Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/c1COHinNIKvNPqQ-zGHMn4kkJ7s.roa
File: c1COHinNIKvNPqQ-zGHMn4kkJ7s.roa (raw, json)
Hash identifier: GxHLqLXB1KENtzkqjeN/BaRI4ZR4NOyT5m+/pu35JC0=
Subject key identifier: 73:50:8E:1E:29:CD:20:AB:CD:3E:A4:3E:CC:61:CC:9F:89:24:27:BB
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08F1505D
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/c1COHinNIKvNPqQ-zGHMn4kkJ7s.roa
Signing time: Sun 10 Apr 2022 17:45:40 +0000
ROA not before: Sun 10 Apr 2022 17:45:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
91.186.194.0/23 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.204.0/22 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
91.186.220.0/22 maxlen: 24
94.241.160.0/21 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.12.0/23 maxlen: 24
83.147.216.0/23 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
178.253.38.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
178.253.55.0/24 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
83.147.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150032477 (0x8f1505d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 10 17:45:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73508e1e29cd20abcd3ea43ecc61cc9f892427bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9c:2e:66:0b:33:2f:30:55:e4:ac:0c:b0:97:
36:47:d6:e9:f5:0f:ab:71:e8:cc:da:fd:9b:09:07:
d4:d9:07:69:16:94:7c:53:09:74:29:a6:d6:1a:bf:
e6:bf:f0:82:fa:14:31:ee:f9:57:64:7b:4d:ea:31:
11:14:3d:75:be:42:19:76:f4:c6:ee:fe:78:71:b7:
da:b1:6b:0a:ae:f3:54:d9:59:6c:73:a2:b6:d9:69:
18:33:2d:70:e7:9d:ea:24:77:15:7f:a6:04:03:38:
56:77:d9:7a:31:e2:fd:a8:c1:49:3c:72:70:82:77:
46:6f:5f:58:09:5e:44:8f:6d:e1:9e:7a:fa:ee:f1:
df:f9:be:22:6c:42:da:88:03:f2:85:75:38:08:5a:
77:db:6c:01:10:60:91:18:9a:38:0f:5f:fc:06:cd:
59:a5:47:06:90:b6:b5:df:4d:5f:fe:0d:9d:eb:39:
c2:f5:9a:c2:af:a2:86:b3:dd:b0:97:bb:41:06:ed:
6e:83:1c:7f:04:7f:df:d2:1e:d2:0f:10:b8:8a:84:
09:e2:bb:14:8b:b0:e9:1b:2b:52:1d:45:c3:48:2d:
bc:46:94:09:60:7e:63:81:6b:69:8a:2d:84:51:46:
b6:08:e9:c6:0b:e9:04:04:2f:46:13:6f:b2:54:1d:
64:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:50:8E:1E:29:CD:20:AB:CD:3E:A4:3E:CC:61:CC:9F:89:24:27:BB
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/c1COHinNIKvNPqQ-zGHMn4kkJ7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
83.147.240.0/20
91.186.194.0-91.186.207.255
91.186.212.0-91.186.223.255
94.241.136.0/21
94.241.160.0-94.241.183.255
178.253.12.0/23
178.253.32.0/23
178.253.38.0/23
178.253.52.0/23
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:a1:07:49:88:f7:fd:81:b5:33:50:38:6a:7a:ef:f1:cd:f6:
b7:b6:f3:e1:22:b9:20:e9:0d:89:30:07:de:20:fb:0c:b8:5a:
14:7a:db:62:00:80:19:8a:8d:2c:3c:31:55:c4:ce:61:49:9c:
c2:2a:ee:88:6f:7e:2f:2a:7c:fa:06:e3:5e:c6:36:3b:a1:b2:
0b:e7:fd:fa:75:46:ac:bb:1e:60:27:60:d7:19:a1:ca:24:67:
19:eb:6a:ab:de:09:82:52:21:97:0b:a6:aa:23:0a:6f:32:e7:
60:a9:4d:5d:15:72:a3:db:7f:9a:dd:cf:95:7b:a6:e9:0a:a1:
bd:1a:8e:42:7f:3f:b3:48:7b:0a:e4:64:12:9d:37:0c:2f:13:
9f:2f:0c:66:f1:ab:1a:28:77:d6:ef:4c:9c:14:5b:8f:21:36:
d3:77:f0:24:69:13:01:9f:5f:26:39:79:35:ca:bf:e4:b0:1b:
45:ff:ff:9d:b6:d3:bc:d5:3b:23:a0:59:55:11:30:96:34:2d:
88:79:1d:38:fe:6e:40:23:96:9a:d0:be:b1:9b:3a:4a:eb:43:
dc:2b:fe:e1:99:05:d1:41:32:e9:84:51:a0:63:ff:29:f1:f6:
64:42:ef:5f:6d:2c:db:80:9b:6b:e6:b5:41:fc:a4:56:23:53:
b8:45:91:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org