Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/O7MwhM--U2nzjgOviHA1Gf2vkHU.roa
File: O7MwhM--U2nzjgOviHA1Gf2vkHU.roa (raw, json)
Hash identifier: o2R1eajxwrEvzkAMFCBFgKaL8w+oOeylYPl1koE4z7g=
Subject key identifier: 3B:B3:30:84:CF:BE:53:69:F3:8E:03:AF:88:70:35:19:FD:AF:90:75
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 08F184CE
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/O7MwhM--U2nzjgOviHA1Gf2vkHU.roa
Signing time: Thu 31 Mar 2022 07:08:28 +0000
ROA not before: Thu 31 Mar 2022 07:08:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 87.239.254.0/24 maxlen: 32
89.44.205.0/24 maxlen: 32
91.228.216.0/24 maxlen: 24
185.36.254.0/24 maxlen: 32
185.217.64.0/22 maxlen: 22
185.166.84.0/24 maxlen: 32
86.105.183.0/24 maxlen: 32
185.188.61.0/24 maxlen: 24
185.188.62.0/24 maxlen: 24
185.188.63.0/24 maxlen: 24
94.46.206.0/24 maxlen: 32
185.152.248.0/22 maxlen: 32
5.154.174.0/24 maxlen: 24
80.246.30.0/24 maxlen: 32
185.153.151.0/24 maxlen: 32
188.119.154.0/24 maxlen: 32
185.160.44.0/22 maxlen: 32
185.96.162.0/24 maxlen: 32
77.246.152.0/22 maxlen: 22
185.152.36.0/22 maxlen: 32
89.35.249.0/24 maxlen: 32
185.108.104.0/24 maxlen: 32
185.108.105.0/24 maxlen: 32
2a06:4a00::/29 maxlen: 32
2a05:28c0::/29 maxlen: 32
2a06:5700::/29 maxlen: 32
2a01:4740::/32 maxlen: 32
2a06:46c0::/29 maxlen: 32
2a06:5000::/29 maxlen: 32
2a05:f4c0::/29 maxlen: 29
2a06:3040::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150045902 (0x8f184ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Mar 31 07:08:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bb33084cfbe5369f38e03af88703519fdaf9075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ad:3e:f6:74:77:a9:98:c3:42:d7:41:0b:e4:
0e:05:ad:a8:1c:c1:ab:86:d0:49:b6:77:91:f1:96:
ca:7f:a0:2f:05:33:df:56:04:14:8c:d1:ce:64:3b:
3d:10:84:7c:ff:29:23:ec:58:65:71:83:4b:f2:88:
f9:76:02:9b:bd:bc:93:eb:88:d4:87:1c:62:ab:7e:
48:71:6e:0e:2d:52:6d:39:c4:ed:cc:73:09:35:65:
65:57:80:61:85:0c:d7:82:71:e2:43:19:cd:37:46:
8e:24:d2:f2:db:f1:15:33:ea:fd:f9:82:20:c6:9e:
42:b8:e4:4b:28:b8:a1:aa:bf:28:96:39:d5:e4:00:
56:ed:ee:b2:d9:88:42:06:f1:92:8c:8d:f8:b7:c1:
4b:09:a7:81:87:3b:2a:8f:df:6e:96:44:e9:18:0f:
8e:f3:1f:4d:36:26:07:a6:d2:d3:1d:2b:9f:03:4f:
0f:bc:e5:76:f8:56:77:71:09:b7:9f:67:71:f7:69:
1f:2c:dd:b3:96:b7:a0:0a:b8:af:5d:58:2c:3d:af:
d2:48:c3:3f:4f:f0:ef:d7:22:d6:e8:02:c0:67:6e:
dc:68:af:f8:e1:cf:ea:f9:9a:bc:d7:aa:6c:75:42:
7f:be:06:b2:64:66:59:c8:b5:ff:e4:b3:eb:8e:f0:
84:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B3:30:84:CF:BE:53:69:F3:8E:03:AF:88:70:35:19:FD:AF:90:75
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/O7MwhM--U2nzjgOviHA1Gf2vkHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.174.0/24
77.246.152.0/22
80.246.30.0/24
86.105.183.0/24
87.239.254.0/24
89.35.249.0/24
89.44.205.0/24
91.228.216.0/24
94.46.206.0/24
185.36.254.0/24
185.96.162.0/24
185.108.104.0/23
185.152.36.0/22
185.152.248.0/22
185.153.151.0/24
185.160.44.0/22
185.166.84.0/24
185.188.61.0-185.188.63.255
185.217.64.0/22
188.119.154.0/24
IPv6:
2a01:4740::/32
2a05:28c0::/29
2a05:f4c0::/29
2a06:3040::/29
2a06:46c0::/29
2a06:4a00::/29
2a06:5000::/29
2a06:5700::/29
Signature Algorithm: sha256WithRSAEncryption
1a:cb:6e:7d:6d:6f:1b:fe:ea:d0:f8:14:bb:fc:7c:e7:ce:09:
eb:c1:dc:0a:ad:ff:82:80:05:4e:5e:ca:c7:03:82:1a:53:c1:
67:02:ad:f8:1b:75:4e:1a:72:42:a9:6c:46:bc:e2:17:cd:b2:
25:2a:49:67:e4:92:67:7d:65:4c:b8:63:69:f1:05:49:50:af:
79:63:de:35:cf:17:63:8b:b3:ee:3d:d7:f1:b4:03:93:97:83:
ae:53:4e:d3:51:24:61:ca:ca:c5:9f:38:e8:ef:e5:c4:13:55:
31:d0:ef:1b:e9:04:00:58:78:31:a1:38:db:c1:b2:c3:48:9b:
91:53:64:0b:41:26:5d:65:a6:68:3f:ab:ae:1f:26:da:15:3f:
5c:59:a6:16:85:a0:25:25:04:2e:2e:8b:45:7c:fa:6d:3a:7f:
02:6c:df:49:a7:ca:48:c2:2a:9e:b0:72:59:78:d5:38:2a:9f:
3c:75:84:b6:8b:0c:b1:75:82:6e:7a:ea:68:86:9a:95:0d:fb:
6f:81:af:5f:40:ff:49:5f:7c:d8:ff:aa:04:46:a2:c6:ab:c1:
6d:8c:90:78:f8:9b:af:e0:c5:97:e4:90:df:f5:2a:85:4d:c0:
d6:56:9b:4e:da:8e:ca:14:49:e4:06:55:e4:86:6b:35:2a:6e:
3d:95:d5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:28 2023 by rpki-client on console-fra.rpki-client.org