Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/x1plICitVsgVC8KU0U21Gn-L-_E.roa
File: x1plICitVsgVC8KU0U21Gn-L-_E.roa (raw, json)
Hash identifier: Wue56Ux0XNg9fIfnKQYf+VyiWT3ieFMFzTdE4Hqvdok=
Subject key identifier: C7:5A:65:20:28:AD:56:C8:15:0B:C2:94:D1:4D:B5:1A:7F:8B:FB:F1
Certificate issuer: /CN=999df7dc0ed518f1ec69974cf98cecaada1a8680
Certificate serial: 0C8853B4
Authority key identifier: 99:9D:F7:DC:0E:D5:18:F1:EC:69:97:4C:F9:8C:EC:AA:DA:1A:86:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZ333A7VGPHsaZdM-YzsqtoahoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/x1plICitVsgVC8KU0U21Gn-L-_E.roa
Signing time: Sat 01 Jan 2022 13:06:35 +0000
ROA not before: Sat 01 Jan 2022 13:06:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6848
IP address blocks: 195.162.192.0/19 maxlen: 19
78.29.192.0/18 maxlen: 18
213.132.128.0/19 maxlen: 19
81.82.0.0/15 maxlen: 15
195.16.0.0/19 maxlen: 19
46.253.160.0/20 maxlen: 20
141.134.0.0/15 maxlen: 15
62.205.64.0/18 maxlen: 18
185.30.52.0/22 maxlen: 22
178.116.0.0/14 maxlen: 14
78.20.0.0/14 maxlen: 14
5.23.128.0/17 maxlen: 17
188.95.146.0/23 maxlen: 23
212.88.224.0/19 maxlen: 19
85.28.64.0/18 maxlen: 18
84.192.0.0/13 maxlen: 13
83.217.128.0/19 maxlen: 19
213.214.32.0/19 maxlen: 19
213.251.64.0/18 maxlen: 18
213.224.0.0/16 maxlen: 16
217.168.120.0/21 maxlen: 21
212.123.0.0/19 maxlen: 19
82.143.64.0/18 maxlen: 18
94.224.0.0/14 maxlen: 14
213.118.0.0/15 maxlen: 15
81.164.0.0/15 maxlen: 15
195.130.128.0/19 maxlen: 19
188.44.64.0/19 maxlen: 19
185.248.40.0/22 maxlen: 22
2a02:1800::/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210260916 (0xc8853b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999df7dc0ed518f1ec69974cf98cecaada1a8680
Validity
Not Before: Jan 1 13:06:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c75a652028ad56c8150bc294d14db51a7f8bfbf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cf:9a:cf:8a:c7:e5:aa:d1:ce:a5:4e:e1:2d:
a5:6a:85:9c:1b:a2:91:07:0f:9b:d4:4c:22:65:0a:
74:d4:36:54:17:54:74:fe:b9:d1:6a:d0:1d:f6:a6:
96:eb:c7:9d:13:fb:8c:47:c7:24:56:82:36:82:ab:
01:dc:05:b9:83:ca:ae:47:7a:27:c6:bb:12:ab:b3:
e7:25:60:7d:94:d4:f1:40:a5:6c:d4:5a:e8:35:0e:
0d:ff:46:f4:7e:3e:14:35:64:b0:eb:00:45:91:57:
a8:c9:24:ba:48:7e:cc:30:da:9e:e8:b0:e9:7c:ee:
16:33:8a:a2:70:61:ad:0a:b1:fe:cf:63:1f:e8:ab:
26:2f:cb:d2:58:39:13:f2:38:b6:6e:00:ce:da:93:
3e:a2:3f:56:39:1c:4e:23:7e:a9:14:35:7e:3d:82:
7f:e7:e4:22:2c:10:3d:d2:23:2e:a9:61:74:72:03:
8c:63:ed:61:99:89:22:5c:3f:f6:e1:2b:d7:e4:78:
a3:db:01:fd:95:9b:51:99:99:20:ad:f3:f8:a9:e7:
dd:62:41:b6:8d:3b:5a:7f:5a:60:a9:e7:7b:4f:b1:
ef:14:9b:ea:64:7f:ed:37:d8:ae:49:79:c7:43:74:
c3:28:a0:23:f6:bc:94:50:06:53:af:54:83:61:35:
c0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5A:65:20:28:AD:56:C8:15:0B:C2:94:D1:4D:B5:1A:7F:8B:FB:F1
X509v3 Authority Key Identifier:
keyid:99:9D:F7:DC:0E:D5:18:F1:EC:69:97:4C:F9:8C:EC:AA:DA:1A:86:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZ333A7VGPHsaZdM-YzsqtoahoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/x1plICitVsgVC8KU0U21Gn-L-_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ba88f2-215f-4f89-a3af-138b787de3e3/1/mZ333A7VGPHsaZdM-YzsqtoahoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.128.0/17
46.253.160.0/20
62.205.64.0/18
78.20.0.0/14
78.29.192.0/18
81.82.0.0/15
81.164.0.0/15
82.143.64.0/18
83.217.128.0/19
84.192.0.0/13
85.28.64.0/18
94.224.0.0/14
141.134.0.0/15
178.116.0.0/14
185.30.52.0/22
185.248.40.0/22
188.44.64.0/19
188.95.146.0/23
195.16.0.0/19
195.130.128.0/19
195.162.192.0/19
212.88.224.0/19
212.123.0.0/19
213.118.0.0/15
213.132.128.0/19
213.214.32.0/19
213.224.0.0/16
213.251.64.0/18
217.168.120.0/21
IPv6:
2a02:1800::/24
Signature Algorithm: sha256WithRSAEncryption
11:a2:fc:77:a1:b6:49:7b:a5:ed:07:be:48:e3:bf:29:5d:04:
4b:68:9d:d6:30:64:79:70:29:6f:d9:c9:b1:67:04:62:15:65:
e4:1f:4c:20:28:f9:4c:20:31:03:13:7b:43:c1:1b:df:7c:81:
34:e3:d4:f1:d4:4c:08:1a:97:08:9c:62:22:65:f3:b7:74:90:
01:91:12:85:83:3c:68:df:52:ec:8f:c0:49:a2:69:dc:3f:57:
64:6c:b6:97:0d:1a:7f:d0:1e:52:1d:93:0a:83:c0:b2:c7:b6:
aa:fc:22:06:cc:cb:03:8a:b8:53:ea:ca:8e:f9:3d:77:13:74:
5c:ce:de:f0:74:e5:67:13:15:7d:b9:51:45:3d:33:39:c3:32:
df:d4:7f:fc:eb:18:37:5d:bd:52:3d:aa:fb:ff:60:e9:5d:f3:
33:29:6a:3d:38:85:73:1e:3d:84:39:13:05:2b:3c:77:11:50:
e0:81:fa:18:75:3d:d9:7f:c2:b3:ba:a0:a8:55:69:45:ad:60:
f1:16:4d:6b:2b:f6:cd:6f:6c:89:98:39:2a:e7:fb:30:e0:f4:
e0:42:7f:c5:4c:6a:71:7b:53:53:5c:45:a0:51:84:d7:7a:2e:
cc:f6:bc:fd:64:ea:61:fa:82:0f:1b:6e:82:9b:1f:c3:10:ad:
91:54:9c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:33 2024 by rpki-client on console-fra.rpki-client.org