Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/vLgf1gmbFjiMRe-v-Gl7XROQP-M.roa
File: vLgf1gmbFjiMRe-v-Gl7XROQP-M.roa (raw, json)
Hash identifier: uKVRXgPif27kuyShWgFA5aqz8VVRac/keZuFAdZjwmE=
Subject key identifier: BC:B8:1F:D6:09:9B:16:38:8C:45:EF:AF:F8:69:7B:5D:13:90:3F:E3
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184F1F514610D506A2BC16608E521059853
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/vLgf1gmbFjiMRe-v-Gl7XROQP-M.roa
Signing time: Thu 08 Dec 2022 13:38:01 +0000
ROA not before: Thu 08 Dec 2022 13:38:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24767
IP address blocks: 212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
188.94.168.0/21 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:f5:14:61:0d:50:6a:2b:c1:66:08:e5:21:05:98:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 8 13:38:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcb81fd6099b16388c45efaff8697b5d13903fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:81:6a:a6:5e:fc:42:72:24:0e:56:54:28:4a:
6a:d8:ff:06:06:5a:13:da:d0:a4:cd:61:e7:b2:33:
25:6e:f4:32:09:69:7d:a1:cb:dc:61:e8:c7:54:84:
e7:19:9c:3d:8b:11:c5:8f:fe:c4:c5:5c:67:5a:8a:
0b:0b:41:50:f5:23:4a:d7:d2:a0:55:02:0d:c8:85:
07:33:6f:11:d5:7a:c4:1d:92:ba:79:dc:6d:ac:19:
8d:25:8b:6b:91:dd:68:ef:7d:f7:2c:f1:10:0d:bf:
a5:79:b0:6f:59:5f:5a:df:44:af:53:f2:1c:b8:aa:
a8:cf:41:d8:13:0d:ef:ed:0f:bc:3d:a7:7b:13:da:
55:67:3b:f7:e4:c8:b6:f3:a2:9f:48:a0:3e:92:a3:
4c:8a:69:d1:92:6e:b3:69:39:96:d2:59:78:33:b5:
c5:e7:48:21:1b:e4:0e:00:a9:ca:48:55:e3:32:a6:
0c:4f:ac:79:91:d4:93:ea:a9:46:3b:44:c1:79:f6:
7f:08:ce:f1:78:1a:29:cf:7a:75:5b:12:58:03:58:
62:41:f1:6b:d4:80:d7:8a:2f:81:7f:47:45:5d:25:
ad:49:1b:19:7e:c8:43:78:a6:72:96:1b:c7:5f:99:
c5:5b:16:a2:f8:e0:ea:23:92:8f:19:6b:16:ad:c1:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B8:1F:D6:09:9B:16:38:8C:45:EF:AF:F8:69:7B:5D:13:90:3F:E3
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/vLgf1gmbFjiMRe-v-Gl7XROQP-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
32:14:13:d2:3c:c0:99:f6:0b:a9:57:61:4c:ec:3f:a2:93:b1:
11:41:a6:c7:60:77:3f:f6:30:87:61:63:97:b4:b0:f4:c1:19:
3c:83:18:88:cc:e7:3f:67:3e:7a:b3:1c:e6:39:b0:23:38:8c:
2f:ac:ca:e9:b8:ef:0d:ea:83:f6:94:2d:46:33:86:e4:a3:06:
1d:4c:8f:fa:06:9d:c8:12:10:5d:b7:96:80:54:d2:c8:f2:08:
45:b6:e6:d3:63:29:ca:2c:01:8f:49:78:0e:36:39:8f:ab:53:
da:ee:41:49:36:41:4d:80:3f:c2:76:0a:b7:5d:2d:0f:aa:70:
2d:82:d4:41:7b:63:34:0b:2d:84:11:76:fa:2e:fe:ff:23:06:
6b:c2:2b:b0:9a:95:20:68:6e:a3:c6:6b:20:7c:02:f9:b3:bc:
3f:ba:cc:7f:e5:92:6f:04:de:83:70:cd:cf:24:38:09:24:b5:
6b:f0:8a:a6:ea:d4:ec:58:b4:4e:af:39:20:48:f4:d6:8e:b9:
eb:e8:09:0d:cf:a4:3c:7d:f0:52:e6:ec:64:95:34:f0:ec:41:
04:d8:6e:59:17:b8:5a:51:cb:0a:59:3d:c5:64:64:df:76:c6:
e3:c5:15:81:07:e3:4e:32:50:f8:63:65:e6:05:82:2e:f0:4c:
64:6e:60:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org