Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/jP8cjfVmpGMf0DDB4MvEQJoHWTc.roa
File: jP8cjfVmpGMf0DDB4MvEQJoHWTc.roa (raw, json)
Hash identifier: xNyTX2B0woXTy6UQJ3Ddgz5vbGrKElQvQnSf/HOhBDw=
Subject key identifier: 8C:FF:1C:8D:F5:66:A4:63:1F:D0:30:C1:E0:CB:C4:40:9A:07:59:37
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 18536C35
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/jP8cjfVmpGMf0DDB4MvEQJoHWTc.roa
Signing time: Tue 26 Apr 2022 13:03:06 +0000
ROA not before: Tue 26 Apr 2022 13:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31362
IP address blocks: 89.33.45.0/24 maxlen: 24
89.36.148.0/23 maxlen: 23
84.247.29.0/24 maxlen: 24
86.105.169.0/24 maxlen: 24
86.105.170.0/24 maxlen: 24
188.241.184.0/23 maxlen: 23
31.14.100.0/23 maxlen: 23
86.107.31.0/24 maxlen: 24
89.38.138.0/23 maxlen: 23
89.40.77.0/24 maxlen: 24
185.99.91.0/24 maxlen: 24
84.247.55.0/24 maxlen: 24
84.247.56.0/24 maxlen: 24
94.176.128.0/24 maxlen: 24
89.45.47.0/24 maxlen: 24
89.36.196.0/24 maxlen: 24
89.33.238.0/23 maxlen: 23
37.156.245.0/24 maxlen: 24
89.35.117.0/24 maxlen: 24
89.40.136.0/23 maxlen: 23
89.37.41.0/24 maxlen: 24
31.14.43.0/24 maxlen: 24
31.14.53.0/24 maxlen: 24
31.14.54.0/24 maxlen: 24
217.19.9.0/24 maxlen: 24
86.106.156.0/24 maxlen: 24
188.241.104.0/24 maxlen: 24
188.241.105.0/24 maxlen: 24
89.37.159.0/24 maxlen: 24
188.211.31.0/24 maxlen: 24
188.211.27.0/24 maxlen: 24
188.211.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408120373 (0x18536c35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Apr 26 13:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cff1c8df566a4631fd030c1e0cbc4409a075937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:79:35:fa:6f:0f:7c:58:9b:fc:aa:3c:07:7a:
ad:ec:23:6d:81:6d:fd:bc:37:6f:2c:6f:69:9f:2b:
ea:b0:a9:c8:1e:75:f4:24:a6:cf:15:94:b3:3c:6b:
c5:08:5e:a6:c7:da:42:08:4e:88:99:87:c6:c6:d6:
82:3d:2c:9c:8c:86:69:5b:9d:e4:54:6d:35:b7:01:
88:a1:74:fd:56:73:3b:1d:2d:60:28:00:b7:bb:90:
aa:fb:83:a4:66:02:41:15:cc:dd:25:2f:1a:45:79:
cf:df:5f:d1:b0:21:62:9d:84:94:86:40:fa:c4:a0:
99:75:37:3f:02:07:1e:98:15:98:d8:f9:96:0c:c4:
e0:7d:d7:d2:d1:c0:3d:ab:73:8d:27:95:af:ea:20:
c7:61:e5:08:2d:26:8c:16:51:c0:6a:36:e4:9d:2b:
6a:92:c7:90:00:38:f6:87:d5:fc:4d:c4:f8:5d:22:
62:4d:41:80:95:6e:23:ab:e2:ae:5f:76:65:8e:8a:
40:43:c7:34:60:33:b8:b1:d5:4d:34:e8:cc:bb:8c:
25:2d:66:78:2c:ec:ea:08:48:85:1e:09:5f:b4:6c:
ff:3f:a8:2e:8e:74:f9:06:bf:45:3d:11:2a:7f:d3:
c4:f7:d3:64:6d:5a:86:c1:8d:56:3e:1d:80:7a:67:
e3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FF:1C:8D:F5:66:A4:63:1F:D0:30:C1:E0:CB:C4:40:9A:07:59:37
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/jP8cjfVmpGMf0DDB4MvEQJoHWTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.43.0/24
31.14.53.0-31.14.54.255
31.14.100.0/23
37.156.245.0/24
84.247.29.0/24
84.247.55.0-84.247.56.255
86.105.169.0-86.105.170.255
86.106.156.0/24
86.107.31.0/24
89.33.45.0/24
89.33.238.0/23
89.35.117.0/24
89.36.148.0/23
89.36.196.0/24
89.37.41.0/24
89.37.159.0/24
89.38.138.0/23
89.40.77.0/24
89.40.136.0/23
89.45.47.0/24
94.176.128.0/24
185.99.91.0/24
188.211.27.0/24
188.211.30.0/23
188.241.104.0/23
188.241.184.0/23
217.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b9:b3:6e:1e:5e:36:e0:db:b8:86:e7:23:45:24:79:11:9e:
1a:c6:56:c3:1e:4b:3c:fa:72:82:06:03:fc:12:fc:cf:e2:c1:
17:70:e6:3a:75:72:8d:a7:98:e0:06:27:f1:9f:39:51:3c:d0:
57:61:46:fe:e7:73:c0:77:a4:d1:d1:dd:82:78:e3:1e:69:63:
be:eb:ca:a6:7e:89:34:18:57:05:2d:84:ba:76:d7:fe:77:88:
ed:f8:43:ce:45:53:1a:32:fa:c0:cc:13:37:86:7a:6a:9d:32:
a1:48:cd:7b:66:63:39:f4:29:16:be:16:eb:58:91:46:17:97:
a7:20:b5:a0:6e:e9:df:08:c2:4b:76:b2:ed:71:56:c9:76:19:
86:f7:81:0a:be:a7:1b:5f:c0:d4:1b:df:96:a5:7d:21:c1:a4:
ee:1d:a4:d6:22:0b:64:79:77:90:42:22:af:53:c8:63:c1:93:
5b:1c:7b:10:0e:db:f9:dc:ed:4d:9f:ce:e8:22:f3:6a:60:9a:
49:0c:73:46:f1:ac:71:3c:c5:9e:6f:65:8b:1b:5a:0c:6e:57:
b4:1c:93:c2:16:c1:05:b3:82:65:f9:3f:3f:c9:8b:d9:c1:4f:
6d:b0:96:dc:a1:95:27:4b:80:8f:45:bc:ed:49:91:d0:60:6e:
fa:49:ed:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:06 2024 by rpki-client on console-fra.rpki-client.org