Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/yKF6HTiXAZl5bMQ6vaU-E4Ou9Vo.roa
File: yKF6HTiXAZl5bMQ6vaU-E4Ou9Vo.roa (raw, json)
Hash identifier: 8NYXSgJQMlvi5pw2nswtBXJAcYUDVYQDCr+n9u+qe24=
Subject key identifier: C8:A1:7A:1D:38:97:01:99:79:6C:C4:3A:BD:A5:3E:13:83:AE:F5:5A
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0A7187D6
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/yKF6HTiXAZl5bMQ6vaU-E4Ou9Vo.roa
Signing time: Tue 05 Jul 2022 06:07:25 +0000
ROA not before: Tue 05 Jul 2022 06:07:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 212.60.13.0/24 maxlen: 24
185.205.204.0/24 maxlen: 24
185.253.120.0/24 maxlen: 24
185.253.121.0/24 maxlen: 24
5.182.196.0/24 maxlen: 24
5.182.197.0/24 maxlen: 24
185.161.190.0/24 maxlen: 24
79.98.183.0/24 maxlen: 24
78.31.205.0/24 maxlen: 24
92.249.29.0/24 maxlen: 24
185.201.42.0/24 maxlen: 24
5.182.185.0/24 maxlen: 24
147.78.204.0/24 maxlen: 24
147.78.207.0/24 maxlen: 24
94.154.171.0/24 maxlen: 24
94.154.178.0/24 maxlen: 24
217.197.170.0/24 maxlen: 24
185.208.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175212502 (0xa7187d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jul 5 06:07:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8a17a1d38970199796cc43abda53e1383aef55a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:df:ee:f2:4f:67:b0:b8:4d:c6:cf:2b:45:1b:
7f:8d:0b:07:d1:3e:73:5b:e8:76:a0:3e:a6:43:56:
41:f1:d3:57:53:e8:08:7b:98:6b:2a:b8:bd:ef:b4:
aa:2e:30:79:17:43:27:6e:39:99:99:57:06:b2:04:
54:77:c0:32:7b:1a:65:1f:60:4b:3e:c4:c9:fd:8f:
b2:73:45:42:3e:57:37:b2:30:e2:c7:c0:cc:ca:d7:
33:e2:77:64:02:71:78:42:d7:71:75:02:d6:75:2e:
64:10:84:a8:16:d2:aa:45:56:f8:86:16:a0:4d:71:
48:5f:9f:ec:bb:30:bf:58:19:d2:61:eb:62:65:67:
8e:a6:27:cd:23:50:13:2e:61:51:a0:d4:22:7c:74:
6f:c1:26:ff:3c:da:82:63:56:7a:0c:c9:9f:ee:6d:
70:d9:73:76:f6:2f:90:c1:6b:09:3b:44:38:70:f2:
9f:84:be:a5:30:60:ca:c6:e7:35:09:b7:3e:8a:2b:
ac:6c:06:0c:65:69:38:31:28:b9:11:7c:43:94:0d:
3e:40:1a:a6:ef:e3:68:fd:5d:f9:3e:ab:92:a1:36:
1b:f4:8d:83:19:59:b6:f9:14:99:4d:a1:ff:40:50:
52:c2:cd:a9:47:ba:e1:a3:d8:b9:fa:f0:38:a1:9c:
92:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A1:7A:1D:38:97:01:99:79:6C:C4:3A:BD:A5:3E:13:83:AE:F5:5A
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/yKF6HTiXAZl5bMQ6vaU-E4Ou9Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.185.0/24
5.182.196.0/23
78.31.205.0/24
79.98.183.0/24
92.249.29.0/24
94.154.171.0/24
94.154.178.0/24
147.78.204.0/24
147.78.207.0/24
185.161.190.0/24
185.201.42.0/24
185.205.204.0/24
185.208.153.0/24
185.253.120.0/23
212.60.13.0/24
217.197.170.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2d:a8:a6:30:e7:a6:ff:9a:2a:0a:38:05:0d:91:b4:5b:12:
97:16:df:c4:4d:b3:81:87:df:9a:7a:60:0d:ea:2a:46:48:69:
7e:d8:16:7f:56:61:08:8c:c5:6f:14:b0:7a:39:df:41:08:e0:
9c:ff:f3:df:12:70:91:83:5e:0f:7e:5f:99:bd:0f:5a:b0:5d:
9f:ae:9c:98:b5:f0:73:52:d7:a6:d6:97:fb:a1:5c:89:b4:18:
2c:85:05:bc:a6:43:c1:af:71:3e:45:a4:35:77:83:e3:01:e9:
8b:7c:ef:9c:a1:38:a8:26:0e:77:b0:23:dc:cf:1d:9e:33:89:
29:39:d4:ff:34:5a:3c:ff:b6:7c:33:34:67:8f:00:0d:c6:33:
12:dc:70:c3:ea:14:f0:30:63:86:e3:a3:ae:53:1b:94:bb:0f:
b6:d8:6f:b7:0a:23:58:55:6d:d9:ce:64:59:8f:a7:a0:f7:87:
67:03:1f:f2:76:36:16:bb:1e:c6:2e:ff:a9:8d:67:ca:0a:66:
a8:4d:f0:05:d8:83:09:c9:53:fd:b1:3e:ed:60:ee:08:38:ee:
6c:84:4f:44:ef:8c:46:40:64:06:de:5e:df:ff:a7:f6:f2:d0:
ac:fe:b5:23:a1:ca:70:91:fe:64:0c:28:06:25:74:6e:2f:55:
53:e9:24:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:55 2024 by rpki-client on console-fra.rpki-client.org