Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/YjkSXrkWaulNf4BzUn4pal6ONRI.roa
File: YjkSXrkWaulNf4BzUn4pal6ONRI.roa (raw, json)
Hash identifier: yn998D2NJdSDt2fAmskNYljRt0JiPTtLmqknd7cypi4=
Subject key identifier: 62:39:12:5E:B9:16:6A:E9:4D:7F:80:73:52:7E:29:6A:5E:8E:35:12
Certificate issuer: /CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Certificate serial: 01B22EBA
Authority key identifier: C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/YjkSXrkWaulNf4BzUn4pal6ONRI.roa
Signing time: Tue 26 Apr 2022 10:12:49 +0000
ROA not before: Tue 26 Apr 2022 10:12:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200799
IP address blocks: 185.188.24.0/24 maxlen: 24
185.188.27.0/24 maxlen: 24
185.188.26.0/24 maxlen: 24
185.188.25.0/24 maxlen: 24
185.95.38.0/24 maxlen: 24
185.95.37.0/24 maxlen: 24
185.95.36.0/22 maxlen: 22
185.95.36.0/24 maxlen: 24
185.95.39.0/24 maxlen: 24
212.237.252.0/24 maxlen: 24
217.61.254.0/24 maxlen: 24
130.193.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28454586 (0x1b22eba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Validity
Not Before: Apr 26 10:12:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6239125eb9166ae94d7f8073527e296a5e8e3512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:cf:5f:39:92:91:15:18:9a:26:40:29:77:62:
98:94:6f:11:d7:3d:0d:6d:d7:f0:c6:7b:16:70:b3:
9b:f8:fe:be:6b:59:e6:33:75:2a:45:0b:74:de:ae:
60:14:85:ac:04:3e:31:31:c7:91:6a:53:88:82:ba:
eb:9a:a8:6d:1e:67:97:3b:d4:d6:dd:62:b2:85:bc:
9c:06:0a:77:3e:83:e5:aa:09:d2:0a:83:ab:24:d4:
fe:40:de:67:d1:fa:80:0d:f2:69:fe:a8:87:d7:68:
d0:5a:6e:58:e8:93:62:45:93:36:b9:23:62:43:48:
b6:cd:ac:0e:45:07:30:36:68:df:ac:d0:34:5f:85:
8c:0d:07:2b:47:59:be:84:fb:20:d6:39:19:9b:f7:
aa:66:e6:b0:c3:41:4b:c8:21:63:10:80:18:4f:48:
ec:9d:53:12:68:2b:a8:20:91:c9:78:16:09:40:6b:
bf:a5:56:e0:3d:6b:f5:cb:84:91:eb:35:8c:ba:4f:
91:38:26:f6:85:f3:67:87:60:83:17:f7:77:0b:fe:
8e:93:43:58:da:20:e7:f1:d3:42:58:01:f0:6d:7f:
29:ad:4e:14:a2:15:1b:95:ed:f1:3f:bd:c3:39:c0:
73:49:58:d6:51:af:5e:fa:d0:90:0c:81:d1:71:6b:
5d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:39:12:5E:B9:16:6A:E9:4D:7F:80:73:52:7E:29:6A:5E:8E:35:12
X509v3 Authority Key Identifier:
keyid:C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/YjkSXrkWaulNf4BzUn4pal6ONRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/wnaouodMP73a00TQMliz4sBNe8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.1.0/24
185.95.36.0/22
185.188.24.0/22
212.237.252.0/24
217.61.254.0/24
Signature Algorithm: sha256WithRSAEncryption
25:69:96:49:7e:f4:1e:d4:c8:bd:b8:d9:8d:ac:7c:06:25:f5:
b3:ff:0e:85:a4:06:3c:11:f4:0b:d6:9b:be:ff:3e:5f:0c:eb:
09:3e:a2:61:6b:35:14:8a:5d:1d:5f:2e:5e:c9:c2:a7:7c:94:
12:4f:b4:f6:6f:06:f0:4b:96:cf:c4:b7:2d:a3:5c:8d:ef:a4:
91:15:e9:fe:fe:a1:66:ab:48:96:be:78:b7:5c:12:28:04:9b:
ca:87:d4:0a:c6:2a:78:24:d0:ac:e0:f9:cd:0b:67:f1:f9:00:
4a:c8:31:da:93:d8:19:d6:0a:7a:52:15:07:6c:27:d8:62:5e:
ba:cb:0c:75:35:ea:70:48:47:21:23:05:30:dc:79:c9:3b:6c:
b3:68:5e:51:85:80:4a:7c:0f:20:18:e1:cd:2c:75:17:67:d9:
07:8f:4f:d7:f2:80:a4:06:42:db:9c:f7:44:df:43:9a:24:82:
89:e2:3e:2b:17:80:e9:f5:bd:cb:88:b9:65:b7:0d:f6:60:57:
10:0e:07:58:96:4e:79:83:11:fa:ed:bb:dd:c1:0d:c4:01:a3:
de:5d:d2:75:8a:09:a7:c3:85:63:a9:0e:39:83:08:13:21:2c:
d2:0b:d3:96:da:f9:9b:8d:3b:33:b0:9e:67:8c:c1:a2:60:05:
27:f2:89:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:50 2023 by rpki-client on console-fra.rpki-client.org