Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/vEbjI25eM01mxx5CnvM0lQQ_AK8.roa
File: vEbjI25eM01mxx5CnvM0lQQ_AK8.roa (raw, json)
Hash identifier: 1KnhtpRdiG/ysMIEdFyFF+P9UG7+ZieOoXWib2rV8sw=
Subject key identifier: BC:46:E3:23:6E:5E:33:4D:66:C7:1E:42:9E:F3:34:95:04:3F:00:AF
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 090CC262
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/vEbjI25eM01mxx5CnvM0lQQ_AK8.roa
Signing time: Sat 16 Apr 2022 13:22:04 +0000
ROA not before: Sat 16 Apr 2022 13:22:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.241.176.0/21 maxlen: 24
91.186.196.0/22 maxlen: 24
91.186.194.0/23 maxlen: 24
94.241.136.0/21 maxlen: 24
91.186.200.0/22 maxlen: 24
91.186.212.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
91.186.220.0/22 maxlen: 24
94.241.160.0/21 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.12.0/23 maxlen: 24
83.147.216.0/23 maxlen: 24
83.147.222.0/23 maxlen: 24
178.253.32.0/23 maxlen: 24
83.147.232.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
178.253.52.0/23 maxlen: 24
178.253.55.0/24 maxlen: 24
83.147.252.0/22 maxlen: 24
83.147.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151831138 (0x90cc262)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 16 13:22:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc46e3236e5e334d66c71e429ef33495043f00af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:45:35:b2:59:b1:5e:0e:71:23:73:52:28:
a3:1a:fd:d5:db:b8:52:e1:ef:ef:f0:90:54:e7:7c:
f1:dd:ca:1b:94:aa:fe:37:aa:86:e9:1c:25:8a:d9:
d2:0b:8a:ff:b8:eb:cf:23:e0:57:4a:63:10:3c:ff:
04:7b:77:8b:b2:1d:a1:13:23:4c:b9:e6:af:e9:37:
cf:2a:3f:82:cd:1f:42:ae:54:51:be:26:95:21:eb:
1b:ea:82:a5:5d:2f:02:3a:91:1a:bc:cc:82:6e:dd:
38:ff:38:98:32:ed:00:69:f9:53:76:4a:a0:12:ac:
57:59:64:20:8e:0d:18:d9:08:06:07:e3:58:a9:3c:
59:8d:38:59:89:ea:2b:a9:ff:4e:fd:1c:15:a8:b7:
66:13:d6:b0:00:57:b0:a0:0e:e2:e6:96:20:a6:81:
82:fc:14:49:2d:69:b7:97:4e:73:58:e2:75:7d:e9:
98:57:75:e1:5c:7a:ae:ff:3c:05:86:96:28:6c:1c:
ea:9b:59:8e:a8:70:40:a2:eb:d9:bc:23:f4:44:91:
d2:9d:00:ba:94:6c:da:0a:76:35:82:40:48:6a:5b:
17:12:ec:ac:8c:34:8b:cd:b0:38:84:5a:16:d0:1a:
15:df:dd:98:2a:c7:69:2b:29:e2:4a:5c:fd:18:af:
f0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:46:E3:23:6E:5E:33:4D:66:C7:1E:42:9E:F3:34:95:04:3F:00:AF
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/vEbjI25eM01mxx5CnvM0lQQ_AK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.216.0/23
83.147.222.0/23
83.147.232.0/22
83.147.240.0/22
83.147.248.0/21
91.186.194.0-91.186.203.255
91.186.212.0-91.186.223.255
94.241.136.0/21
94.241.160.0-94.241.183.255
178.253.12.0/23
178.253.32.0/23
178.253.52.0/23
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:c9:b5:b6:75:ac:5f:fa:0c:3f:df:c6:41:62:c8:f3:0f:a1:
86:ce:85:de:24:7b:aa:27:29:a5:11:78:ac:b1:73:35:71:8c:
cc:cb:55:f6:04:cf:6d:26:37:6a:7e:b2:cb:f9:ec:9e:30:9b:
bd:8c:20:fa:e9:b8:08:23:51:0d:01:c1:45:cb:83:fa:62:2c:
0a:5d:39:20:e6:6e:2d:8f:6d:5d:c2:06:71:c9:83:27:af:7b:
31:a3:a7:37:7f:83:ce:53:53:b2:74:b2:f5:2e:61:68:02:a8:
22:7c:7d:c1:7c:d9:72:14:9e:34:9b:06:80:4e:fa:b7:c6:e8:
80:88:92:03:39:e7:f0:15:1d:d5:27:a9:0d:e9:28:7a:e6:3c:
d8:ef:6f:09:c9:81:a5:e6:2d:45:31:1e:86:61:41:7d:35:61:
2e:2c:98:3f:b5:e4:55:4c:e1:03:a9:cf:68:09:18:80:36:b9:
ed:85:0b:86:97:b7:a6:f7:03:f5:ad:94:24:2c:94:05:df:87:
8b:33:5b:1f:a6:45:77:27:56:34:27:92:e7:6b:07:33:98:7e:
42:1c:eb:bb:68:96:93:ad:ab:4e:5f:e6:cc:0f:36:5d:18:14:
7e:41:37:31:a6:52:ac:b0:f0:96:f5:e5:16:a8:d4:11:f5:a7:
d2:57:cb:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org