Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/O19oBbAYx9kDlvJavUFtP85g5NU.roa
File: O19oBbAYx9kDlvJavUFtP85g5NU.roa (raw, json)
Hash identifier: P9/ZLhQ2NISlkIr8TW6HlONGImCi+LpF/wkOOeZ2dww=
Subject key identifier: 3B:5F:68:05:B0:18:C7:D9:03:96:F2:5A:BD:41:6D:3F:CE:60:E4:D5
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01839980F4ACA1D099EDFAA224D11B15614E
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/O19oBbAYx9kDlvJavUFtP85g5NU.roa
Signing time: Sun 02 Oct 2022 16:21:48 +0000
ROA not before: Sun 02 Oct 2022 16:21:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
94.241.160.0/21 maxlen: 24
94.241.168.0/21 maxlen: 24
83.147.216.0/23 maxlen: 24
178.253.31.0/24 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
178.253.44.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:99:80:f4:ac:a1:d0:99:ed:fa:a2:24:d1:1b:15:61:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 2 16:21:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b5f6805b018c7d90396f25abd416d3fce60e4d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0e:ec:07:c5:4a:8f:cc:6a:61:ed:aa:c6:af:
3a:b5:4a:d2:43:94:69:eb:f1:d5:50:3e:2b:7c:22:
2c:9a:75:50:10:36:f1:48:70:80:f1:40:60:98:ab:
04:0c:b0:62:7e:1a:99:5d:ea:01:41:3f:e0:ac:ab:
4c:03:50:5d:92:c5:c6:ca:35:f7:07:4b:4d:44:31:
28:d2:04:99:5a:85:92:17:f8:91:df:cc:a6:e6:40:
29:52:79:fe:5e:b8:5e:81:7d:ed:62:15:d8:f3:94:
3e:1c:a6:60:90:9b:c5:61:0e:4d:f5:08:3f:aa:3c:
7d:76:2a:99:d2:e7:8c:fe:81:da:48:cb:b0:f6:b0:
f8:69:42:61:ba:63:f0:43:f9:41:7c:f4:27:21:87:
e7:ae:cc:15:41:2f:43:cd:93:80:8b:35:53:cb:d0:
da:29:e1:64:44:07:e3:c9:ed:89:ab:fc:9d:86:43:
fe:0f:f3:72:25:02:56:bf:15:d4:66:67:25:5a:ef:
23:05:2e:f6:7e:cc:ac:85:b7:7f:1e:f0:bd:f2:d6:
bc:63:bb:6a:3d:cb:53:8b:e3:f4:ea:c5:c9:0a:25:
a3:cc:43:b4:f6:c4:c4:28:a7:72:05:c1:ee:36:a8:
c7:2f:8c:01:97:4f:57:cb:64:cd:2f:35:9e:18:1d:
5a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5F:68:05:B0:18:C7:D9:03:96:F2:5A:BD:41:6D:3F:CE:60:E4:D5
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/O19oBbAYx9kDlvJavUFtP85g5NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
91.186.196.0-91.186.203.255
91.186.212.0-91.186.219.255
94.241.136.0/21
94.241.160.0-94.241.183.255
178.253.31.0-178.253.33.255
178.253.44.0/23
178.253.52.0/23
Signature Algorithm: sha256WithRSAEncryption
31:3b:aa:62:1d:5b:ac:c3:71:fa:e5:cf:2e:52:02:f2:d4:1d:
77:c2:0e:e0:03:8f:37:82:37:1a:b9:c0:cf:d9:fa:bb:7c:36:
dc:86:67:a9:5e:ed:d8:22:72:47:b1:94:2d:5d:62:37:c7:d8:
b9:c6:44:39:e6:a0:fe:66:49:d2:8f:9d:f6:47:55:08:36:fa:
82:d5:94:eb:ae:cf:f8:a4:6c:29:f1:31:60:45:03:70:60:f5:
98:e5:57:96:9e:ad:71:78:c4:2a:00:bb:21:d1:5f:4f:8e:3a:
44:5a:13:94:f8:97:21:97:dc:df:df:21:05:01:0f:dc:8b:eb:
71:c8:ae:4f:6e:16:34:17:4d:7b:0f:57:0a:85:6c:28:30:a0:
1e:0f:8f:cc:19:b9:0c:2c:40:68:68:24:ae:a9:de:a0:d0:1b:
63:8b:3e:c7:7d:e4:17:22:88:a2:55:03:2b:9f:9d:47:96:8e:
b5:d4:3d:9a:0f:bf:6a:63:de:29:61:92:69:58:2f:fa:d2:5e:
eb:c3:6a:a9:93:49:fe:c9:10:36:2f:45:9a:42:cb:d6:c9:ce:
a9:5b:a9:62:4b:c8:1c:5b:e8:b2:e0:5c:84:db:67:ba:a5:9c:
55:2b:cc:fa:8c:00:e7:df:c6:d2:bd:dd:c9:0c:4c:6f:02:10:
28:c8:6f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org