Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/9OsZDcmz9DlWJMGbUNqtPDeQjrY.roa
File: 9OsZDcmz9DlWJMGbUNqtPDeQjrY.roa (raw, json)
Hash identifier: 0+Cyg+L+GqlUGaRM1SS2RM3/mlcpRk96dnpxzJAa7os=
Subject key identifier: F4:EB:19:0D:C9:B3:F4:39:56:24:C1:9B:50:DA:AD:3C:37:90:8E:B6
Certificate issuer: /CN=7d61b8378e8f368ae4998d51c3a9ace64148d6cd
Certificate serial: 018240701416A522C6D75784A5E393A225C9
Authority key identifier: 7D:61:B8:37:8E:8F:36:8A:E4:99:8D:51:C3:A9:AC:E6:41:48:D6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWG4N46PNorkmY1Rw6ms5kFI1s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/9OsZDcmz9DlWJMGbUNqtPDeQjrY.roa
Signing time: Wed 27 Jul 2022 16:14:23 +0000
ROA not before: Wed 27 Jul 2022 16:14:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35790
IP address blocks: 213.204.218.0/24 maxlen: 24
213.204.216.0/23 maxlen: 23
213.204.215.0/24 maxlen: 24
213.204.219.0/24 maxlen: 24
213.204.224.0/20 maxlen: 20
213.204.222.0/24 maxlen: 24
213.204.221.0/24 maxlen: 24
213.204.232.0/24 maxlen: 24
213.204.237.0/24 maxlen: 24
213.204.244.0/24 maxlen: 24
213.204.240.0/21 maxlen: 21
213.204.252.0/22 maxlen: 22
213.204.248.0/22 maxlen: 23
213.204.247.0/24 maxlen: 24
185.31.140.0/22 maxlen: 22
185.57.84.0/22 maxlen: 22
213.204.192.0/23 maxlen: 23
213.204.192.0/20 maxlen: 20
213.204.198.0/24 maxlen: 24
213.204.208.0/20 maxlen: 20
185.105.244.0/22 maxlen: 22
185.217.224.0/22 maxlen: 22
2a0b:cdc0::/29 maxlen: 29
2a0b:cdc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:70:14:16:a5:22:c6:d7:57:84:a5:e3:93:a2:25:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d61b8378e8f368ae4998d51c3a9ace64148d6cd
Validity
Not Before: Jul 27 16:14:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4eb190dc9b3f4395624c19b50daad3c37908eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f9:eb:95:66:1d:1e:0a:f0:a6:03:6d:8f:98:
2c:8a:be:9b:72:97:88:00:f4:b5:16:c2:a4:2e:aa:
29:b0:3b:f5:1d:9c:35:7d:5a:2a:80:04:fd:77:a3:
07:fe:9a:10:9a:a4:46:cc:fc:fd:76:29:42:4c:68:
43:95:89:56:3c:5c:39:ae:68:ec:ae:7f:99:9b:af:
da:d0:18:3f:0f:22:33:7d:af:2f:36:4b:56:1c:c9:
df:d4:81:9d:ae:5a:89:ab:82:0a:13:2f:59:0a:09:
32:93:60:93:76:87:72:8f:48:af:a1:97:2e:ff:33:
02:db:41:97:28:e3:19:96:d6:1c:11:46:a3:07:3e:
ea:45:7f:79:61:c2:bc:e9:d9:c2:c2:8c:f1:3f:fd:
e6:bd:f7:46:20:24:ad:30:1c:bc:d7:bb:66:14:b9:
51:bd:2f:c8:c6:de:cc:c7:80:d2:3e:f7:5a:23:de:
4e:bb:44:af:d8:a8:eb:e4:46:50:ac:51:90:20:c4:
e1:b5:9c:90:c5:7a:12:9a:52:e5:17:71:c0:e4:88:
5f:50:cd:65:db:f7:cb:a6:2d:05:60:57:a6:c9:06:
fe:cc:8d:a7:8e:9b:85:70:6f:23:69:6c:28:3b:43:
47:22:94:4a:01:45:b9:e8:6f:62:71:42:0e:63:7b:
16:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EB:19:0D:C9:B3:F4:39:56:24:C1:9B:50:DA:AD:3C:37:90:8E:B6
X509v3 Authority Key Identifier:
keyid:7D:61:B8:37:8E:8F:36:8A:E4:99:8D:51:C3:A9:AC:E6:41:48:D6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWG4N46PNorkmY1Rw6ms5kFI1s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/9OsZDcmz9DlWJMGbUNqtPDeQjrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ed821b-3452-427a-8e44-d16e4ae61f80/1/fWG4N46PNorkmY1Rw6ms5kFI1s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.140.0/22
185.57.84.0/22
185.105.244.0/22
185.217.224.0/22
213.204.192.0/18
IPv6:
2a0b:cdc0::/29
Signature Algorithm: sha256WithRSAEncryption
4d:31:5b:89:19:66:f5:c9:15:5b:9b:a9:3f:c1:15:46:c0:2d:
5b:5c:30:1d:1f:2d:98:b7:87:12:dd:ac:b2:e4:19:29:4f:19:
54:d9:ba:81:9e:81:e9:3e:41:f1:cb:62:ac:ec:e8:33:df:7a:
23:86:43:16:f9:2c:ab:98:ad:a8:57:e9:22:a1:3a:f5:32:82:
5b:35:c4:88:8c:40:38:65:31:79:05:a4:dd:89:4f:e8:95:b8:
f4:9c:1c:65:67:77:5b:49:24:9f:7c:75:e9:d0:a8:5d:bc:8d:
51:e9:c6:6e:d9:25:ca:c5:e8:f8:3a:8e:f5:1e:5a:17:ad:65:
76:e8:57:11:59:03:0b:f8:50:fa:ba:82:38:d4:b3:7e:26:0c:
4f:0f:83:82:e8:2f:b8:32:84:55:ba:22:3c:4b:02:3a:11:7d:
df:d2:44:0b:fd:ae:01:01:71:28:15:b0:22:21:83:e3:a3:c2:
4d:ca:e0:cb:97:b2:62:2f:53:ca:8d:bb:95:d3:6d:86:38:db:
f4:14:c7:d2:16:46:d8:fb:44:bf:62:88:6b:3f:a2:55:44:fa:
e4:07:5a:9e:b0:d5:b1:4b:a7:a4:2b:e1:97:f3:ff:64:d1:ce:
fb:25:ed:13:16:6a:dc:26:b6:52:fa:07:d8:2e:89:32:33:af:
83:2f:31:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:15 2023 by rpki-client on console-fra.rpki-client.org