Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/c08v6ZSGqU0I321jmTGXQfUTVqI.roa
File: c08v6ZSGqU0I321jmTGXQfUTVqI.roa (raw, json)
Hash identifier: fQIok4tTXcmsrkHvzXGWZf5JOE9uRz/kr+KRabMHzwM=
Subject key identifier: 73:4F:2F:E9:94:86:A9:4D:08:DF:6D:63:99:31:97:41:F5:13:56:A2
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 1847C7FC
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/c08v6ZSGqU0I321jmTGXQfUTVqI.roa
Signing time: Wed 01 Jun 2022 06:49:13 +0000
ROA not before: Wed 01 Jun 2022 06:49:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 19
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.160.0/23 maxlen: 23
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.168.0/24 maxlen: 24
80.250.169.0/24 maxlen: 24
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
194.190.240.0/24 maxlen: 24
2a07:a6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407357436 (0x1847c7fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jun 1 06:49:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=734f2fe99486a94d08df6d6399319741f51356a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9e:db:14:a6:b9:9a:a1:9a:95:ee:e2:9c:3d:
ef:b7:9c:58:d8:2d:01:d7:e8:de:18:a7:f9:7d:5f:
6f:eb:52:c6:47:84:0c:7e:43:bd:32:07:23:90:52:
32:14:73:af:7d:04:37:05:8b:b4:34:dd:23:1d:7b:
93:d9:45:e0:b6:ee:b6:4f:2a:a8:50:33:32:44:63:
73:db:bc:8b:c1:43:4f:51:1b:78:07:5d:ee:12:9c:
28:42:8c:19:e0:a3:f6:c7:9e:50:ce:d6:9f:d2:57:
c7:67:30:3c:0b:9b:f8:b0:06:11:82:26:57:c5:39:
f8:c2:f7:d4:5c:d5:2f:83:87:20:10:f8:10:63:d0:
a7:08:a1:93:b8:56:b2:a9:71:16:4e:54:4b:2f:10:
f9:b9:b5:87:0b:72:90:f4:7f:fd:86:b2:33:8e:51:
b8:83:ce:94:62:8c:64:20:18:1e:c4:55:be:20:f1:
a3:66:b3:a3:93:f0:0a:bd:b7:54:56:f4:2e:3e:a1:
af:b2:8e:78:a1:09:85:1c:82:eb:1a:fa:70:7d:28:
a4:cf:cf:d3:d8:8a:4e:91:45:d2:21:a0:c9:f0:53:
d0:82:bc:a7:11:3d:1f:4a:71:ec:ac:22:7b:28:4f:
d5:f3:c7:62:00:84:3f:5b:94:e4:ae:8f:9d:07:46:
dc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4F:2F:E9:94:86:A9:4D:08:DF:6D:63:99:31:97:41:F5:13:56:A2
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/c08v6ZSGqU0I321jmTGXQfUTVqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
85.142.64.0/24
85.142.78.0/24
86.110.96.0/19
193.27.214.0/23
194.85.32.0/20
194.190.224.0/19
IPv6:
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
10:eb:0a:f5:cf:24:e3:83:9a:9b:f6:58:6a:68:b3:6d:13:d0:
dd:83:88:df:47:33:a6:cf:85:8b:51:fb:35:86:df:e2:6e:46:
41:36:a3:df:e8:00:19:80:69:76:ba:92:05:2c:a5:08:ca:ef:
67:80:e0:54:e6:cc:0e:22:85:5c:bc:05:78:5a:92:de:5d:0e:
ea:44:8f:2d:ad:68:e4:ee:a9:f4:e9:cf:24:1a:11:f8:dd:5b:
08:dc:79:76:91:12:fc:20:a0:bf:8a:a9:19:bc:b3:b6:1c:b0:
bc:46:c2:38:52:17:00:b4:c9:e0:a2:55:47:e2:f4:f1:6a:ce:
f3:9a:e2:73:ce:0d:07:3e:81:b0:11:dd:e5:27:ee:0e:3f:30:
4c:13:4c:31:b0:90:10:58:79:86:8a:c8:c3:ba:c3:f9:c4:be:
f7:f2:b3:30:3b:ae:a6:bd:4e:1c:23:af:5f:e2:38:ec:4f:75:
2a:06:c8:9a:f7:1c:55:04:db:d2:19:e6:88:4d:69:c2:d4:95:
2c:fb:a4:94:81:0a:4b:c0:a2:17:90:d0:01:13:c1:1d:ec:9e:
40:52:ba:b5:b5:af:58:a6:9b:0d:24:b1:28:bf:5e:e2:85:4f:
d4:0c:ca:c3:6d:61:37:a9:dc:84:73:2d:98:b6:a3:6f:49:db:
19:7f:97:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org