Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/uLXVV-6WtuUPuoqfrwQb1HTe15U.roa
File: uLXVV-6WtuUPuoqfrwQb1HTe15U.roa (raw, json)
Hash identifier: sftTUDc216Pd8gytA3JqDu7FhtDM6nuKZr9WY9yx8U8=
Subject key identifier: B8:B5:D5:57:EE:96:B6:E5:0F:BA:8A:9F:AF:04:1B:D4:74:DE:D7:95
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 18796E82
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/uLXVV-6WtuUPuoqfrwQb1HTe15U.roa
Signing time: Mon 20 Jun 2022 10:18:01 +0000
ROA not before: Mon 20 Jun 2022 10:18:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
86.110.96.0/22 maxlen: 22
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
86.110.101.0/24 maxlen: 24
86.110.112.0/20 maxlen: 20
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 19
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.160.0/23 maxlen: 23
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.168.0/24 maxlen: 24
80.250.169.0/24 maxlen: 24
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
194.190.240.0/24 maxlen: 24
2a07:a6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410611330 (0x18796e82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jun 20 10:18:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8b5d557ee96b6e50fba8a9faf041bd474ded795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:c4:c9:b3:ea:57:fb:bf:2f:80:a7:1a:14:
4d:33:df:08:df:74:b8:eb:54:45:29:ad:c8:1e:22:
98:8b:c0:6f:45:e4:16:74:41:44:d3:28:03:ea:09:
6c:3b:75:ec:2d:23:c9:e1:98:10:84:cb:0c:06:45:
61:e8:e9:04:d7:4a:29:5f:a7:5e:3d:0c:f2:b1:ea:
48:29:4c:02:d9:d0:76:e2:fa:19:b2:a6:86:1d:92:
96:50:7e:89:c9:a2:8a:cd:00:75:20:5e:b1:91:58:
5a:f4:3c:36:84:30:4f:58:e1:07:91:68:9c:6c:a7:
75:05:41:a8:30:6e:39:26:57:9b:4b:29:f7:50:7f:
bf:fb:4b:9e:4a:b6:0b:ad:c2:c5:e5:07:da:bb:15:
01:0e:96:44:36:47:39:24:c9:62:45:3b:f5:5a:a7:
3d:25:f6:69:b7:65:e4:d9:67:9d:5b:4c:2d:e4:ca:
c7:83:eb:a3:41:84:39:00:e2:d1:cc:7e:ba:b4:13:
40:03:a2:34:8b:47:42:13:ac:99:78:1b:ee:b6:34:
0e:f7:8e:62:1d:be:9e:c7:3f:8f:00:ab:72:40:71:
ec:ca:42:5c:c8:db:91:3d:f0:5b:9a:f2:9b:78:94:
a1:0c:0b:03:86:df:34:14:16:62:5e:de:dc:97:75:
4e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B5:D5:57:EE:96:B6:E5:0F:BA:8A:9F:AF:04:1B:D4:74:DE:D7:95
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/uLXVV-6WtuUPuoqfrwQb1HTe15U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
85.142.64.0/24
85.142.78.0/24
86.110.96.0/19
193.27.214.0/23
194.85.32.0/20
194.190.224.0/19
IPv6:
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
56:c0:17:05:46:0d:97:50:bf:ce:c3:b1:9f:42:ca:2d:0f:d1:
d5:33:9c:7a:4b:72:b8:2e:df:d7:be:11:7e:c4:a3:b5:04:cb:
f3:33:4e:dc:a9:0e:09:de:92:ae:4b:ce:80:e0:42:64:4f:a8:
7e:52:39:0c:96:2f:e2:24:3b:fd:96:06:97:d8:25:7b:0f:2c:
aa:06:11:fd:a9:02:77:08:66:0b:68:e9:c0:13:2a:49:ec:13:
6a:89:43:2e:60:65:d0:2d:89:f8:c8:00:0a:94:5f:ad:31:5c:
83:cc:4b:70:92:05:6a:01:7c:02:c2:55:c3:6f:1f:2d:cd:1a:
b0:1c:7e:bc:3b:1b:36:54:e2:21:4a:3c:e3:d8:f0:bf:c5:35:
d1:a4:72:0f:2c:46:b9:a3:c7:c3:74:16:cd:e5:60:87:b0:4f:
15:6b:b0:bc:04:cf:2b:aa:1f:5e:f6:e5:a4:b0:32:68:94:12:
05:fa:80:f3:49:8a:bd:0a:dd:0a:29:79:18:68:fd:ec:6d:50:
b8:f3:3d:66:80:9f:bb:cd:48:24:76:5f:70:f4:f1:20:88:b0:
1b:73:dd:76:57:77:24:cd:6a:16:7a:ae:d9:bb:fe:75:65:48:
4e:66:6c:df:de:45:bc:2c:f3:0e:e8:dc:60:dc:11:4f:22:c6:
04:da:e3:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org