Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/_ygDuHFZ6Tu5GRRcZBn7biXuviM.roa
File: _ygDuHFZ6Tu5GRRcZBn7biXuviM.roa (raw, json)
Hash identifier: te/0aknPvpAwoLZnrGXZlhGi/HYd9NtQgtzUCKB4d2A=
Subject key identifier: FF:28:03:B8:71:59:E9:3B:B9:19:14:5C:64:19:FB:6E:25:EE:BE:23
Certificate issuer: /CN=f1479b83c520d784445c24828bab633f0d702cf3
Certificate serial: 0D282C7E
Authority key identifier: F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/_ygDuHFZ6Tu5GRRcZBn7biXuviM.roa
Signing time: Thu 17 Feb 2022 21:58:27 +0000
ROA not before: Thu 17 Feb 2022 21:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8399
IP address blocks: 37.97.64.0/19 maxlen: 19
185.24.140.0/22 maxlen: 22
88.213.224.0/19 maxlen: 19
37.97.69.0/24 maxlen: 24
37.97.70.0/24 maxlen: 24
217.181.128.0/17 maxlen: 17
37.97.80.0/23 maxlen: 23
185.6.92.0/22 maxlen: 22
178.255.160.0/21 maxlen: 21
37.97.96.0/20 maxlen: 20
195.135.0.0/17 maxlen: 17
217.74.96.0/20 maxlen: 20
195.135.0.0/18 maxlen: 18
185.65.248.0/22 maxlen: 22
157.143.128.0/17 maxlen: 17
81.93.0.0/19 maxlen: 19
217.181.250.0/23 maxlen: 23
109.235.239.0/24 maxlen: 24
185.32.208.0/22 maxlen: 22
80.251.96.0/20 maxlen: 20
178.157.16.0/20 maxlen: 20
195.135.48.0/24 maxlen: 24
178.157.32.0/20 maxlen: 20
65.39.64.0/19 maxlen: 19
185.8.252.0/22 maxlen: 22
185.42.176.0/22 maxlen: 22
2a0c:600::/29 maxlen: 29
2a02:c440::/29 maxlen: 29
2a02:6e8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220736638 (0xd282c7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1479b83c520d784445c24828bab633f0d702cf3
Validity
Not Before: Feb 17 21:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff2803b87159e93bb919145c6419fb6e25eebe23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b6:c3:ee:ee:43:6a:9d:77:76:77:42:cb:21:
de:52:30:31:cc:a0:41:d7:f4:14:ba:3a:36:cd:30:
08:4a:3d:70:95:5e:b0:1c:bb:97:c5:4e:8c:4b:e0:
96:ff:15:68:88:15:74:7a:60:1e:6e:3c:df:80:12:
08:5a:91:4f:92:ae:a9:60:e8:b2:10:53:d8:07:25:
62:64:a3:4f:dc:bd:4d:02:94:94:e6:51:a7:d8:a2:
2f:cb:f1:10:54:10:a9:52:9d:2a:f2:4c:f7:46:c4:
6b:8e:ff:7f:1d:e2:5c:27:6f:72:31:ee:13:81:93:
da:3b:a3:36:ba:45:1b:1e:a5:9e:ff:19:82:df:b7:
57:82:a0:8c:95:30:e6:96:05:49:a0:ae:86:3c:ba:
e2:ff:88:b1:58:68:5c:3e:1a:c8:50:f3:27:4b:d0:
a5:e0:cf:72:a5:cd:d2:e4:77:94:ac:2e:ab:da:53:
95:c0:d5:29:cc:7f:16:0a:b2:4d:5a:88:c1:94:e1:
04:42:86:b7:ab:6f:1d:0b:46:5b:77:27:71:29:aa:
7f:80:2c:10:e8:0c:fd:d1:65:ce:7c:03:b3:70:b6:
a6:86:5f:a7:af:71:48:cc:b2:3a:7b:16:4e:37:8f:
f4:7b:80:7b:c2:04:49:56:e2:14:00:7b:fd:9d:bd:
00:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:28:03:B8:71:59:E9:3B:B9:19:14:5C:64:19:FB:6E:25:EE:BE:23
X509v3 Authority Key Identifier:
keyid:F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/_ygDuHFZ6Tu5GRRcZBn7biXuviM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/8Uebg8Ug14REXCSCi6tjPw1wLPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.64.0-37.97.111.255
65.39.64.0/19
80.251.96.0/20
81.93.0.0/19
88.213.224.0/19
109.235.239.0/24
157.143.128.0/17
178.157.16.0-178.157.47.255
178.255.160.0/21
185.6.92.0/22
185.8.252.0/22
185.24.140.0/22
185.32.208.0/22
185.42.176.0/22
185.65.248.0/22
195.135.0.0/17
217.74.96.0/20
217.181.128.0/17
IPv6:
2a02:6e8::/32
2a02:c440::/29
2a0c:600::/29
Signature Algorithm: sha256WithRSAEncryption
2b:13:50:2a:61:f1:c7:82:f4:2c:c6:4a:bc:69:9a:ef:d2:5e:
ff:b2:54:78:51:48:51:d1:e4:d3:f5:48:4f:5a:13:ac:5c:42:
27:8c:83:8f:f3:97:fe:f4:f6:e7:b7:bf:a7:62:22:6f:47:b3:
de:71:82:05:5d:1c:6a:4c:52:7f:f1:87:6d:19:bf:33:79:38:
f9:1b:1d:81:8f:7b:bf:6c:75:ad:06:0d:fe:70:c2:b1:70:7e:
a9:ae:a5:b3:d7:36:ce:eb:0d:14:99:9e:9c:b5:75:56:e7:b5:
e2:b3:6a:e0:43:cb:05:30:b2:92:72:48:d3:35:cf:2e:42:f5:
9b:8e:d3:1b:9c:3f:41:f4:fe:c8:2c:54:a0:20:0a:19:41:cb:
8c:44:4e:7b:12:2a:e7:9f:d5:45:28:ce:e7:34:98:1c:bb:15:
a8:74:29:81:96:9e:a6:58:0c:8c:00:8a:05:a7:88:74:e9:0e:
fb:5e:07:39:46:d8:5f:f7:a2:7f:be:a3:f4:d2:0f:cd:d2:52:
3d:06:36:1b:be:28:a9:50:f0:20:95:e9:04:88:b8:fd:e9:21:
a6:74:f3:3a:8f:27:c3:63:cb:06:e8:fb:23:25:b9:0d:ea:c1:
76:e1:a2:eb:a8:cf:61:96:09:9a:2c:43:0d:ea:4f:0e:f8:f3:
87:0f:7d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net