Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/MAGgulQOUHggtpvR5KrMpMpYX7c.roa
File: MAGgulQOUHggtpvR5KrMpMpYX7c.roa (raw, json)
Hash identifier: cxckKVw05rUSTEGuLPl/PU7h6kIByjAtlC/bXDlbkfY=
Subject key identifier: 30:01:A0:BA:54:0E:50:78:20:B6:9B:D1:E4:AA:CC:A4:CA:58:5F:B7
Certificate issuer: /CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Certificate serial: 11C2353A
Authority key identifier: F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/MAGgulQOUHggtpvR5KrMpMpYX7c.roa
Signing time: Wed 02 Feb 2022 15:42:31 +0000
ROA not before: Wed 02 Feb 2022 15:42:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 176.53.74.0/24 maxlen: 24
176.53.96.0/24 maxlen: 24
185.184.208.0/22 maxlen: 24
77.75.32.0/21 maxlen: 24
31.210.64.0/18 maxlen: 24
213.128.64.0/19 maxlen: 24
46.45.186.0/24 maxlen: 24
46.45.185.0/24 maxlen: 24
94.101.80.0/20 maxlen: 24
46.45.188.0/24 maxlen: 24
46.45.187.0/24 maxlen: 24
94.101.90.0/24 maxlen: 24
213.128.94.0/24 maxlen: 24
213.128.93.0/24 maxlen: 24
46.45.128.0/18 maxlen: 24
185.25.103.0/24 maxlen: 24
185.25.102.0/24 maxlen: 24
185.25.101.0/24 maxlen: 24
185.25.100.0/24 maxlen: 24
176.53.0.0/17 maxlen: 24
79.98.128.0/21 maxlen: 24
185.157.40.0/22 maxlen: 24
178.211.32.0/19 maxlen: 24
2a00:56a0::/32 maxlen: 48
2a01:790::/32 maxlen: 48
2a0b:5f40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 297940282 (0x11c2353a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Validity
Not Before: Feb 2 15:42:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3001a0ba540e507820b69bd1e4aacca4ca585fb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:61:5b:74:84:c2:54:23:98:83:af:a2:93:47:
64:92:f7:a1:55:22:01:b5:c9:23:fa:eb:aa:1f:94:
26:fb:26:1d:19:9e:21:2c:de:11:d9:27:ec:53:33:
de:57:5f:2a:10:c7:08:7d:43:cb:af:dd:c5:ed:1b:
d5:39:83:ad:2a:af:eb:26:f7:1f:0f:f3:78:95:74:
a5:a2:6b:47:3c:bc:38:31:fa:ae:10:7b:dc:26:e1:
dc:be:2e:55:97:b6:d5:6e:57:5c:b7:27:0f:d5:ae:
6b:8a:38:c5:10:5c:d2:d1:fc:96:b5:b9:50:7f:ec:
0c:fa:67:86:0e:a2:f3:b9:b9:98:e8:87:f9:46:ba:
ba:07:f2:d6:6f:4f:83:dc:bd:89:52:04:bc:a7:ab:
a3:e0:b4:6f:8d:8e:b0:e8:75:40:94:3c:8f:f2:95:
4b:1b:ab:94:9d:0d:71:ed:1b:e7:66:6e:e7:c1:a8:
58:3d:30:e5:37:a6:03:dd:bb:22:35:69:a9:7e:77:
36:9d:f9:6c:c0:25:80:23:fb:68:8e:d5:b4:28:84:
31:ff:72:f6:00:c8:e8:b1:bc:5b:2b:6d:ca:f9:9e:
e7:bf:9e:12:5d:3f:95:a9:10:b5:5f:57:3e:c5:21:
69:41:0c:ab:b3:75:8c:de:bf:17:61:c8:ba:20:f2:
2d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:01:A0:BA:54:0E:50:78:20:B6:9B:D1:E4:AA:CC:A4:CA:58:5F:B7
X509v3 Authority Key Identifier:
keyid:F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/MAGgulQOUHggtpvR5KrMpMpYX7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/9XG78dPTwO_jbeEQOSvgx6xEeoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.64.0/18
46.45.128.0/18
77.75.32.0/21
79.98.128.0/21
94.101.80.0/20
176.53.0.0/17
178.211.32.0/19
185.25.100.0/22
185.157.40.0/22
185.184.208.0/22
213.128.64.0/19
IPv6:
2a00:56a0::/32
2a01:790::/32
2a0b:5f40::/29
Signature Algorithm: sha256WithRSAEncryption
60:2e:b8:ca:b4:76:f3:3f:1c:47:e4:f9:87:f0:63:3c:9e:e4:
57:72:d2:61:83:67:cc:74:74:29:9f:34:c1:ce:84:df:61:41:
5b:a0:2c:90:43:54:79:d5:ba:5d:e8:a1:ca:a6:c4:f7:1f:7f:
6c:b0:23:85:4d:0d:e8:49:bb:de:d2:49:6c:c7:6c:4e:34:5e:
7b:e4:ff:4a:15:59:1e:ab:bf:4a:ef:ca:28:0f:97:37:53:98:
c9:36:eb:64:61:72:78:15:19:df:e2:d2:aa:67:db:46:a0:e9:
96:77:b1:45:97:d9:20:1a:dd:64:77:27:82:92:2e:23:1b:51:
eb:98:df:bc:18:df:c9:8a:ba:eb:e8:5a:35:c4:dc:61:5a:fc:
04:ca:d2:7c:45:df:98:39:99:99:f2:f0:07:35:b7:5f:fd:3e:
aa:bf:c3:b7:70:5d:d7:86:07:4d:e8:4d:b5:d9:d0:0b:12:56:
14:fd:7a:67:08:c6:07:27:bc:28:a6:3b:32:37:bb:31:e6:b6:
fd:42:a2:19:42:c1:dd:39:ba:25:ce:31:5c:40:23:5a:c3:1c:
84:f2:6b:db:6a:da:80:85:3f:24:9c:64:77:fe:93:4b:79:80:
f9:5a:73:cc:f6:e9:ad:71:92:91:53:6d:60:bf:b8:e5:72:a2:
48:51:6c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-fra.rpki-client.org