6a:e1:a5:37:73:fb:95:96:54:01:d2:ad:
68:6e:6e:88:46:5a:89:ef:2e:94:75:cc:0a:23:6c:
bc:b8:41:fa:e6:42:97:a8:6f:67:b0:1a:98:04:d6:
6a:e6:3f:76:d8:d6:70:40:3c:de:73:3b:c0:0e:5c:
4d:cc:05:16:1a:d4:0e:33:b4:49:64:e2:52:98:4d:
c6:18:a7:42:7f:5e:cd:93:fd:4d:71:bf:1b:b2:45:
e2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:77:AC:30:31:34:78:66:FB:42:52:CD:4E:ED:E3:6C:41:B0:7A:1E
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/nXesMDE0eGb7QlLNTu3jbEGweh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.87.0/24
193.232.135.0-193.232.136.255
193.232.140.0/24
193.232.244.0/24
194.85.107.0/24
194.85.177.0/24
194.190.119.0/24
194.226.100.0/22
195.208.208.0/21
IPv6:
2001:7f8:20:101::/64
2001:7f8:20:201::-2001:7f8:20:202:ffff:ffff:ffff:ffff
2001:7f8:20:301::/64
2001:7f8:20:401::/64
2001:7f8:20:501::/64
2001:7f8:20:601::/64
2001:7f8:20:701::/64
2001:7f8:20:801::/64
2001:7f8:20:901::/64
2001:7f8:20:1101::/64
Signature Algorithm: sha256WithRSAEncryption
25:2d:b3:89:af:a5:f7:1c:62:f9:5f:96:0d:53:6d:d2:7c:e2:
43:7c:3b:ed:b1:3f:74:3c:bd:33:40:9f:a3:3f:cc:d5:d2:d2:
65:0e:8c:c0:10:85:21:ad:c7:bf:67:57:d6:0d:df:f1:ce:bc:
7b:02:50:d2:09:48:d9:a6:cf:24:35:15:3d:e3:e2:4f:d1:ea:
7e:78:93:a2:ba:3a:69:1a:c9:94:da:80:45:96:2d:7f:6a:a2:
fd:09:84:2e:f3:fc:55:41:05:a4:73:f8:6f:cc:72:19:59:46:
a1:05:14:ac:a3:76:ba:8e:10:81:d6:a8:5f:ba:e4:f3:83:81:
7d:01:f2:77:23:ef:d3:91:a3:33:07:b2:24:07:46:c1:28:ff:
a7:45:3d:93:fd:a0:26:b0:4c:d9:88:42:51:3d:2e:02:dc:e1:
e0:48:e5:10:9b:8b:a4:30:d4:ae:6c:96:77:d7:a9:a2:ea:8d:
a5:38:ad:b8:60:fa:f2:7c:da:b1:b5:ce:24:bf:58:b3:fe:ce:
6a:58:81:d0:37:b5:8c:51:27:64:5b:55:d5:83:b6:bf:14:ba:
44:3b:7a:cb:d2:fe:37:2e:6c:6d:7a:43:8d:cf:0b:66:40:2f:
6a:ca:90:80:84:26:49:4a:0d:53:00:ff:8a:37:80:e7:42:1d:
4d:83:c1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org