Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1babfc-79e6-45df-8c40-72568f06fe10/1/1-RojnO6UjZ3se8UC29Tfn1rQ4_E.roa
File: 1-RojnO6UjZ3se8UC29Tfn1rQ4_E.roa (raw, json)
Hash identifier: Rua7039t9APFmXHuY+U7oEFBs8A66ii+uqBltRpkF8Q=
Subject key identifier: F9:1A:23:9C:EE:94:8D:9D:EC:7B:C5:02:DB:D4:DF:9F:5A:D0:E3:F1
Certificate issuer: /CN=212be0ea71cf437e08efdf3fe798eaf984131c46
Certificate serial: 091EEFA8
Authority key identifier: 21:2B:E0:EA:71:CF:43:7E:08:EF:DF:3F:E7:98:EA:F9:84:13:1C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISvg6nHPQ34I798_55jq-YQTHEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1babfc-79e6-45df-8c40-72568f06fe10/1/1-RojnO6UjZ3se8UC29Tfn1rQ4_E.roa
Signing time: Sat 01 Jan 2022 07:54:21 +0000
ROA not before: Sat 01 Jan 2022 07:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9063
IP address blocks: 91.184.160.0/19 maxlen: 19
109.75.80.0/20 maxlen: 20
185.231.252.0/22 maxlen: 22
185.194.151.0/24 maxlen: 24
212.88.128.0/19 maxlen: 19
37.230.0.0/19 maxlen: 19
176.126.64.0/23 maxlen: 23
176.126.71.0/24 maxlen: 24
176.126.68.0/23 maxlen: 23
176.126.75.0/24 maxlen: 24
176.126.76.0/24 maxlen: 24
176.126.72.0/23 maxlen: 23
185.168.11.0/24 maxlen: 24
185.168.8.0/24 maxlen: 24
217.24.224.0/20 maxlen: 20
185.186.144.0/23 maxlen: 23
212.82.48.0/20 maxlen: 20
185.203.123.0/24 maxlen: 24
185.222.139.0/24 maxlen: 24
194.35.184.0/23 maxlen: 23
194.35.188.0/23 maxlen: 23
176.126.82.0/24 maxlen: 24
185.166.190.0/23 maxlen: 23
185.166.189.0/24 maxlen: 24
176.126.80.0/23 maxlen: 23
176.126.79.0/24 maxlen: 24
185.35.109.0/24 maxlen: 24
185.35.110.0/23 maxlen: 23
185.161.200.0/23 maxlen: 23
93.186.0.0/20 maxlen: 20
2a02:5a0::/29 maxlen: 29
2a02:5a0::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153022376 (0x91eefa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=212be0ea71cf437e08efdf3fe798eaf984131c46
Validity
Not Before: Jan 1 07:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f91a239cee948d9dec7bc502dbd4df9f5ad0e3f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:79:58:61:be:84:59:51:45:72:85:f4:cc:08:
8c:e6:6e:c5:b2:11:2c:32:a6:d4:f3:76:fc:cc:dd:
d3:03:4a:69:2c:e5:08:22:24:51:c5:23:a9:12:7c:
37:ee:10:84:29:c0:ba:92:ad:bf:08:e0:9c:e5:75:
ed:10:72:22:8d:5b:7e:3b:47:33:62:0e:f4:71:ba:
83:36:9a:cb:22:38:0a:2b:c8:93:46:65:87:39:fa:
f3:89:e1:bf:61:cf:74:66:b6:c7:7e:2c:a0:54:80:
81:45:a6:31:1a:a6:5c:bc:27:23:88:d0:c9:96:f9:
28:9c:a2:5a:08:27:50:39:14:c3:b3:f6:1c:04:3d:
0d:ca:64:f0:33:8d:b0:a6:13:21:96:e2:cf:e3:18:
a1:53:b7:96:fd:45:14:2c:81:0d:02:32:45:9d:55:
9b:d1:14:e2:9b:75:27:33:96:37:f9:d8:a8:20:72:
21:6b:cf:89:f2:53:84:e2:42:fd:19:66:6b:12:7f:
b5:01:10:d5:83:71:47:65:82:66:09:c3:4f:f7:70:
80:5f:c0:90:10:43:09:8c:3a:3d:02:63:9f:93:ef:
fe:4b:d7:17:d4:bb:04:06:d3:d8:92:5b:df:64:d4:
cd:58:4e:97:22:9b:a5:86:ce:2e:d0:19:fe:ed:0f:
f5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:1A:23:9C:EE:94:8D:9D:EC:7B:C5:02:DB:D4:DF:9F:5A:D0:E3:F1
X509v3 Authority Key Identifier:
keyid:21:2B:E0:EA:71:CF:43:7E:08:EF:DF:3F:E7:98:EA:F9:84:13:1C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISvg6nHPQ34I798_55jq-YQTHEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1babfc-79e6-45df-8c40-72568f06fe10/1/1-RojnO6UjZ3se8UC29Tfn1rQ4_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1babfc-79e6-45df-8c40-72568f06fe10/1/ISvg6nHPQ34I798_55jq-YQTHEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.0.0/19
91.184.160.0/19
93.186.0.0/20
109.75.80.0/20
176.126.64.0/23
176.126.68.0/23
176.126.71.0-176.126.73.255
176.126.75.0-176.126.76.255
176.126.79.0-176.126.82.255
185.35.109.0-185.35.111.255
185.161.200.0/23
185.166.189.0-185.166.191.255
185.168.8.0/24
185.168.11.0/24
185.186.144.0/23
185.194.151.0/24
185.203.123.0/24
185.222.139.0/24
185.231.252.0/22
194.35.184.0/23
194.35.188.0/23
212.82.48.0/20
212.88.128.0/19
217.24.224.0/20
IPv6:
2a02:5a0::/29
Signature Algorithm: sha256WithRSAEncryption
64:dd:51:a9:6d:d6:af:04:7e:e6:c1:6c:90:f4:b3:56:dc:70:
11:69:e1:3f:3d:a5:d9:f5:96:d5:f2:e9:a2:f9:ef:ea:bb:e6:
5f:79:92:92:6a:3d:14:c8:22:ff:a1:78:e3:58:dc:8b:53:01:
17:a7:72:ee:d6:ab:07:7e:45:7e:a7:24:6d:5f:e1:9b:53:56:
ac:e6:48:b0:c3:b7:e2:70:c4:8d:52:43:46:b1:13:b6:6d:f8:
4f:47:33:95:86:13:7b:63:7b:2c:d3:24:53:20:b3:5d:44:26:
f5:53:61:83:aa:b1:a8:58:3e:2c:43:bf:91:4b:a9:3e:d8:bc:
d5:b6:68:66:02:e4:96:fe:66:89:09:8e:ce:78:93:26:06:2e:
96:65:26:7a:68:22:aa:16:41:d8:e7:77:04:8d:45:bc:34:82:
a6:fd:6b:53:0a:30:73:d6:b5:50:09:22:a1:66:c2:83:8a:d3:
1a:a9:11:f6:c1:c3:2b:65:7d:05:84:57:08:08:fb:27:ed:15:
65:cb:a2:00:c5:b2:b0:0f:8c:8c:96:ef:95:96:e6:25:de:fc:
1c:a8:c8:52:70:0d:4f:cb:31:31:02:3e:63:2b:d9:c5:25:2f:
88:a2:1b:96:85:71:c1:3e:f9:f5:48:df:b9:c6:5e:f3:c2:81:
36:56:ab:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:28 2023 by rpki-client on console-fra.rpki-client.org