Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/AK3sbbNIzrae52uxAI9OUq0m4UI.roa
File: AK3sbbNIzrae52uxAI9OUq0m4UI.roa (raw, json)
Hash identifier: bKLyOMqkAer84zIdI+c698N3EgZPTb73vXWWGqYWDzM=
Subject key identifier: 00:AD:EC:6D:B3:48:CE:B6:9E:E7:6B:B1:00:8F:4E:52:AD:26:E1:42
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F219DEA4514B749540A3DAB5D002C6D7
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/AK3sbbNIzrae52uxAI9OUq0m4UI.roa
Signing time: Thu 08 Dec 2022 14:18:12 +0000
ROA not before: Thu 08 Dec 2022 14:18:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20663
IP address blocks: 212.14.160.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.230.64.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:19:de:a4:51:4b:74:95:40:a3:da:b5:d0:02:c6:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 14:18:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00adec6db348ceb69ee76bb1008f4e52ad26e142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:22:99:cd:d1:b0:e6:02:ff:4e:58:37:1d:29:
fe:4c:80:b0:e3:a8:8b:b4:76:17:a4:86:de:9d:d9:
de:58:33:6b:34:41:2e:5c:96:99:be:17:3f:d3:27:
7d:ef:09:2f:67:38:17:94:25:63:b8:65:54:50:b5:
89:03:85:2e:39:7f:2f:8d:2b:8b:6e:1e:16:59:68:
41:50:80:4e:3f:f0:de:f1:6a:55:8f:9c:e6:c3:ea:
d1:b7:72:dc:f8:f5:a1:9b:71:fa:80:13:b6:56:26:
63:e3:66:ad:b7:64:9e:c0:f1:3d:fc:85:fb:64:7a:
b7:1b:ad:2e:7c:9d:0e:b3:1b:e9:fc:f8:3b:2f:56:
75:22:07:29:e5:3a:16:8e:ee:b5:a3:49:8f:13:d6:
1d:11:71:99:14:1f:32:32:1e:3a:dc:ae:64:47:7c:
50:3e:76:1d:19:75:8f:17:a1:dc:87:cf:5b:24:a8:
a7:cb:94:e7:c8:ae:24:77:42:15:9f:a0:4a:77:9d:
c3:ed:7e:5f:e3:1a:85:23:1f:16:9f:d8:d6:c8:f0:
b6:7f:9b:f0:96:b5:64:aa:36:f8:62:24:16:6a:85:
2a:83:2e:f0:b4:30:73:6b:ae:87:c9:ae:79:f1:3f:
c0:bf:cb:f8:1b:30:1f:be:49:b2:db:89:44:ab:2b:
9a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:AD:EC:6D:B3:48:CE:B6:9E:E7:6B:B1:00:8F:4E:52:AD:26:E1:42
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/AK3sbbNIzrae52uxAI9OUq0m4UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
50:93:b7:93:6b:d3:0e:13:e0:68:b3:f1:36:61:0f:55:56:24:
d0:41:fb:63:13:9e:55:41:82:63:4c:14:65:d5:8f:a6:1e:b2:
6b:1d:d9:22:35:a0:b5:e2:66:0e:23:1c:5f:84:68:c6:af:3a:
d8:3b:63:d6:1f:d2:36:c9:74:67:fc:d7:50:29:01:bf:52:db:
02:70:bb:6e:33:a2:60:77:e2:00:9c:8c:a4:4c:b9:ea:de:09:
d5:ff:e6:eb:5b:20:28:30:4f:2b:c6:bd:af:b2:4e:9d:30:0b:
41:9d:7d:22:9d:17:f1:92:ad:74:87:4c:79:11:60:d3:65:ab:
ac:49:44:36:cf:65:0e:75:5d:04:a7:67:57:1b:62:ea:58:d2:
54:b4:2b:1e:20:ed:fd:dc:a0:6a:7c:64:79:1c:bb:47:4f:e5:
f7:2d:b5:a3:09:4b:fd:71:6e:1b:89:c0:b3:b9:cb:07:80:11:
36:91:fc:61:80:ba:d0:bf:6e:70:ed:16:d9:75:85:0a:94:e2:
36:be:05:04:47:fc:f5:2a:f0:8f:4f:fa:16:5d:45:40:05:73:
e5:08:3d:fb:27:2a:33:91:d6:4c:0d:a7:d5:f7:9f:b0:75:d1:
7e:96:1b:05:31:2a:62:3f:3a:1b:a1:43:d6:05:7f:b2:54:27:
4d:11:e8:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org