Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/OI7oRB-nhjvBtwiB1N1ADFsnk4k.roa
File: OI7oRB-nhjvBtwiB1N1ADFsnk4k.roa (raw, json)
Hash identifier: 9ulVjelyX0alZQOxohpFL0CTFfAVJrFqt/yVpN8xVcE=
Subject key identifier: 38:8E:E8:44:1F:A7:86:3B:C1:B7:08:81:D4:DD:40:0C:5B:27:93:89
Certificate issuer: /CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Certificate serial: 01847AED9EADCF131596AE36BAF617AF7729
Authority key identifier: DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/OI7oRB-nhjvBtwiB1N1ADFsnk4k.roa
Signing time: Tue 15 Nov 2022 10:55:03 +0000
ROA not before: Tue 15 Nov 2022 10:55:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49273
IP address blocks: 188.113.227.0/24 maxlen: 24
188.113.230.0/24 maxlen: 24
188.113.231.0/24 maxlen: 24
188.113.228.0/24 maxlen: 24
188.113.229.0/24 maxlen: 24
188.113.233.0/24 maxlen: 24
188.113.232.0/24 maxlen: 24
188.113.234.0/24 maxlen: 24
188.113.237.0/24 maxlen: 24
188.113.238.0/24 maxlen: 24
188.113.235.0/24 maxlen: 24
188.113.236.0/24 maxlen: 24
188.113.240.0/24 maxlen: 24
188.113.239.0/24 maxlen: 24
188.113.241.0/24 maxlen: 24
188.113.247.0/24 maxlen: 24
188.113.248.0/24 maxlen: 24
188.113.192.0/24 maxlen: 24
188.113.195.0/24 maxlen: 24
188.113.196.0/24 maxlen: 24
188.113.193.0/24 maxlen: 24
188.113.194.0/24 maxlen: 24
188.113.199.0/24 maxlen: 24
188.113.197.0/24 maxlen: 24
188.113.198.0/24 maxlen: 24
188.113.202.0/24 maxlen: 24
188.113.203.0/24 maxlen: 24
188.113.200.0/24 maxlen: 24
188.113.201.0/24 maxlen: 24
188.113.206.0/24 maxlen: 24
188.113.204.0/24 maxlen: 24
188.113.205.0/24 maxlen: 24
188.113.209.0/24 maxlen: 24
188.113.210.0/24 maxlen: 24
188.113.207.0/24 maxlen: 24
188.113.208.0/24 maxlen: 24
188.113.213.0/24 maxlen: 24
188.113.211.0/24 maxlen: 24
188.113.212.0/24 maxlen: 24
188.113.218.0/24 maxlen: 24
188.113.219.0/24 maxlen: 24
188.113.216.0/24 maxlen: 24
188.113.217.0/24 maxlen: 24
188.113.214.0/24 maxlen: 24
188.113.215.0/24 maxlen: 24
188.113.224.0/24 maxlen: 24
188.113.221.0/24 maxlen: 24
188.113.226.0/24 maxlen: 24
188.113.225.0/24 maxlen: 24
185.208.179.0/24 maxlen: 24
2a02:f7c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:ed:9e:ad:cf:13:15:96:ae:36:ba:f6:17:af:77:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Validity
Not Before: Nov 15 10:55:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=388ee8441fa7863bc1b70881d4dd400c5b279389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4f:93:9f:40:47:f1:18:07:e2:97:d9:ee:32:
cc:1a:e1:93:fc:64:a9:79:d7:e1:94:7f:d9:7a:b9:
61:96:bc:32:86:d3:91:1b:c8:61:6c:e1:8d:4e:ab:
3d:5c:45:18:50:19:43:4f:27:25:03:b5:8f:88:94:
55:f8:47:b6:42:00:10:79:a8:e5:a0:9b:29:08:0d:
8d:dd:b8:fa:66:34:ed:63:44:0c:d5:e0:15:67:34:
aa:d8:ab:80:49:cc:92:82:7f:ac:83:e0:f2:e0:d6:
3d:42:c3:45:16:0f:77:b9:3f:25:bd:ca:69:b9:17:
f7:96:5a:61:58:de:f5:f5:0d:08:47:d3:a3:cf:18:
4f:cd:8d:e4:1b:4d:8e:fa:01:56:9c:d9:99:c6:58:
31:fb:dc:d1:65:e4:84:fa:7f:18:77:ef:bd:f2:96:
3a:38:0d:0d:8b:06:2a:66:d0:b4:f3:62:39:5a:fb:
89:f3:88:90:98:b1:11:69:33:3b:2c:bc:0f:29:3a:
4b:de:23:ed:3c:43:e7:1d:27:9a:ff:7d:03:fa:16:
2a:85:57:b6:27:a9:21:fd:92:50:8b:d6:09:65:f1:
a0:0c:93:fb:e8:00:4a:99:a9:f6:e4:46:e8:9d:21:
69:3f:20:77:76:2d:f0:f2:f3:cd:80:70:92:70:99:
19:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:8E:E8:44:1F:A7:86:3B:C1:B7:08:81:D4:DD:40:0C:5B:27:93:89
X509v3 Authority Key Identifier:
keyid:DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/OI7oRB-nhjvBtwiB1N1ADFsnk4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/2mUl3kqm0Moa572O4eNb_SaWSbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.179.0/24
188.113.192.0-188.113.219.255
188.113.221.0/24
188.113.224.0-188.113.241.255
188.113.247.0-188.113.248.255
IPv6:
2a02:f7c0::/32
Signature Algorithm: sha256WithRSAEncryption
d3:69:51:5e:8c:b3:5d:8a:b7:cc:56:7b:80:7a:4a:99:f2:07:
d7:69:1e:25:31:f2:6a:f7:c3:00:52:b5:c2:42:1b:f6:7c:3e:
75:14:32:76:02:24:31:7f:d3:9d:33:99:28:6e:3f:1c:63:17:
ac:9b:a6:5f:f2:81:bb:bd:a6:14:0b:c6:8d:50:db:93:24:65:
16:b8:d8:08:58:d9:c2:71:b1:02:b5:71:48:38:86:15:c4:42:
ac:7c:67:02:26:29:57:1b:50:a9:14:7b:24:cc:d8:3a:d9:4c:
ef:72:27:dc:b0:43:be:a0:86:59:c6:ed:fe:83:32:0f:c6:f5:
a3:66:f7:0a:0b:d9:17:fc:64:d5:89:4c:5f:a7:35:43:21:1c:
4e:67:75:70:6b:eb:0f:f7:b1:91:0c:88:40:d5:5b:43:1f:a6:
fe:72:6c:f6:91:36:c5:52:eb:e5:c4:09:38:d7:0c:f6:14:6d:
5e:30:97:64:d9:b2:3e:22:c2:16:a1:47:8c:36:b0:0a:18:0f:
72:21:ce:89:ea:16:4f:03:f0:60:5d:48:0a:57:71:e7:5c:6a:
4c:47:10:81:16:3e:c0:e5:e5:22:f4:37:3e:ad:6f:fe:52:68:
2b:cb:6e:28:8e:d4:e4:de:8e:18:85:e3:43:9c:f1:e2:66:f6:
53:b5:b6:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:22 2025 by rpki-client