Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/gjORM9WwzwpkkCGoKxym0o9Gn2s.roa
File: gjORM9WwzwpkkCGoKxym0o9Gn2s.roa (raw, json)
Hash identifier: ybpxCkQgc2wxnXjoYWcpSvqM/Xz46UhcQuHhGmB7bM0=
Subject key identifier: 82:33:91:33:D5:B0:CF:0A:64:90:21:A8:2B:1C:A6:D2:8F:46:9F:6B
Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Certificate serial: 03E1BC72
Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/gjORM9WwzwpkkCGoKxym0o9Gn2s.roa
Signing time: Thu 28 Apr 2022 12:35:50 +0000
ROA not before: Thu 28 Apr 2022 12:35:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31034
IP address blocks: 185.58.116.0/22 maxlen: 24
185.58.120.0/22 maxlen: 24
94.177.192.0/18 maxlen: 24
89.46.104.0/21 maxlen: 24
95.110.128.0/17 maxlen: 24
31.14.128.0/20 maxlen: 24
31.11.32.0/21 maxlen: 24
77.81.224.0/20 maxlen: 24
46.37.0.0/19 maxlen: 24
89.46.192.0/21 maxlen: 24
62.149.128.0/17 maxlen: 24
188.213.160.0/20 maxlen: 24
176.107.144.0/20 maxlen: 24
80.73.224.0/20 maxlen: 24
89.36.208.0/22 maxlen: 24
217.198.128.0/20 maxlen: 24
5.249.128.0/19 maxlen: 24
195.231.0.0/17 maxlen: 24
217.61.0.0/18 maxlen: 24
89.46.64.0/20 maxlen: 24
94.177.160.0/19 maxlen: 24
185.56.8.0/22 maxlen: 24
80.211.0.0/16 maxlen: 24
194.182.110.0/23 maxlen: 24
2a00:6d40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65125490 (0x3e1bc72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Validity
Not Before: Apr 28 12:35:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82339133d5b0cf0a649021a82b1ca6d28f469f6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ef:6c:b1:a6:0f:a1:0f:fe:44:6a:01:e5:dd:
33:c9:62:aa:71:b2:17:97:11:49:2d:e4:e5:99:74:
cf:da:83:18:b7:16:ec:16:fb:ec:f9:46:65:f4:45:
a8:54:ca:bb:6e:00:1e:ce:e1:06:ed:cb:e8:aa:05:
53:9c:ac:c5:32:78:66:cf:a8:72:48:64:70:09:ef:
02:92:1a:51:8e:7e:0c:66:b7:7b:33:ff:31:07:ba:
06:f4:98:69:57:0d:9d:aa:e1:97:30:3e:a7:65:63:
a1:33:0d:24:68:94:e4:9d:fa:e0:07:61:c6:50:f2:
cf:c2:39:93:f5:fa:89:53:14:0b:18:a5:3e:b2:c1:
f2:6e:ac:f6:13:26:c2:a0:4f:26:5a:a1:1c:26:d6:
08:ee:3e:d6:58:61:1f:50:10:92:52:9f:c7:8e:90:
52:5a:40:75:4b:1d:99:17:ac:42:76:7f:27:2d:5c:
da:06:2f:d7:bc:f8:dd:62:cd:4f:7d:eb:f3:c3:5a:
68:9d:0d:82:32:1e:db:f4:a8:2e:18:9b:2c:fc:1b:
7a:da:c3:0b:6a:c2:7b:9b:91:f7:ad:0e:78:68:5b:
8e:e2:85:99:6e:be:83:06:86:f2:47:80:dc:49:06:
3e:67:ce:eb:a2:bc:9e:3a:7c:2e:52:7e:be:2a:30:
d1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:33:91:33:D5:B0:CF:0A:64:90:21:A8:2B:1C:A6:D2:8F:46:9F:6B
X509v3 Authority Key Identifier:
keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/gjORM9WwzwpkkCGoKxym0o9Gn2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.128.0/19
31.11.32.0/21
31.14.128.0/20
46.37.0.0/19
62.149.128.0/17
77.81.224.0/20
80.73.224.0/20
80.211.0.0/16
89.36.208.0/22
89.46.64.0/20
89.46.104.0/21
89.46.192.0/21
94.177.160.0-94.177.255.255
95.110.128.0/17
176.107.144.0/20
185.56.8.0/22
185.58.116.0-185.58.123.255
188.213.160.0/20
194.182.110.0/23
195.231.0.0/17
217.61.0.0/18
217.198.128.0/20
IPv6:
2a00:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
16:5d:f4:ca:aa:d6:36:aa:2e:82:69:98:8b:01:99:20:d6:1b:
9f:9a:47:3c:f6:61:a7:9f:75:1a:75:65:de:76:0b:ef:7f:cd:
f9:10:9a:2c:80:f0:8a:d4:28:60:d6:db:b3:9b:93:e4:cc:6d:
b7:78:36:24:48:ac:e5:ef:37:16:6e:a0:59:9d:91:0c:5f:b4:
2e:1e:64:3d:16:73:e3:28:52:e8:de:80:36:e9:8a:34:0c:0d:
55:0f:ec:a4:f9:66:99:bd:18:71:91:7c:8f:18:a0:cc:b7:87:
51:b1:1b:2b:05:f5:35:28:6f:9c:62:de:81:1c:f7:65:96:49:
b8:ec:f6:0e:4f:27:16:56:72:2b:88:78:f6:86:a4:7a:72:93:
75:32:87:d6:36:d7:d5:24:73:94:b1:0c:da:58:10:e5:c6:20:
f3:f0:ed:42:81:5e:93:7a:b7:17:9b:d7:97:c2:b6:ac:4b:e1:
be:e6:2f:dd:80:35:21:71:59:c7:8d:1e:74:ba:91:7b:4e:07:
17:d5:a4:6f:e7:8f:57:07:9c:18:fd:3b:bb:3b:65:08:da:f9:
3e:1d:d0:3e:00:ad:f1:9a:65:6d:9d:0c:d0:84:4d:09:51:16:
1b:ea:28:1a:9d:01:76:8e:28:84:58:b3:b9:5d:1a:bb:23:02:
4b:6c:ec:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:07 2023 by rpki-client on console-fra.rpki-client.org