Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/v80AHdRr5CT4rU5iHUv8NE-k8TQ.roa
File: v80AHdRr5CT4rU5iHUv8NE-k8TQ.roa (raw, json)
Hash identifier: Nk/bayw1ITUa1a6/dIii+6yx4aZPcq9pUrK0XaWxhvE=
Subject key identifier: BF:CD:00:1D:D4:6B:E4:24:F8:AD:4E:62:1D:4B:FC:34:4F:A4:F1:34
Certificate issuer: /CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Certificate serial: 01827C0A4219A261F91B1A0816D215E39C08
Authority key identifier: F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/v80AHdRr5CT4rU5iHUv8NE-k8TQ.roa
Signing time: Mon 08 Aug 2022 06:00:23 +0000
ROA not before: Mon 08 Aug 2022 06:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 176.53.74.0/24 maxlen: 24
176.53.96.0/24 maxlen: 24
185.184.208.0/22 maxlen: 24
77.75.32.0/21 maxlen: 24
31.210.64.0/18 maxlen: 24
213.128.64.0/19 maxlen: 24
46.45.186.0/24 maxlen: 24
46.45.185.0/24 maxlen: 24
94.101.80.0/20 maxlen: 24
46.45.188.0/24 maxlen: 24
46.45.187.0/24 maxlen: 24
94.101.90.0/24 maxlen: 24
213.128.95.0/24 maxlen: 24
213.128.94.0/24 maxlen: 24
213.128.93.0/24 maxlen: 24
46.45.128.0/18 maxlen: 24
185.25.103.0/24 maxlen: 24
185.25.102.0/24 maxlen: 24
185.25.101.0/24 maxlen: 24
185.25.100.0/24 maxlen: 24
176.53.0.0/17 maxlen: 24
79.98.128.0/21 maxlen: 24
185.157.40.0/22 maxlen: 24
178.211.32.0/19 maxlen: 24
2a00:56a0::/32 maxlen: 48
2a01:790::/32 maxlen: 48
2a0b:5f40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:0a:42:19:a2:61:f9:1b:1a:08:16:d2:15:e3:9c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Validity
Not Before: Aug 8 06:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfcd001dd46be424f8ad4e621d4bfc344fa4f134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e5:1b:3d:c4:5a:f8:d1:d6:e7:be:a8:7d:37:
7e:e8:1e:d5:46:7a:12:53:4e:23:1e:19:d4:08:26:
47:b1:bb:56:1c:5e:b5:87:5e:57:9e:52:5d:5b:9d:
c6:c8:12:47:58:b3:67:4a:1e:b6:f8:ab:5b:fa:8a:
74:0b:c3:68:79:de:21:88:b8:f0:86:f9:8d:f7:4a:
e0:b8:ff:c7:ad:77:0f:91:12:17:0d:f0:1b:4e:5f:
66:a1:59:ab:7d:26:50:d5:3d:47:a1:fd:35:c7:3e:
e5:fb:a3:2d:4d:ef:80:ec:a2:6b:3e:ff:e9:44:be:
a1:3e:c4:8b:5a:c4:1c:53:6c:3c:0b:c4:9e:28:5c:
ec:a0:57:0a:fe:b2:74:36:68:ba:02:78:92:8d:ea:
d9:e0:ed:26:43:e3:21:d6:0d:0c:82:c5:67:dd:99:
2a:b5:1d:f1:5b:6f:59:a8:6e:0e:84:4f:72:b0:17:
07:9b:6f:42:83:73:81:92:42:e6:23:7d:9d:ac:aa:
de:01:f5:1a:e5:0a:b0:28:96:ec:b9:72:55:39:35:
4b:9f:a5:a8:82:68:d9:d0:f1:cb:2c:da:f9:dc:3f:
bc:35:55:5d:97:21:5b:d5:f5:44:5c:94:20:cf:8d:
7b:77:15:d7:e9:e1:c8:22:c4:a5:c3:63:9d:cf:f6:
d0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:CD:00:1D:D4:6B:E4:24:F8:AD:4E:62:1D:4B:FC:34:4F:A4:F1:34
X509v3 Authority Key Identifier:
keyid:F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/v80AHdRr5CT4rU5iHUv8NE-k8TQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/9XG78dPTwO_jbeEQOSvgx6xEeoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.64.0/18
46.45.128.0/18
77.75.32.0/21
79.98.128.0/21
94.101.80.0/20
176.53.0.0/17
178.211.32.0/19
185.25.100.0/22
185.157.40.0/22
185.184.208.0/22
213.128.64.0/19
IPv6:
2a00:56a0::/32
2a01:790::/32
2a0b:5f40::/29
Signature Algorithm: sha256WithRSAEncryption
5b:e4:15:d4:5f:2e:93:5e:02:db:53:e5:84:bb:c1:7a:73:04:
a2:18:71:95:b1:70:38:26:ce:2f:05:12:88:48:83:e9:5c:0f:
e7:e8:5a:9e:28:cf:15:67:a1:42:20:e7:2c:42:f0:85:a8:58:
90:56:46:6b:9e:a6:6d:d3:e2:6c:17:13:7c:e7:84:d2:a8:a3:
7f:7d:91:90:3d:2f:4e:07:0c:bb:df:d4:d0:63:56:f4:2c:56:
92:08:91:ca:8f:04:9e:da:b7:e9:d8:af:0a:11:dc:96:c2:42:
b6:c8:88:72:7e:ad:a2:47:fa:a0:0c:5d:3a:ba:ab:57:67:96:
89:a2:b4:7b:f1:d1:70:a8:cb:6d:c5:93:6f:45:b7:67:8d:a5:
a1:ff:5d:02:5d:ee:04:ad:7d:40:c0:56:ff:14:2a:ee:05:64:
eb:14:96:89:fd:da:d6:a7:d7:a5:ac:67:77:7a:3c:cd:98:cd:
35:39:b4:81:bb:6f:0c:88:cc:bd:5b:2d:f5:cc:67:ee:c7:ed:
58:07:b1:48:2d:5c:d8:d2:46:42:e5:7e:01:f8:05:64:ed:39:
7f:f8:23:e0:c7:57:b8:53:8f:91:b9:7b:09:1f:22:3c:6d:f1:
6f:d5:b7:ec:f3:05:e9:1e:d2:a1:82:2f:09:0c:44:08:5a:06:
3b:8d:9a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:47 2024 by rpki-client on console-ams.rpki-client.org