Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/fiMVH-AoIv_SikMTDkIOlgOK0vA.roa
File: fiMVH-AoIv_SikMTDkIOlgOK0vA.roa (raw, json)
Hash identifier: bF9elxg8GYAPbkTHkF11PWsEq17Roi5sMHlmpPugvWs=
Subject key identifier: 7E:23:15:1F:E0:28:22:FF:D2:8A:43:13:0E:42:0E:96:03:8A:D2:F0
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 01841587B58144A6E321EE1EE5EA2E2AB043
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/fiMVH-AoIv_SikMTDkIOlgOK0vA.roa
Signing time: Wed 26 Oct 2022 18:22:06 +0000
ROA not before: Wed 26 Oct 2022 18:22:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13335
IP address blocks: 188.114.98.0/24 maxlen: 24
188.114.97.0/24 maxlen: 24
188.114.96.0/24 maxlen: 24
188.114.104.0/24 maxlen: 24
188.114.100.0/24 maxlen: 24
188.114.99.0/24 maxlen: 24
188.114.101.0/24 maxlen: 24
188.114.103.0/24 maxlen: 24
188.114.102.0/24 maxlen: 24
188.114.111.0/24 maxlen: 24
188.114.106.0/23 maxlen: 23
188.114.108.0/24 maxlen: 24
188.114.110.0/24 maxlen: 24
188.114.109.0/24 maxlen: 24
141.101.67.0/24 maxlen: 24
141.101.66.0/24 maxlen: 24
141.101.69.0/24 maxlen: 24
141.101.68.0/24 maxlen: 24
141.101.71.0/24 maxlen: 24
141.101.70.0/24 maxlen: 24
141.101.65.0/24 maxlen: 24
141.101.74.0/24 maxlen: 24
141.101.73.0/24 maxlen: 24
141.101.76.0/23 maxlen: 23
141.101.75.0/24 maxlen: 24
141.101.72.0/24 maxlen: 24
141.101.83.0/24 maxlen: 24
141.101.82.0/24 maxlen: 24
141.101.84.0/24 maxlen: 24
141.101.85.0/24 maxlen: 24
141.101.88.0/22 maxlen: 22
141.101.90.0/24 maxlen: 24
141.101.95.0/24 maxlen: 24
141.101.94.0/24 maxlen: 24
141.101.97.0/24 maxlen: 24
141.101.96.0/24 maxlen: 24
141.101.98.0/24 maxlen: 24
141.101.104.0/24 maxlen: 24
141.101.105.0/24 maxlen: 24
141.101.100.0/22 maxlen: 22
141.101.99.0/24 maxlen: 24
141.101.109.0/24 maxlen: 24
141.101.108.0/24 maxlen: 24
141.101.111.0/24 maxlen: 24
141.101.110.0/24 maxlen: 24
141.101.112.0/23 maxlen: 23
141.101.107.0/24 maxlen: 24
141.101.106.0/24 maxlen: 24
141.101.112.0/20 maxlen: 20
141.101.114.0/23 maxlen: 23
141.101.64.0/24 maxlen: 24
141.101.120.0/22 maxlen: 22
2a06:98c0:1c04::/48 maxlen: 48
2a06:98c1:310b::/48 maxlen: 48
2a06:98c1:3101::/48 maxlen: 48
2a06:98c1:50::/45 maxlen: 45
2a06:98c0:1c0e::/48 maxlen: 48
2a06:98c1:3108::/48 maxlen: 48
2a06:98c1:3123::/48 maxlen: 48
2a06:98c1:310f::/48 maxlen: 48
2a06:98c0:1c01::/48 maxlen: 48
2a06:98c1:3100::/48 maxlen: 48
2a06:98c1:3200::/48 maxlen: 48
2a06:98c0:1c05::/48 maxlen: 48
2a06:98c0:1c08::/48 maxlen: 48
2a06:98c1:3122::/48 maxlen: 48
2a06:98c1:3107::/48 maxlen: 48
2a06:98c1:58::/48 maxlen: 48
2a06:98c0:1c0c::/48 maxlen: 48
2a06:98c1:310e::/48 maxlen: 48
2a06:98c0:1c02::/48 maxlen: 48
2a06:98c1:3104::/48 maxlen: 48
2a06:98c1:3106::/48 maxlen: 48
2a06:98c1:3121::/48 maxlen: 48
2a06:98c0:1c09::/48 maxlen: 48
2a06:98c1:310d::/48 maxlen: 48
2a06:98c1:3103::/48 maxlen: 48
2a06:98c0:1c0d::/48 maxlen: 48
2a06:98c1:54::/48 maxlen: 48
2a06:98c1:310a::/48 maxlen: 48
