Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/YjXuGfqDYtiX3sswDzib8-ioh4o.roa
File: YjXuGfqDYtiX3sswDzib8-ioh4o.roa (raw, json)
Hash identifier: gdy6jiYVrL2C9yvdLH6IwewIQ+feKXzwJznleODg8Kw=
Subject key identifier: 62:35:EE:19:FA:83:62:D8:97:DE:CB:30:0F:38:9B:F3:E8:A8:87:8A
Certificate issuer: /CN=01335442514d5249b5143cfdf821216bb5c52940
Certificate serial: 051D5D9F
Authority key identifier: 01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/YjXuGfqDYtiX3sswDzib8-ioh4o.roa
Signing time: Sat 14 May 2022 00:39:40 +0000
ROA not before: Sat 14 May 2022 00:39:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 23.111.96.0/19 maxlen: 24
23.111.103.0/24 maxlen: 24
23.111.108.0/24 maxlen: 24
23.111.106.0/24 maxlen: 24
23.111.116.0/24 maxlen: 24
23.105.231.0/24 maxlen: 24
23.105.232.0/24 maxlen: 24
23.105.240.0/24 maxlen: 24
88.212.232.0/21 maxlen: 24
23.105.252.0/24 maxlen: 24
23.105.248.0/24 maxlen: 24
88.212.239.0/24 maxlen: 24
88.212.238.0/24 maxlen: 24
88.212.248.0/21 maxlen: 24
23.111.32.0/19 maxlen: 24
23.105.224.0/19 maxlen: 24
23.105.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85810591 (0x51d5d9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01335442514d5249b5143cfdf821216bb5c52940
Validity
Not Before: May 14 00:39:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6235ee19fa8362d897decb300f389bf3e8a8878a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:31:e0:47:27:c3:bb:73:a4:d2:5d:88:a1:df:
1a:b2:3f:35:d8:9b:a2:b1:b4:17:0d:78:aa:32:02:
1c:97:dc:87:83:4e:46:de:b8:a5:30:36:be:12:9c:
53:cf:82:a1:cd:b0:05:a6:f2:95:ad:54:05:e8:99:
a9:c4:5a:92:04:29:4d:bc:99:02:dc:11:82:28:2d:
68:10:ba:b7:6a:72:01:98:9a:b2:8c:11:d3:2d:2b:
2f:3d:af:16:cb:d6:8d:4a:19:2e:7c:54:5a:42:14:
04:33:41:fc:55:09:f0:14:e0:15:9a:b8:d8:44:a3:
91:db:c1:a1:97:e9:f0:ae:87:6d:37:03:1a:1b:e4:
a8:a1:34:5e:21:a1:98:84:f5:38:f4:39:f4:a9:d3:
3f:11:7a:6a:42:ed:5c:b5:d3:c1:93:8a:ef:37:24:
a0:b2:6a:76:f5:df:76:42:0a:02:0e:67:f0:58:90:
fb:97:69:95:a2:5b:bc:ac:46:40:d6:80:38:09:a9:
37:50:59:12:28:07:e3:ec:81:7e:69:cb:cb:cf:ee:
e4:f0:21:2c:40:e9:80:4e:f1:76:f7:df:c8:11:19:
6c:ff:36:f9:9e:21:89:d9:38:37:a6:e5:7b:d8:70:
7c:25:83:97:61:e3:41:76:9c:0e:1b:59:a2:0e:a6:
91:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:35:EE:19:FA:83:62:D8:97:DE:CB:30:0F:38:9B:F3:E8:A8:87:8A
X509v3 Authority Key Identifier:
keyid:01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/YjXuGfqDYtiX3sswDzib8-ioh4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/ATNUQlFNUkm1FDz9-CEha7XFKUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.105.224.0/19
23.111.32.0/19
23.111.96.0/19
88.212.232.0/21
88.212.248.0/21
Signature Algorithm: sha256WithRSAEncryption
35:cd:a1:5f:b1:ac:b2:60:25:0a:f1:7d:0b:c7:e3:57:13:2f:
76:89:68:88:d7:6d:d7:77:43:ce:68:68:6c:9d:75:db:15:e9:
c4:5e:74:14:0e:8c:e5:51:eb:9c:ef:c1:df:fa:04:47:4f:65:
59:9d:ee:6e:24:f8:a8:b6:df:cf:12:de:43:9f:46:62:ad:b2:
a8:71:e9:bf:a2:87:9a:8a:ed:43:88:6b:92:53:04:01:74:48:
bc:83:29:e8:75:9a:c5:c3:4f:ae:59:5a:25:4e:f1:cf:07:74:
ea:34:4f:52:3a:00:d1:47:b8:c7:4e:ad:a2:79:39:88:ee:36:
e9:7a:51:4c:90:61:be:50:76:e3:fb:53:4d:ed:fc:84:8f:b5:
8b:d6:d6:32:8d:3a:b8:c5:72:d2:51:35:fd:e6:57:c7:e9:70:
7d:45:b9:6a:81:e6:b5:98:b0:a2:7d:24:eb:9f:f4:82:23:86:
8c:17:ac:34:c3:7d:3d:3d:3b:31:c5:bd:3b:c0:39:5f:b4:0b:
47:c2:b0:22:71:12:4c:92:cd:a4:c9:91:45:ab:38:ca:4e:cf:
39:66:d1:f2:ae:99:bc:d1:b5:0a:db:f1:6e:6b:06:80:29:4b:
7f:bd:53:e7:24:70:9c:91:6b:29:e6:b7:37:7b:1a:f7:30:65:
3d:93:00:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:22 2023 by rpki-client on console-fra.rpki-client.org