Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hTGveFxfS56iAtjnTBXM47jGhRs.roa
File: hTGveFxfS56iAtjnTBXM47jGhRs.roa (raw, json)
Hash identifier: IsiOI8HcJPlAVQUx2GN5qk43zJO1ouEid25RXeI1Ae0=
Subject key identifier: 85:31:AF:78:5C:5F:4B:9E:A2:02:D8:E7:4C:15:CC:E3:B8:C6:85:1B
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0183ACC4FAA4DF2082DB137A809CF6030A3C
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hTGveFxfS56iAtjnTBXM47jGhRs.roa
Signing time: Thu 06 Oct 2022 10:08:53 +0000
ROA not before: Thu 06 Oct 2022 10:08:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
94.241.168.0/21 maxlen: 24
83.147.216.0/23 maxlen: 24
178.253.31.0/24 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
178.253.44.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:c4:fa:a4:df:20:82:db:13:7a:80:9c:f6:03:0a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Oct 6 10:08:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8531af785c5f4b9ea202d8e74c15cce3b8c6851b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d1:61:03:d6:f1:47:6f:14:2f:1e:48:a6:74:
cd:e6:d2:25:a8:4b:b7:b4:c7:d2:45:3f:25:cf:4c:
b8:22:9f:d1:d0:5f:ba:92:8a:41:cb:b3:55:5a:ec:
37:c1:90:3e:2f:a1:c7:ac:28:c8:4f:44:45:e1:09:
a4:59:72:b3:82:a8:63:4f:52:79:9c:47:3a:bb:98:
a7:2a:82:0f:a5:28:08:95:fc:fc:47:52:82:5f:51:
71:45:18:e7:96:bd:9a:fd:e3:5b:0f:6c:d9:60:41:
84:f6:df:77:b3:60:e7:0e:58:4f:80:e7:e9:5e:90:
bf:33:ff:9c:b1:da:ce:ee:c7:fb:8e:cf:a6:5c:e7:
5c:e3:ee:23:07:c1:2b:ec:9a:e9:47:3a:e9:1b:1f:
91:51:b3:0b:95:48:4d:14:45:c3:37:5d:a1:71:dd:
ad:a2:23:bf:bd:a6:7c:11:74:e4:a9:07:1d:7c:c5:
60:43:1b:cd:6b:10:10:d9:92:a4:4a:d3:77:7a:ab:
24:8a:ea:11:37:83:d3:86:6d:bd:c5:b9:89:49:a1:
5b:3b:ef:d9:81:24:14:ed:f7:30:4b:00:a6:74:0d:
56:63:23:2b:e6:9d:c6:c0:78:99:e6:c8:6d:d6:c8:
ed:b3:99:1d:a8:e1:6f:1f:c8:6f:8b:28:ec:37:af:
68:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:31:AF:78:5C:5F:4B:9E:A2:02:D8:E7:4C:15:CC:E3:B8:C6:85:1B
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/hTGveFxfS56iAtjnTBXM47jGhRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
91.186.196.0-91.186.203.255
91.186.212.0-91.186.219.255
94.241.136.0/21
94.241.168.0-94.241.183.255
178.253.31.0-178.253.33.255
178.253.44.0/23
178.253.52.0/23
Signature Algorithm: sha256WithRSAEncryption
91:dc:59:1a:96:74:e8:9e:f9:d6:3d:86:0b:d6:b0:b4:5b:d5:
d8:03:29:f9:b4:c6:5c:46:45:b4:cf:09:09:8a:d0:d4:d3:38:
8b:02:19:cc:09:ac:07:cd:81:7b:34:b9:81:18:f9:fa:1e:05:
f3:ff:95:f0:3a:e7:9a:03:05:44:87:e4:d7:8b:c6:e0:69:e7:
ae:e3:17:3e:cf:bb:72:4b:84:79:fc:69:22:54:b7:fc:96:80:
34:fa:22:8e:7a:1c:94:ac:ec:ea:cf:6e:ba:f9:f7:7d:69:22:
29:03:64:1f:5e:60:c8:bc:31:f9:16:f8:ca:a3:31:ce:e9:b5:
d5:c4:27:87:20:fb:4c:5a:1f:84:b8:53:32:44:6b:ae:7b:45:
c7:47:c7:ac:8b:f2:dd:40:44:fc:cc:ad:dd:36:e5:ff:0b:d5:
1c:03:d2:b5:c7:40:fd:51:44:02:af:05:2c:5a:2c:5f:91:24:
fc:a3:59:d0:93:64:5c:30:a5:c7:db:5e:26:d9:4a:fb:94:88:
69:cb:79:31:9e:46:46:67:5c:c7:03:08:3a:66:00:b3:d0:2d:
55:f3:42:13:03:a5:de:77:1f:2a:25:08:ab:e1:a5:f6:e0:de:
cb:70:a6:ad:01:a7:6e:db:51:19:74:78:fb:60:dd:32:0b:e2:
b7:21:6a:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org