Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/1-L0GPGgT0tG_rbKEgqVZl1XUOn8.roa
File: 1-L0GPGgT0tG_rbKEgqVZl1XUOn8.roa (raw, json)
Hash identifier: e707GRMb8YEeBM8NAqbLnWCi3f3CVEY52ZufpJJxBy4=
Subject key identifier: F8:BD:06:3C:68:13:D2:D1:BF:AD:B2:84:82:A5:59:97:55:D4:3A:7F
Certificate issuer: /CN=929352a8d2dd70c91ffcec8e323fe69f1e9a4139
Certificate serial: 17EB5047
Authority key identifier: 92:93:52:A8:D2:DD:70:C9:1F:FC:EC:8E:32:3F:E6:9F:1E:9A:41:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpNSqNLdcMkf_OyOMj_mnx6aQTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/1-L0GPGgT0tG_rbKEgqVZl1XUOn8.roa
Signing time: Sat 01 Jan 2022 09:53:15 +0000
ROA not before: Sat 01 Jan 2022 09:53:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29208
IP address blocks: 213.191.96.0/19 maxlen: 19
62.4.112.0/20 maxlen: 20
212.80.64.0/19 maxlen: 19
88.208.64.0/18 maxlen: 18
88.146.0.0/17 maxlen: 17
195.250.128.0/19 maxlen: 19
89.235.0.0/18 maxlen: 18
212.24.128.0/19 maxlen: 19
62.4.96.0/21 maxlen: 21
62.4.104.0/22 maxlen: 22
195.122.192.0/19 maxlen: 19
83.148.0.0/18 maxlen: 18
109.235.176.0/22 maxlen: 22
95.80.192.0/18 maxlen: 18
213.175.32.0/19 maxlen: 19
194.213.224.0/19 maxlen: 19
213.151.64.0/19 maxlen: 19
185.24.236.0/22 maxlen: 22
195.250.154.0/24 maxlen: 24
62.44.0.0/19 maxlen: 19
82.113.32.0/19 maxlen: 19
82.119.240.0/20 maxlen: 20
212.20.96.0/19 maxlen: 19
82.100.0.0/18 maxlen: 18
195.128.192.0/19 maxlen: 19
212.27.192.0/19 maxlen: 19
62.177.64.0/18 maxlen: 18
2001:4de8::/32 maxlen: 48
2001:1508::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401297479 (0x17eb5047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=929352a8d2dd70c91ffcec8e323fe69f1e9a4139
Validity
Not Before: Jan 1 09:53:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8bd063c6813d2d1bfadb28482a5599755d43a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fd:0c:24:1c:d3:04:ae:04:49:89:69:cb:5d:
0c:f7:62:ea:c8:42:ae:ec:48:79:8e:68:0c:16:3a:
73:7b:07:10:4f:63:ad:09:4e:6d:94:f7:ac:9d:67:
90:26:1f:b6:15:ca:79:bf:a0:aa:19:fb:de:e7:71:
43:b1:a6:ba:64:c9:84:4c:d1:ec:dd:d7:32:ee:19:
a1:b9:e7:dd:a2:93:77:2f:98:3a:d9:ff:1d:02:cb:
bf:47:ab:46:cb:bc:f3:14:b2:00:6a:f7:46:f6:af:
0e:d7:45:97:3c:35:6f:f1:70:a0:d8:a8:c0:2f:66:
02:00:ac:4a:6d:68:f5:23:3b:14:13:70:a0:30:a9:
5f:3b:95:5b:60:72:85:e7:da:de:a9:49:b7:75:c6:
03:ab:e3:db:0d:d7:3c:62:31:b2:1d:e8:20:2d:9c:
b7:a6:39:f5:1d:b6:29:24:80:da:f8:21:08:11:ba:
a2:b8:08:2f:ad:be:d8:27:ef:eb:30:4e:be:1b:93:
d7:5a:64:c5:21:9f:0c:24:b7:64:81:bf:fa:2e:75:
81:70:82:d1:63:5e:e6:10:03:2b:2c:f8:ca:81:fd:
e1:e2:59:88:55:ba:2d:9e:5a:1e:52:5b:fd:e5:ba:
cc:dd:81:0f:0b:2f:4e:68:c8:55:6a:56:f4:e5:58:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BD:06:3C:68:13:D2:D1:BF:AD:B2:84:82:A5:59:97:55:D4:3A:7F
X509v3 Authority Key Identifier:
keyid:92:93:52:A8:D2:DD:70:C9:1F:FC:EC:8E:32:3F:E6:9F:1E:9A:41:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpNSqNLdcMkf_OyOMj_mnx6aQTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/1-L0GPGgT0tG_rbKEgqVZl1XUOn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7b6edc-ad23-4d73-ab56-0a1a35897f10/1/kpNSqNLdcMkf_OyOMj_mnx6aQTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.4.96.0-62.4.107.255
62.4.112.0/20
62.44.0.0/19
62.177.64.0/18
82.100.0.0/18
82.113.32.0/19
82.119.240.0/20
83.148.0.0/18
88.146.0.0/17
88.208.64.0/18
89.235.0.0/18
95.80.192.0/18
109.235.176.0/22
185.24.236.0/22
194.213.224.0/19
195.122.192.0/19
195.128.192.0/19
195.250.128.0/19
212.20.96.0/19
212.24.128.0/19
212.27.192.0/19
212.80.64.0/19
213.151.64.0/19
213.175.32.0/19
213.191.96.0/19
IPv6:
2001:1508::/32
2001:4de8::/32
Signature Algorithm: sha256WithRSAEncryption
cf:49:28:a9:01:e3:a7:67:af:b2:af:83:7d:39:c4:8a:d7:a3:
08:91:59:ea:8c:c6:25:01:ef:aa:69:35:36:2c:f2:b7:5d:c6:
7c:65:4b:50:10:87:13:64:1e:aa:49:35:1d:6f:0f:ae:d4:62:
d7:e0:c1:e0:9b:ef:6d:cd:dd:fd:bf:5b:a0:93:a3:19:c8:73:
f5:6d:b7:f2:ee:98:44:52:cf:a0:0a:f3:72:99:b2:cd:4e:cc:
cd:19:f5:98:5b:d2:66:11:55:33:58:32:89:ba:ef:f8:96:07:
33:c4:13:1f:68:4f:ad:4b:ae:7b:d0:f6:16:ae:bc:8d:41:1d:
63:ab:0b:c4:ac:ca:23:08:48:3d:03:69:98:20:38:45:82:f1:
8c:40:e7:e6:bf:6c:29:7f:0a:48:83:ff:20:de:45:fb:20:12:
04:ba:9d:2c:1a:fe:5b:12:11:33:25:73:b0:44:64:bf:e0:79:
df:05:a9:5e:0d:c6:d0:a3:bb:ea:40:ef:19:45:36:c1:98:a3:
cc:bb:31:c1:e6:c3:8c:83:1e:41:91:bd:cf:44:26:56:0a:90:
19:28:f9:b5:78:93:7c:00:e0:50:3d:b6:b6:a1:54:97:0c:36:
9a:66:91:4d:d7:16:59:f5:d0:aa:5f:0c:47:a0:f3:86:8b:1f:
67:5f:6a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:47 2023 by rpki-client on console-ams.rpki-client.org