2a06:98c0:1c06::/48 maxlen: 48
2a06:98c1:3120::/48 maxlen: 48
2a06:98c1:3105::/48 maxlen: 48
2a06:98c0:1c0a::/48 maxlen: 48
2a06:98c1:310c::/48 maxlen: 48
2a06:98c0:1c03::/48 maxlen: 48
2a06:98c1:3102::/48 maxlen: 48
2a06:98c0:1c07::/48 maxlen: 48
2a06:98c0:1c00::/48 maxlen: 48
2a06:98c1:3109::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:15:87:b5:81:44:a6:e3:21:ee:1e:e5:ea:2e:2a:b0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Oct 26 18:22:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e23151fe02822ffd28a43130e420e96038ad2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:00:30:28:5f:18:f0:c7:ed:10:77:88:32:60:
17:02:be:a4:97:5b:02:79:70:38:4b:4b:ff:b3:73:
d4:67:36:ac:3e:84:ce:e9:d3:c8:77:97:e0:fa:50:
2c:b1:77:32:2e:c7:28:04:35:03:97:89:35:0a:1f:
7a:5e:1b:93:6f:db:ec:fe:77:97:1c:96:dc:bf:4e:
ef:3a:d8:2d:50:0f:7f:14:b3:09:5a:36:f5:c2:52:
20:17:52:04:d1:1e:24:d4:9d:86:79:ae:52:ad:89:
01:45:c4:cb:f8:0c:38:e6:89:3f:00:27:33:82:09:
d1:d7:db:4b:a1:91:68:b1:52:80:5b:c9:5e:8c:8e:
15:7e:90:d3:0e:53:15:e6:f9:c4:64:fd:84:5e:dc:
f1:d5:75:34:27:c8:54:64:c4:92:66:58:68:39:6f:
ec:38:fe:6b:05:9b:0b:97:9a:3b:78:b4:0d:ad:cc:
97:f1:27:50:68:e0:09:f5:c8:a1:a3:2b:84:a3:19:
42:98:00:b9:a0:99:77:af:13:f4:d3:f2:23:fb:6a:
ed:81:25:0e:15:6b:dd:d0:67:70:e7:12:c7:4f:93:
18:a4:05:b5:a5:0b:66:a7:93:09:6f:86:fc:44:6c:
39:2c:9f:47:5c:29:16:90:6d:a4:5b:4b:fb:69:dd:
6b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:23:15:1F:E0:28:22:FF:D2:8A:43:13:0E:42:0E:96:03:8A:D2:F0
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/fiMVH-AoIv_SikMTDkIOlgOK0vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.64.0-141.101.77.255
141.101.82.0-141.101.85.255
141.101.88.0/22
141.101.94.0-141.101.127.255
188.114.96.0-188.114.104.255
188.114.106.0-188.114.111.255
IPv6:
2a06:98c0:1c00::-2a06:98c0:1c0a:ffff:ffff:ffff:ffff:ffff
2a06:98c0:1c0c::-2a06:98c0:1c0e:ffff:ffff:ffff:ffff:ffff
2a06:98c1:50::-2a06:98c1:58:ffff:ffff:ffff:ffff:ffff
2a06:98c1:3100::/44
2a06:98c1:3120::/46
2a06:98c1:3200::/48
Signature Algorithm: sha256WithRSAEncryption
3c:8e:35:cb:fd:57:31:a0:b3:f6:8e:70:bf:90:71:fd:2b:1b:
43:7d:67:40:93:4b:99:33:00:c6:24:e6:dc:17:d0:54:74:aa:
f2:20:c2:51:03:fd:42:24:29:f8:02:ea:83:29:e3:0c:4a:ed:
05:da:e7:e5:9f:97:d2:20:9c:07:98:e3:0d:3e:3d:83:fc:96:
b1:44:ab:9e:5b:36:d1:77:e5:67:78:b2:00:4c:2e:7a:d3:11:
e5:16:84:66:b3:82:f2:5b:97:0f:d7:be:27:63:23:4d:8f:b1:
f3:32:3e:47:18:eb:64:3e:69:81:5f:75:32:f4:b4:44:da:aa:
df:ae:fa:ef:56:71:32:27:ad:d8:29:08:dc:14:64:ae:a5:a5:
88:15:fa:06:bb:fb:6c:48:0f:da:c2:c8:c9:36:49:b9:ec:f6:
22:8d:ce:2d:d4:70:bd:1d:f2:34:f8:7d:7a:dd:27:26:36:4c:
ce:85:4b:7b:aa:41:f5:09:a0:41:33:9d:8e:88:56:74:fd:71:
d8:68:52:bc:53:f7:9f:ca:9b:75:09:4c:b8:c4:46:e0:3f:fe:
47:46:50:0f:9c:fe:35:6e:c8:32:f2:4e:38:53:cb:f4:f5:3a:
8c:c1:93:7f:b5:14:6c:b6:87:bd:cd:d7:c0:a3:b6:f3:e2:8d:
a1:21:d1:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org