Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/81Fylv7ocGM2So7Smp417ZYwY1w.roa
File: 81Fylv7ocGM2So7Smp417ZYwY1w.roa (raw, json)
Hash identifier: Qqi8fQQEsefZ6ArV/M2l5aj3G/7RzBll0UpFxlgoPUg=
Subject key identifier: F3:51:72:96:FE:E8:70:63:36:4A:8E:D2:9A:9E:35:ED:96:30:63:5C
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 769D98
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/81Fylv7ocGM2So7Smp417ZYwY1w.roa
Signing time: Sat 01 Jan 2022 02:55:40 +0000
ROA not before: Sat 01 Jan 2022 02:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60855
IP address blocks: 164.131.198.0/23 maxlen: 23
164.131.198.0/24 maxlen: 24
164.131.197.0/24 maxlen: 24
164.131.199.0/24 maxlen: 24
164.131.125.0/24 maxlen: 24
164.131.124.0/23 maxlen: 23
164.131.124.0/24 maxlen: 24
164.131.127.0/24 maxlen: 24
164.131.126.0/23 maxlen: 23
164.131.126.0/24 maxlen: 24
164.131.130.0/23 maxlen: 23
164.131.130.0/24 maxlen: 24
164.131.132.0/23 maxlen: 23
164.131.132.0/24 maxlen: 24
164.131.131.0/24 maxlen: 24
164.131.133.0/24 maxlen: 24
164.131.143.0/24 maxlen: 24
164.131.142.0/24 maxlen: 24
164.131.142.0/23 maxlen: 23
164.131.212.0/23 maxlen: 24
164.131.214.0/23 maxlen: 24
164.131.224.0/24 maxlen: 24
164.131.226.0/23 maxlen: 24
164.131.233.0/24 maxlen: 24
164.131.232.0/23 maxlen: 23
164.131.232.0/24 maxlen: 24
164.131.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7773592 (0x769d98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Jan 1 02:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3517296fee87063364a8ed29a9e35ed9630635c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6b:f3:b3:ef:f6:80:c5:38:5e:58:2c:90:6b:
b2:11:40:0d:c9:23:df:f9:80:d6:8f:2d:53:c6:b6:
d6:fa:1f:ae:56:16:e2:36:bb:9c:c2:8f:64:3f:cd:
1e:9b:96:e7:2e:b4:b3:42:de:99:5a:e2:83:30:66:
9a:47:4c:f0:b8:71:49:b7:1f:ae:7b:5d:a9:d5:ba:
09:16:37:a0:eb:20:4c:d8:25:bb:15:34:b8:f8:35:
ff:dc:ed:5b:94:00:c2:36:81:89:8e:03:80:9c:31:
37:2b:32:29:a7:c2:86:bc:84:fb:af:e8:c9:b3:77:
42:3b:71:1b:dc:95:ba:d8:37:f5:fb:8b:6f:e7:fa:
a6:e4:11:86:2e:6d:a0:04:3f:c5:30:4c:35:42:88:
35:6a:68:2d:cc:da:c7:b9:51:4e:3e:63:e1:34:cf:
c9:c5:51:da:15:a4:a3:56:6d:f7:85:a5:2c:7f:26:
44:06:9f:92:72:a8:6d:58:f8:27:bb:80:df:ec:a1:
bb:73:de:28:df:06:f6:81:50:06:26:39:a4:4a:e6:
8f:c7:96:f4:13:50:0f:68:61:73:80:9b:b0:35:0f:
60:4c:4e:f5:ea:21:1b:6b:b4:e6:0c:ef:0a:c3:42:
10:05:54:7a:7c:e9:6d:6f:af:1c:35:e1:99:51:af:
74:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:51:72:96:FE:E8:70:63:36:4A:8E:D2:9A:9E:35:ED:96:30:63:5C
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/81Fylv7ocGM2So7Smp417ZYwY1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.131.124.0/22
164.131.130.0-164.131.133.255
164.131.142.0/23
164.131.197.0-164.131.199.255
164.131.212.0/22
164.131.224.0/24
164.131.226.0/23
164.131.232.0/23
164.131.244.0/24
Signature Algorithm: sha256WithRSAEncryption
07:0a:67:d4:6d:02:04:65:32:e4:c7:5a:51:95:30:dd:fd:c8:
bd:e0:75:bf:d8:8a:be:cc:ec:b0:44:bf:a5:ab:2c:5c:5c:f5:
b3:6f:b6:0d:b1:5e:62:a7:af:09:3f:63:8c:79:fa:72:67:78:
58:aa:8a:31:7a:f7:11:dc:6f:aa:07:be:22:f4:58:cc:7e:b6:
67:b2:47:e1:f2:f1:0c:4f:3a:35:54:4d:74:3d:ec:9e:96:46:
bf:2f:ca:fc:b5:aa:82:48:61:d9:3c:de:7b:13:2d:10:ef:6f:
92:88:ea:a5:96:6e:28:88:21:25:33:b4:2d:8e:ef:e5:b5:ba:
d6:f5:54:70:46:20:a5:2d:ba:4a:75:37:e8:7c:f1:0a:88:f8:
c7:ca:47:82:e5:0a:c5:51:bc:a1:9f:cf:fd:0f:24:a2:59:f7:
f4:b7:23:e5:4d:78:31:a2:95:7d:09:90:bb:4c:b3:89:5a:64:
53:26:a2:65:1d:b6:24:c5:80:57:58:a6:da:bf:99:cf:01:de:
ee:02:74:78:1d:3b:3e:06:f8:6f:26:a8:04:38:ef:30:ee:67:
fb:6f:08:0d:b4:e2:af:14:c2:c0:2d:60:61:e3:ec:45:60:74:
89:91:e2:43:8b:c0:d4:1c:8b:8b:14:31:bc:e7:42:5f:f0:10:
a8:05:42:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org