Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/kmuCPIL1glBkq8xdcoCRVAL6amc.roa
File: kmuCPIL1glBkq8xdcoCRVAL6amc.roa (raw, json)
Hash identifier: XNPhZxPVRvK+Rm29plt4DdPtZGplcD0ZBiaaV20Kw+s=
Subject key identifier: 92:6B:82:3C:82:F5:82:50:64:AB:CC:5D:72:80:91:54:02:FA:6A:67
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 101A2527
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/kmuCPIL1glBkq8xdcoCRVAL6amc.roa
Signing time: Sat 01 Jan 2022 00:56:56 +0000
ROA not before: Sat 01 Jan 2022 00:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
80.76.166.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
80.76.167.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270148903 (0x101a2527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 1 00:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=926b823c82f5825064abcc5d7280915402fa6a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:ac:2a:33:0e:95:c5:b8:9a:fd:a3:24:f4:
c6:27:6f:8d:6c:bd:c1:5f:bb:34:0f:c0:3b:d0:34:
3d:7a:ca:07:ec:f5:c1:cf:6d:01:e3:1e:00:03:c8:
1e:e3:e2:b8:c8:a7:b2:43:3b:20:bb:78:ae:a6:25:
b8:d2:04:e2:c0:86:3e:29:98:91:f7:97:a1:41:b3:
01:6c:86:48:e9:27:f2:b9:45:cd:f1:56:ed:d1:e7:
be:4d:61:d8:5d:36:6c:0b:30:79:1b:12:c6:82:d1:
6f:32:c3:de:93:86:93:df:99:d2:6e:68:dd:45:00:
01:d0:ee:9a:73:1e:47:5c:ff:c4:55:6f:8a:d6:26:
40:e2:8a:5a:32:0a:bb:b5:8b:82:9d:d9:48:5d:23:
fa:79:92:cf:68:7f:7c:22:ba:4e:7f:8f:9b:53:ff:
ed:28:1a:d5:1c:88:f4:60:ea:5f:f3:27:78:76:83:
71:cf:c2:b2:0a:ed:e7:f7:c4:32:a0:34:d7:77:b8:
ab:8f:b5:bd:50:8e:be:e4:9f:09:f3:3b:fc:11:33:
1f:c6:e8:c5:e0:a2:19:e2:a4:6c:a5:ea:ad:2e:86:
9a:7a:81:7c:39:37:3d:d1:49:0f:50:3d:6e:85:06:
2b:b4:d7:ac:59:39:38:20:fb:c3:dd:df:d4:4a:c3:
b1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:6B:82:3C:82:F5:82:50:64:AB:CC:5D:72:80:91:54:02:FA:6A:67
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/kmuCPIL1glBkq8xdcoCRVAL6amc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.60.0/22
80.76.165.0-80.76.169.255
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:01:ad:12:3b:b3:c0:bd:06:40:5e:34:73:cf:80:97:55:1e:
3b:66:b8:4b:be:f5:4f:26:95:fc:a6:47:98:67:32:78:3c:6f:
e4:da:c6:3c:fa:29:a5:32:9c:1a:80:87:13:c6:94:c6:7a:c8:
e7:91:c5:53:90:a6:ed:ec:f9:e3:76:ff:9b:45:b2:5e:c9:1f:
dd:bd:36:91:c5:bb:7d:93:1f:d8:b4:38:0a:dd:43:fd:7a:07:
cd:fc:7d:af:fd:fd:57:3a:c1:15:7d:b2:1c:40:14:d5:f2:70:
67:19:29:84:8d:35:dc:50:18:d0:1c:f7:34:0c:56:9b:5a:33:
8f:94:e8:eb:6c:9d:fd:31:fb:6f:c1:45:da:36:ad:b6:29:08:
ba:77:f6:60:32:6d:6a:32:2d:15:ee:b7:fd:54:5d:60:7d:7c:
75:57:90:f8:0f:2d:75:6e:75:4f:c6:13:07:b0:d7:bb:50:d9:
b3:a4:04:0e:22:f7:c2:06:36:64:c4:3a:79:8e:d9:2c:c3:70:
c1:2b:a7:e9:fe:3a:38:45:63:b5:34:b5:43:01:d3:58:73:73:
b7:fe:4f:67:6f:db:e0:d4:b5:65:c9:aa:25:2c:5f:99:24:ac:
f0:0e:ef:09:8d:bf:cb:7b:91:c7:69:c1:db:2f:d1:00:0e:cf:
28:f8:7d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org