Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/LSp3ShH-39fpuFgV8wqUcSzCs1Q.roa
File: LSp3ShH-39fpuFgV8wqUcSzCs1Q.roa (raw, json)
Hash identifier: M+33RJJMiKJb+Iyal0BqMSz+Lk1n6Uwu5qIpWOXKZKU=
Subject key identifier: 2D:2A:77:4A:11:FE:DF:D7:E9:B8:58:15:F3:0A:94:71:2C:C2:B3:54
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 0182F5B1BDD6CE03706010ADC141711B97EB
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/LSp3ShH-39fpuFgV8wqUcSzCs1Q.roa
Signing time: Wed 31 Aug 2022 20:57:22 +0000
ROA not before: Wed 31 Aug 2022 20:57:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8784
IP address blocks: 194.117.211.0/24 maxlen: 24
194.117.208.0/24 maxlen: 24
194.117.208.0/20 maxlen: 20
194.117.219.0/24 maxlen: 24
194.117.216.0/24 maxlen: 24
195.46.192.0/19 maxlen: 19
195.46.198.0/24 maxlen: 24
195.46.195.0/24 maxlen: 24
195.46.193.0/24 maxlen: 24
195.46.204.0/24 maxlen: 24
195.46.210.0/24 maxlen: 24
195.46.209.0/24 maxlen: 24
195.46.213.0/24 maxlen: 24
195.46.216.0/24 maxlen: 24
195.46.214.0/24 maxlen: 24
195.46.219.0/24 maxlen: 24
195.46.223.0/24 maxlen: 24
178.22.152.0/21 maxlen: 21
194.153.214.0/24 maxlen: 24
83.169.120.0/24 maxlen: 24
83.169.119.0/24 maxlen: 24
83.169.123.0/24 maxlen: 24
83.169.122.0/24 maxlen: 24
83.169.121.0/24 maxlen: 24
83.169.71.0/24 maxlen: 24
83.169.70.0/24 maxlen: 24
83.169.69.0/24 maxlen: 24
83.169.64.0/18 maxlen: 18
83.169.73.0/24 maxlen: 24
83.169.85.0/24 maxlen: 24
83.169.84.0/24 maxlen: 24
83.169.81.0/24 maxlen: 24
83.169.80.0/24 maxlen: 24
83.169.99.0/24 maxlen: 24
83.169.103.0/24 maxlen: 24
83.169.102.0/24 maxlen: 24
83.169.100.0/24 maxlen: 24
83.169.118.0/24 maxlen: 24
83.169.117.0/24 maxlen: 24
83.169.116.0/24 maxlen: 24
83.169.115.0/24 maxlen: 24
83.169.114.0/24 maxlen: 24
213.139.96.0/19 maxlen: 19
213.139.112.0/24 maxlen: 24
213.139.111.0/24 maxlen: 24
213.139.117.0/24 maxlen: 24
213.139.123.0/24 maxlen: 24
212.37.192.0/19 maxlen: 19
2a02:d50::/32 maxlen: 32
2001:4b90::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f5:b1:bd:d6:ce:03:70:60:10:ad:c1:41:71:1b:97:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Aug 31 20:57:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d2a774a11fedfd7e9b85815f30a94712cc2b354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:51:78:28:94:4e:90:00:c9:b0:9b:dd:66:96:
48:57:62:3a:d8:fe:86:3f:51:4d:5f:ef:c3:f5:4e:
1d:43:90:38:c7:c7:78:78:7b:11:ff:5f:03:1e:7e:
84:e8:1f:f0:f7:39:67:5d:b8:8f:56:d1:7c:a0:be:
bc:ad:58:89:1c:a9:58:2a:9e:12:81:6f:59:7a:e5:
7a:b2:40:a4:6b:32:1d:bf:24:84:a0:d7:c0:d9:b7:
70:d9:a1:c4:57:88:46:98:8b:46:31:7f:12:13:cd:
8e:66:00:91:e4:a4:35:a9:ac:1a:8b:d7:07:7f:77:
e9:20:58:5c:fd:80:5c:e5:93:d1:24:c0:16:7f:8b:
b4:41:69:ae:bf:b0:5b:1b:5a:6e:cd:17:3b:79:00:
d9:63:a6:f2:ce:c4:ed:a7:d0:d6:a6:2b:96:11:8f:
80:9d:46:77:15:75:23:a5:1b:23:52:4c:17:14:03:
b5:e8:4d:8b:91:f1:77:d0:8f:63:8b:59:ac:48:2b:
0f:6e:e1:93:a1:04:c2:6a:1a:52:1e:fe:ae:e3:a3:
59:8d:9f:15:b6:e5:24:6d:04:cb:89:15:56:3c:2f:
35:4a:71:6f:3f:78:28:58:0f:d4:aa:37:e7:05:58:
06:ee:7d:c6:6c:fa:61:02:6a:ac:2a:62:23:77:7a:
b8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:2A:77:4A:11:FE:DF:D7:E9:B8:58:15:F3:0A:94:71:2C:C2:B3:54
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/LSp3ShH-39fpuFgV8wqUcSzCs1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.64.0/18
178.22.152.0/21
194.117.208.0/20
194.153.214.0/24
195.46.192.0/19
212.37.192.0/19
213.139.96.0/19
IPv6:
2001:4b90::/32
2a02:d50::/32
Signature Algorithm: sha256WithRSAEncryption
75:b2:b4:f9:b5:b1:3d:ba:39:45:b6:94:44:37:5e:f0:22:b5:
35:e4:ae:3d:01:6d:22:ab:e8:30:de:5a:bc:4a:9e:6f:13:2f:
16:40:f4:d0:d9:55:1a:9a:c2:97:97:72:2f:44:22:0e:95:c6:
f6:ff:63:9e:72:2d:b7:55:9c:ec:15:e3:ba:21:01:99:6e:b2:
9b:ad:fd:7c:5f:ed:7e:dc:02:4b:ab:11:70:93:07:b8:02:8b:
9c:36:e4:b4:c9:d5:43:f7:5d:b7:5f:11:26:f0:3f:08:63:b0:
5f:aa:10:0d:bf:b9:68:92:f8:6a:ba:67:c9:07:43:c4:b3:e8:
5b:6e:5f:13:eb:6f:e8:6f:11:df:df:1b:af:36:fd:aa:a3:a5:
fc:94:c5:e8:37:99:56:64:5f:9e:75:22:02:28:48:02:fe:a5:
f4:98:4b:8a:d5:c7:97:bc:7f:0f:24:34:3b:4e:24:ce:8a:c9:
ec:75:da:c4:91:0a:cb:f2:67:92:6d:15:84:25:25:64:45:56:
4c:e5:08:d2:5b:5f:da:ab:d0:f5:00:c9:94:b0:b9:ff:75:27:
91:67:65:f4:e9:89:1e:51:98:f3:3d:03:1b:64:5f:a8:9a:b5:
00:78:37:71:59:37:4a:c4:2e:cc:35:5c:a6:ee:fe:39:58:ed:
77:2f:fa:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:40 2024 by rpki-client on console-fra.rpki-client.org