Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/eaUgD8PgVUxT8bQaDWt_MYgZZWk.roa
File: eaUgD8PgVUxT8bQaDWt_MYgZZWk.roa (raw, json)
Hash identifier: d4fWYYqSQa/7J4IdKSIvAbUzTSkHA4+fgkIjDDjqdnE=
Subject key identifier: 79:A5:20:0F:C3:E0:55:4C:53:F1:B4:1A:0D:6B:7F:31:88:19:65:69
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4410F8EC
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/eaUgD8PgVUxT8bQaDWt_MYgZZWk.roa
Signing time: Mon 30 May 2022 09:28:22 +0000
ROA not before: Mon 30 May 2022 09:28:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 194.132.108.0/23 maxlen: 23
193.183.3.0/24 maxlen: 24
194.68.126.0/24 maxlen: 24
194.71.248.0/21 maxlen: 21
194.68.56.0/23 maxlen: 23
192.71.158.0/24 maxlen: 24
194.68.99.0/24 maxlen: 24
194.14.129.0/24 maxlen: 24
193.183.92.0/24 maxlen: 24
192.176.161.0/24 maxlen: 24
193.183.93.0/24 maxlen: 24
193.183.104.0/24 maxlen: 24
193.181.187.0/24 maxlen: 24
192.121.30.0/24 maxlen: 24
193.183.118.0/24 maxlen: 24
193.183.68.0/23 maxlen: 23
193.183.79.0/24 maxlen: 24
192.165.65.0/24 maxlen: 24
192.71.5.0/24 maxlen: 24
192.165.86.0/24 maxlen: 24
192.121.172.0/24 maxlen: 24
192.121.101.0/24 maxlen: 24
193.234.68.0/23 maxlen: 23
192.71.97.0/24 maxlen: 24
192.36.37.0/24 maxlen: 24
193.234.220.0/23 maxlen: 23
193.181.0.0/24 maxlen: 24
193.234.237.0/24 maxlen: 24
194.71.140.0/23 maxlen: 23
192.71.41.0/24 maxlen: 24
192.71.40.0/24 maxlen: 24
194.103.50.0/24 maxlen: 24
192.121.192.0/24 maxlen: 24
194.71.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1141962988 (0x4410f8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 30 09:28:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79a5200fc3e0554c53f1b41a0d6b7f3188196569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:11:88:07:09:0a:6f:8d:06:f5:32:19:b2:65:
55:74:f2:95:c9:2e:e1:cc:b3:58:f0:6a:f6:a3:a6:
63:9a:b8:05:c6:9f:5b:d5:4b:f2:03:25:a7:a2:70:
1d:67:cd:4a:0b:ed:1b:7f:6e:7b:57:84:8c:5a:11:
0e:6a:11:8f:76:30:4d:52:81:f7:be:98:d1:7c:21:
36:35:66:63:f3:58:30:95:84:84:ff:18:d0:87:b1:
83:5f:9b:fc:8f:0b:92:f4:18:f4:fe:fc:2a:ae:3d:
0d:55:c6:74:f2:bd:50:66:59:a7:49:74:3d:56:3a:
38:b5:2f:3c:c0:2d:af:55:f4:0b:88:f5:d2:9f:ce:
1b:c5:ab:5f:76:52:91:2b:78:f5:19:1d:9b:b0:e8:
29:2a:41:62:b1:51:fc:78:4b:a8:91:97:5b:71:3d:
87:44:a9:9c:74:d3:45:cf:b4:86:7d:d2:1a:5a:b4:
26:1c:d3:e7:48:ac:ed:7c:d0:86:69:a4:8e:49:90:
fb:cb:24:db:4e:18:14:03:19:d7:50:a2:06:c9:11:
ca:5d:aa:aa:44:fb:70:1d:df:d4:11:b1:ce:be:b4:
a3:08:e0:63:46:3b:9f:fd:fd:b6:02:0a:27:73:0f:
0f:ea:03:93:3a:cc:4e:50:42:13:2e:05:b4:f4:a9:
08:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A5:20:0F:C3:E0:55:4C:53:F1:B4:1A:0D:6B:7F:31:88:19:65:69
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/eaUgD8PgVUxT8bQaDWt_MYgZZWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.37.0/24
192.71.5.0/24
192.71.40.0/23
192.71.97.0/24
192.71.158.0/24
192.121.30.0/24
192.121.101.0/24
192.121.172.0/24
192.121.192.0/24
192.165.65.0/24
192.165.86.0/24
192.176.161.0/24
193.181.0.0/24
193.181.187.0/24
193.183.3.0/24
193.183.68.0/23
193.183.79.0/24
193.183.92.0/23
193.183.104.0/24
193.183.118.0/24
193.234.68.0/23
193.234.220.0/23
193.234.237.0/24
194.14.129.0/24
194.68.56.0/23
194.68.99.0/24
194.68.126.0/24
194.71.83.0/24
194.71.140.0/23
194.71.248.0/21
194.103.50.0/24
194.132.108.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:81:d0:be:4c:64:f4:4e:ca:9b:80:2e:3a:02:ca:84:26:21:
91:6a:70:08:aa:b8:50:71:c6:5e:41:a9:92:1a:ff:33:82:85:
ec:64:c3:a5:e2:e4:1b:73:27:a9:6e:27:bb:f2:88:6c:aa:fc:
ba:92:cd:2d:72:79:56:7c:29:c1:fc:79:d1:4b:ed:1f:f3:3c:
80:c1:b4:7d:0c:07:c4:60:7d:0a:4f:82:a3:74:df:58:21:64:
03:80:90:d7:75:2a:dd:1b:05:0f:2c:b8:25:d1:a3:58:9a:21:
67:55:08:97:35:4e:73:c8:3d:b9:59:ce:e4:b3:a5:b3:dc:bb:
79:08:d3:bb:6f:eb:73:ef:5a:45:bd:8f:fd:4a:06:25:62:75:
f9:1f:55:dc:74:20:14:6e:3d:30:4a:77:04:db:c1:39:7f:58:
92:06:94:85:0f:88:b4:8e:66:8f:29:9c:c6:a2:e1:f0:ad:41:
28:8a:81:2b:92:54:a4:13:ff:b1:dc:d1:9c:9e:c6:1b:e2:28:
e7:2b:3b:a2:b7:d8:0e:9b:06:0e:0c:12:95:27:dc:36:07:10:
41:5a:69:ff:31:00:98:b3:ed:87:8a:8f:7a:fa:45:3b:51:f3:
4e:c2:d2:79:e0:6a:a0:da:55:24:e2:6f:d7:ef:a0:65:ae:32:
9c:d1:da:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org