Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/IBUTZlkpiSr6X1nFRn_BQWKw0Zo.roa
File: IBUTZlkpiSr6X1nFRn_BQWKw0Zo.roa (raw, json)
Hash identifier: pyF2bO0ArsjNKzaXwCwJOIGy49RIHitGpUQ/5zVe7r4=
Subject key identifier: 20:15:13:66:59:29:89:2A:FA:5F:59:C5:46:7F:C1:41:62:B0:D1:9A
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 0907BC44
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/IBUTZlkpiSr6X1nFRn_BQWKw0Zo.roa
Signing time: Sat 01 Jan 2022 12:59:56 +0000
ROA not before: Sat 01 Jan 2022 12:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34659
IP address blocks: 83.136.160.0/21 maxlen: 24
5.104.192.0/21 maxlen: 24
193.36.52.0/22 maxlen: 24
185.153.96.0/22 maxlen: 24
178.21.176.0/21 maxlen: 24
77.247.104.0/22 maxlen: 24
213.41.240.0/21 maxlen: 21
185.45.228.0/22 maxlen: 24
194.169.176.0/22 maxlen: 24
194.104.16.0/22 maxlen: 24
85.31.168.0/22 maxlen: 24
185.83.236.0/22 maxlen: 24
185.185.4.0/22 maxlen: 24
185.185.8.0/22 maxlen: 24
185.96.156.0/22 maxlen: 24
2a07:8580::/29 maxlen: 48
2a00:1db8::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151501892 (0x907bc44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jan 1 12:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=201513665929892afa5f59c5467fc14162b0d19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f6:1d:c7:89:29:05:9c:f4:47:17:cc:55:4b:
b1:39:c3:f1:d2:62:b3:03:1b:03:61:b4:11:18:54:
ed:bd:4c:91:e6:cd:63:83:c1:71:18:a8:45:aa:1d:
93:93:58:86:4c:13:99:e3:16:5a:63:21:5a:ef:6f:
8e:55:0c:62:30:ba:5c:b0:bc:65:ef:86:c4:23:50:
e6:46:df:2b:14:a8:f1:4c:19:93:8b:5a:8b:a9:11:
79:7a:a7:ba:0d:c1:c1:a2:0d:ba:8f:8c:8c:bc:48:
c0:c7:6e:ac:16:f9:82:06:25:69:62:2a:2d:80:f7:
1d:8b:0d:e9:e0:24:25:f8:78:4a:00:c2:6a:05:7b:
0b:bd:15:4f:1d:45:6e:c8:f5:a6:ba:41:91:51:e4:
01:f5:a0:35:b0:b4:e8:bb:0f:95:47:e3:19:5a:1b:
38:ef:d6:62:78:30:1c:e6:3e:b4:40:e5:ca:eb:e5:
64:0d:e7:89:20:72:ad:01:af:12:00:86:23:61:97:
31:d6:8e:bd:f5:e0:2c:b6:42:04:55:99:7b:3f:a9:
01:20:ba:45:e1:c3:15:05:2f:93:f0:ff:13:0e:43:
67:82:39:36:8f:19:1a:fc:81:ae:5b:b8:d2:3d:4f:
78:37:ba:f8:0a:7a:72:52:cc:37:15:04:7e:37:29:
70:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:15:13:66:59:29:89:2A:FA:5F:59:C5:46:7F:C1:41:62:B0:D1:9A
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/IBUTZlkpiSr6X1nFRn_BQWKw0Zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.192.0/21
77.247.104.0/22
83.136.160.0/21
85.31.168.0/22
178.21.176.0/21
185.45.228.0/22
185.83.236.0/22
185.96.156.0/22
185.153.96.0/22
185.185.4.0-185.185.11.255
193.36.52.0/22
194.104.16.0/22
194.169.176.0/22
213.41.240.0/21
IPv6:
2a00:1db8::/29
2a07:8580::/29
Signature Algorithm: sha256WithRSAEncryption
18:aa:8c:4e:c9:a8:a0:eb:13:bd:c7:91:7d:22:99:d4:c0:dc:
c0:2e:f0:ef:02:78:06:b9:c6:b6:fa:7e:85:8c:e3:f7:76:b7:
7e:01:ef:72:7c:d9:c7:c9:7d:0e:50:a8:03:fc:c2:3a:25:47:
18:7d:32:5e:44:f2:63:e2:fe:b1:a1:77:73:97:8a:44:46:ea:
d5:dc:44:d1:75:5a:57:7c:74:21:0f:bc:78:84:ee:11:ce:29:
00:df:0f:53:64:93:e2:eb:49:93:5a:29:18:94:63:93:88:d1:
4c:bc:56:58:20:36:2d:a0:23:78:18:5c:3d:3a:55:64:59:7f:
7b:84:bf:a9:87:28:47:da:84:cf:ed:e2:48:c5:7f:68:80:c1:
c1:2d:38:53:47:3e:a9:ca:64:eb:8c:22:ba:d8:9c:c7:45:b8:
62:fc:7e:d9:cf:56:73:f4:f5:40:98:38:02:6f:3a:cd:c8:f6:
5f:04:d1:12:03:51:21:57:24:e2:43:fe:14:36:c1:82:8b:1f:
ba:ab:67:c3:05:2d:1b:e8:13:e7:7d:6d:a0:87:47:45:fe:bb:
4d:fc:b5:34:ba:19:48:99:bf:98:45:18:ba:7f:d5:dd:72:46:
67:1f:58:94:40:c6:79:df:35:ae:8d:47:11:07:35:f8:74:54:
40:3a:13:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:27 2024 by rpki-client on console-fra.rpki-client.org