Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/G4AI951DVrJu9z0-LMmJXGRKjbA.roa
File: G4AI951DVrJu9z0-LMmJXGRKjbA.roa (raw, json)
Hash identifier: unwHxGXocD5+ro1flyazRuLT0JpFel01sFsI2o7DtKo=
Subject key identifier: 1B:80:08:F7:9D:43:56:B2:6E:F7:3D:3E:2C:C9:89:5C:64:4A:8D:B0
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01821FAD82ADD2F74971822A0FEAEC468541
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/G4AI951DVrJu9z0-LMmJXGRKjbA.roa
Signing time: Thu 21 Jul 2022 07:34:01 +0000
ROA not before: Thu 21 Jul 2022 07:34:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
91.186.194.0/23 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
94.241.160.0/21 maxlen: 24
94.241.168.0/21 maxlen: 24
83.147.216.0/23 maxlen: 24
178.253.31.0/24 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
178.253.44.0/23 maxlen: 24
178.253.38.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:ad:82:ad:d2:f7:49:71:82:2a:0f:ea:ec:46:85:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 21 07:34:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b8008f79d4356b26ef73d3e2cc9895c644a8db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:10:7b:ff:36:ce:7a:21:39:10:c5:79:ab:a2:
1e:b5:35:d3:a9:11:87:c6:1e:90:e7:af:65:a2:92:
8f:ef:df:11:f2:71:b1:e7:3e:af:fa:f7:b6:8f:eb:
6d:6f:79:d4:0b:ec:c9:43:84:0d:03:5d:8d:10:93:
57:ac:41:26:80:7b:31:86:f5:e2:e8:b7:34:93:71:
0f:4b:2f:79:30:34:a0:13:6d:1e:ce:0c:46:34:f2:
c3:e8:10:05:1a:b5:25:ff:3e:93:91:3c:78:b9:67:
17:2b:a5:ec:00:59:80:1b:3a:4c:a9:8a:01:99:ea:
63:6d:68:43:a2:9f:44:74:81:39:1d:7f:64:a7:b5:
45:6b:0b:3b:5a:51:be:dc:c3:1c:92:87:6d:33:c5:
2d:fc:16:59:90:4c:90:61:39:5b:13:64:82:ff:16:
61:87:ea:32:84:5c:58:b5:6f:52:9b:66:86:04:02:
49:4f:28:56:81:1b:53:51:8e:8c:36:ba:c1:fe:79:
36:a1:db:76:dd:73:79:85:9f:a8:32:7d:fd:85:2e:
5d:75:78:7a:3b:d8:a1:38:b4:61:9a:f2:33:e6:d1:
d2:d3:78:aa:e6:3c:b3:9d:d1:a2:da:70:1c:39:e9:
98:79:d5:81:f4:d5:ae:00:29:e9:6a:3f:e9:36:08:
35:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:80:08:F7:9D:43:56:B2:6E:F7:3D:3E:2C:C9:89:5C:64:4A:8D:B0
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/G4AI951DVrJu9z0-LMmJXGRKjbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
91.186.194.0-91.186.203.255
91.186.212.0-91.186.219.255
94.241.136.0/21
94.241.160.0-94.241.183.255
178.253.31.0-178.253.33.255
178.253.38.0/23
178.253.44.0/23
178.253.52.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:ae:a7:c1:47:06:87:27:b6:ef:9b:ea:1b:85:9c:d1:21:bb:
4d:4a:09:f9:43:76:51:6f:68:eb:39:0f:c1:c2:0a:d1:91:03:
46:cc:a2:a2:53:a2:75:07:1d:02:23:bb:d2:26:9d:5c:6a:b0:
05:c4:56:51:ca:88:b1:7b:48:80:9b:65:09:2a:37:35:21:7c:
75:31:08:2d:2a:64:5b:81:e9:5b:5c:8d:fe:87:5a:fa:01:d4:
ad:90:92:6f:81:0c:d6:ab:ec:8c:03:b1:ac:e5:bc:3e:94:28:
18:b5:cb:09:8c:3f:a6:6b:58:e2:30:39:45:f0:b4:25:43:3b:
d9:17:50:b7:bd:da:29:4b:f6:b0:c2:88:83:49:f2:ab:fa:13:
60:98:28:e0:64:44:75:1a:2f:4f:ff:0f:96:00:68:a2:b5:a5:
e7:85:7f:a9:7c:72:5e:a3:a9:c7:b3:5c:8b:94:f4:e9:53:bc:
9e:8c:a3:f3:d3:9e:dc:94:c5:81:04:12:6f:a4:07:96:4e:ce:
f5:d2:f6:ea:15:5b:3b:98:e8:9f:84:13:2e:30:d7:41:e7:bc:
1b:03:60:84:25:65:10:3a:73:1a:9d:4d:3d:ac:d2:b2:28:9f:
02:a7:b6:46:ea:0e:c5:bd:88:6e:31:1c:2a:e2:e9:68:58:b2:
86:47:d7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org