Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/7BULg8l3Zyi6tcFhz0GIvYDG5g8.roa
File: 7BULg8l3Zyi6tcFhz0GIvYDG5g8.roa (raw, json)
Hash identifier: z7InwOCTIsYFEyS4M6JOk9CkfuVQYOJ8mJS9JUqxoh4=
Subject key identifier: EC:15:0B:83:C9:77:67:28:BA:B5:C1:61:CF:41:88:BD:80:C6:E6:0F
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 187E31F0
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/7BULg8l3Zyi6tcFhz0GIvYDG5g8.roa
Signing time: Fri 11 Mar 2022 14:24:45 +0000
ROA not before: Fri 11 Mar 2022 14:24:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34187
IP address blocks: 195.245.118.0/23 maxlen: 23
195.245.118.0/24 maxlen: 24
78.26.128.0/19 maxlen: 19
78.26.128.0/18 maxlen: 18
78.26.192.0/19 maxlen: 19
78.26.192.0/18 maxlen: 18
78.26.224.0/19 maxlen: 19
195.245.119.0/24 maxlen: 24
185.70.110.0/23 maxlen: 23
185.70.108.0/23 maxlen: 23
185.70.108.0/22 maxlen: 22
78.26.160.0/19 maxlen: 19
2a03:1240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410923504 (0x187e31f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: Mar 11 14:24:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec150b83c9776728bab5c161cf4188bd80c6e60f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fd:9c:ea:9a:aa:a1:1f:10:ec:6d:84:27:54:
43:d9:69:79:49:4f:d3:c9:a4:28:38:ad:45:2c:8c:
e4:a2:7c:3d:fa:10:b1:18:e8:55:05:52:73:06:94:
47:d2:f1:07:39:58:ce:88:90:52:4b:6e:17:7a:77:
2c:91:59:c5:e1:a4:de:8b:91:a6:75:d6:68:82:90:
cd:75:26:d8:88:b7:df:8b:ad:0d:d2:31:84:20:08:
7f:60:8f:18:e8:b6:a8:b8:99:96:d2:03:0d:5d:a0:
62:ef:d0:35:13:3d:3c:22:ef:2c:5c:70:75:a1:44:
0a:40:7f:02:fd:94:95:4e:9a:ed:ac:3c:33:dc:e5:
4c:6b:7c:3a:bb:66:f3:57:5b:51:d5:d7:ab:e4:2e:
bc:2f:f5:10:07:3c:dd:78:d0:3c:54:40:e9:4d:3f:
07:53:a4:4c:39:d3:8e:f5:8e:4e:26:a3:d5:1d:b2:
6e:7e:29:d1:4d:3b:c7:b4:fc:5a:56:ab:d2:cf:01:
02:56:d3:04:19:e5:78:8d:37:87:b8:ff:22:64:26:
cc:fb:1e:69:ef:1b:4b:2b:2d:da:7b:b9:c5:63:e9:
38:30:b3:e5:a0:d0:2d:a1:a2:7d:5d:ab:f7:a7:86:
cd:7c:7b:0d:d9:37:c8:98:8f:55:79:db:b7:6b:c6:
06:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:15:0B:83:C9:77:67:28:BA:B5:C1:61:CF:41:88:BD:80:C6:E6:0F
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/7BULg8l3Zyi6tcFhz0GIvYDG5g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.26.128.0/17
185.70.108.0/22
195.245.118.0/23
IPv6:
2a03:1240::/48
Signature Algorithm: sha256WithRSAEncryption
32:25:07:41:0c:9f:16:b7:3d:c0:c2:22:00:42:a9:44:d9:d5:
dd:fc:7a:9e:b0:7a:51:69:8c:9e:8a:26:00:29:5f:f5:18:5b:
11:9b:88:1c:00:66:85:22:72:7f:bc:de:9b:4f:1b:ad:32:cf:
b4:0b:75:f8:8f:7d:b5:b6:c2:a6:02:1f:aa:c1:31:7d:e0:54:
ac:57:6b:34:34:34:2c:6c:04:97:34:bd:ee:c5:96:2c:a4:c2:
ff:ef:90:1c:67:61:21:1b:75:8d:a0:88:82:91:b2:26:88:11:
2e:21:92:b7:ea:99:fa:2e:00:43:95:cb:a1:5f:f0:7f:0f:cb:
27:a8:86:4b:b7:eb:b7:6b:08:be:05:d1:88:26:b5:35:6d:83:
8f:2f:fc:9e:b2:c2:a3:8d:d1:0a:92:9d:5b:4a:2b:cc:88:bf:
fa:e9:83:fc:7d:6d:a1:a8:9c:15:85:7c:32:19:16:82:ee:9e:
c5:f4:29:8f:5b:3f:9c:c6:81:da:7a:05:1b:d1:87:b6:7a:de:
08:52:1e:5d:4d:b6:2f:a8:77:5a:f4:98:10:af:48:67:67:f3:
7f:b8:bf:f3:e3:c2:78:47:a0:d5:1a:35:f2:5a:3c:74:f3:4e:
f2:eb:37:25:28:74:6d:7f:7d:90:74:9a:5c:e2:59:c4:fd:02:
5f:ab:a1:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net