Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/n99Jtk80185-J53ABekRAPex1ak.roa
File: n99Jtk80185-J53ABekRAPex1ak.roa (raw, json)
Hash identifier: WQaVoMuN3rerJmroVXoEkD/pr+HW/uE1KImwAG1+JVo=
Subject key identifier: 9F:DF:49:B6:4F:34:D7:CE:7E:27:9D:C0:05:E9:11:00:F7:B1:D5:A9
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A698024EC0EC52891871B3D64CA1CEB
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/n99Jtk80185-J53ABekRAPex1ak.roa
Signing time: Wed 20 Jul 2022 07:01:37 +0000
ROA not before: Wed 20 Jul 2022 07:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8447
IP address blocks: 212.183.0.0/17 maxlen: 17
192.164.128.0/19 maxlen: 19
178.188.0.0/14 maxlen: 14
188.45.0.0/16 maxlen: 16
192.164.64.0/21 maxlen: 21
193.187.216.0/21 maxlen: 21
193.187.224.0/20 maxlen: 20
192.164.80.0/20 maxlen: 20
193.187.240.0/22 maxlen: 22
192.164.96.0/19 maxlen: 19
213.33.0.0/17 maxlen: 17
192.164.224.0/19 maxlen: 19
195.3.64.0/18 maxlen: 18
188.20.0.0/14 maxlen: 14
194.48.136.0/24 maxlen: 24
192.164.208.0/20 maxlen: 20
176.66.0.0/18 maxlen: 18
192.164.0.0/19 maxlen: 19
192.164.32.0/22 maxlen: 22
192.164.40.0/21 maxlen: 21
192.164.39.0/24 maxlen: 24
192.164.48.0/20 maxlen: 20
176.66.128.0/17 maxlen: 17
2001:4bb8::/29 maxlen: 29
2001:890::/29 maxlen: 29
2001:870::/29 maxlen: 29
2001:850::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:69:80:24:ec:0e:c5:28:91:87:1b:3d:64:ca:1c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fdf49b64f34d7ce7e279dc005e91100f7b1d5a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d6:cf:d8:24:3d:a1:17:3d:be:4c:27:88:14:
4b:82:ce:cc:54:ab:95:12:25:ae:9f:0f:2a:e1:a5:
b4:96:af:84:dc:ac:91:26:3d:0c:24:d6:97:4e:36:
49:17:fd:52:c3:78:b2:58:8b:25:3b:d8:6f:bf:c5:
67:67:42:ae:2f:d3:9a:ac:98:a9:e0:ad:09:5e:0d:
92:88:39:8c:0e:91:33:8b:65:fc:14:63:d9:8e:21:
8c:57:f4:22:a4:53:fa:98:ec:77:db:2a:4f:47:54:
f2:09:f2:89:9a:3c:0c:3f:fe:5f:7c:87:ca:0a:f5:
57:b4:90:a9:44:ff:b5:f1:1f:f8:05:da:f7:5d:ee:
dc:c2:41:7e:6d:6f:b1:8d:f0:5f:bc:ad:a1:55:18:
27:1a:2f:1a:da:b4:20:af:cc:da:4a:8d:e2:e3:5f:
3e:55:04:e8:14:44:58:1e:2c:fa:cd:97:63:46:e4:
8e:13:c4:43:96:de:c8:02:df:12:47:dc:d5:68:ba:
66:c2:65:f6:7d:43:fc:cd:b8:4f:ad:3e:87:04:ad:
35:54:54:2b:2e:99:f3:aa:98:25:78:17:59:01:9b:
9d:d4:bf:15:16:0a:81:e4:a0:af:b2:77:82:79:e5:
44:ef:d0:38:f7:41:d6:17:c2:65:0e:8f:ca:d1:7b:
05:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DF:49:B6:4F:34:D7:CE:7E:27:9D:C0:05:E9:11:00:F7:B1:D5:A9
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/n99Jtk80185-J53ABekRAPex1ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.66.0.0/18
176.66.128.0/17
178.188.0.0/14
188.20.0.0/14
188.45.0.0/16
192.164.0.0-192.164.35.255
192.164.39.0-192.164.71.255
192.164.80.0-192.164.159.255
192.164.208.0-192.164.255.255
193.187.216.0-193.187.243.255
194.48.136.0/24
195.3.64.0/18
212.183.0.0/17
213.33.0.0/17
IPv6:
2001:850::/29
2001:870::/29
2001:890::/29
2001:4bb8::/29
Signature Algorithm: sha256WithRSAEncryption
ab:85:56:b4:7e:fa:7e:1c:6e:e0:fa:a0:b5:77:7e:6d:06:06:
02:91:90:c4:cb:ef:ea:f3:5d:72:0e:55:0e:7e:f5:c1:ec:03:
fc:b5:95:2e:7f:b6:f5:9b:94:66:e4:53:38:30:ff:b9:39:ec:
dc:23:58:83:4e:6b:12:9d:5c:1a:c0:86:3e:4e:00:4c:3f:2f:
1a:08:ed:c6:bd:aa:4d:31:d8:2e:fb:29:a1:4d:aa:9b:fc:03:
e3:bc:bb:1d:33:a7:64:2c:e4:02:ac:1b:f2:ed:ed:28:b8:26:
7d:7b:69:36:bf:30:6c:16:6f:71:f3:a5:78:33:c0:b0:ad:22:
3e:17:ec:90:e2:3e:60:50:b4:84:a9:28:fe:25:71:8d:29:c3:
26:4b:e4:d9:2a:11:10:b3:13:20:1b:50:c3:83:e3:7e:94:f7:
0f:4a:59:03:68:41:6a:b9:9f:db:a6:b6:be:fc:72:9a:a4:2b:
90:c0:da:d8:a9:0e:0b:64:af:fd:fa:db:5b:78:d0:1c:20:81:
f7:2e:10:79:9c:d0:d6:bc:26:ba:0a:21:c6:f2:e4:eb:c2:4d:
ad:ab:52:23:04:1c:8f:59:48:22:ae:3e:3c:6d:40:d1:6d:77:
c5:79:c0:87:0b:a7:83:ed:cf:c5:d2:c6:d7:59:98:56:7b:f6:
9f:d0:e2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-fra.rpki-client.org