Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/9JRVdtBszpiZmE674-P-VWpeqjg.roa
File: 9JRVdtBszpiZmE674-P-VWpeqjg.roa (raw, json)
Hash identifier: FFqHHcd2/xFakgFdyEolbN0kOjx5gKUEshsqaVzuGkc=
Subject key identifier: F4:94:55:76:D0:6C:CE:98:99:98:4E:BB:E3:E3:FE:55:6A:5E:AA:38
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 359E65A5
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/9JRVdtBszpiZmE674-P-VWpeqjg.roa
Signing time: Sat 01 Jan 2022 08:54:53 +0000
ROA not before: Sat 01 Jan 2022 08:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31376
IP address blocks: 217.119.16.0/20 maxlen: 28
213.108.32.0/21 maxlen: 21
91.215.252.0/23 maxlen: 23
91.190.80.0/21 maxlen: 21
93.92.192.0/21 maxlen: 28
109.71.176.0/21 maxlen: 28
185.42.60.0/22 maxlen: 28
91.219.180.0/22 maxlen: 22
80.79.240.0/21 maxlen: 21
80.79.248.0/22 maxlen: 22
80.79.252.0/23 maxlen: 23
91.215.255.0/24 maxlen: 24
91.215.254.0/24 maxlen: 24
80.249.176.0/20 maxlen: 28
80.73.192.0/20 maxlen: 20
188.93.240.0/21 maxlen: 28
93.190.224.0/21 maxlen: 28
2a02:16e8::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 899573157 (0x359e65a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4945576d06cce9899984ebbe3e3fe556a5eaa38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:09:e4:9d:db:59:43:49:8d:be:91:9b:be:65:
db:df:65:ca:a8:49:f7:d7:5e:89:77:e9:29:0e:fc:
82:1f:88:04:ce:01:01:73:71:d0:3b:e9:3e:6a:31:
fe:e9:57:17:8b:41:77:dd:e8:6b:aa:60:8e:e0:8a:
a0:cb:ed:cc:20:98:ad:db:52:ae:a7:a9:33:86:4b:
0f:82:5a:74:1c:4e:13:88:77:62:60:24:b8:f8:70:
08:02:b3:de:01:d5:a7:c7:d4:f6:f3:37:6d:81:2b:
d4:57:ec:52:eb:f9:6d:d6:67:be:12:d4:96:0a:e4:
36:50:22:47:b3:63:8d:ac:1d:b4:d1:c4:24:93:7f:
2b:2b:63:f1:f3:2b:35:3b:30:f6:bc:fd:ae:a1:25:
9d:45:07:c4:95:57:c3:6e:62:6e:02:70:43:38:e3:
d4:08:b3:d7:06:e7:74:94:5f:15:0e:dd:93:6c:72:
6c:1e:36:fa:66:ee:5b:0e:47:88:b4:5c:d2:45:7b:
2d:21:32:ba:15:9d:b6:95:89:e2:1e:f8:b3:bc:9f:
d6:02:c5:2b:e0:08:1b:e4:91:c4:c2:bf:cf:ce:92:
04:6f:58:b2:5a:49:66:85:6b:cc:91:c1:93:0c:fe:
a7:e6:45:00:4f:93:b3:86:71:1f:04:a0:0a:55:d1:
86:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:94:55:76:D0:6C:CE:98:99:98:4E:BB:E3:E3:FE:55:6A:5E:AA:38
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/9JRVdtBszpiZmE674-P-VWpeqjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.192.0/20
80.79.240.0-80.79.253.255
80.249.176.0/20
91.190.80.0/21
91.215.252.0/22
91.219.180.0/22
93.92.192.0/21
93.190.224.0/21
109.71.176.0/21
185.42.60.0/22
188.93.240.0/21
213.108.32.0/21
217.119.16.0/20
IPv6:
2a02:16e8::/32
Signature Algorithm: sha256WithRSAEncryption
90:d1:e2:18:05:e9:a7:67:4c:18:51:9e:77:c0:c7:14:6e:d9:
dd:54:d3:58:13:46:f9:0d:60:82:e5:19:37:b4:a6:74:0f:d1:
45:0e:6f:2f:04:1d:f0:1c:ff:47:ec:1a:eb:33:e9:4d:9c:0a:
a5:9d:af:61:b7:bf:2b:0f:45:be:e6:b7:a8:fa:2a:32:eb:37:
b2:e7:93:5d:c9:e7:29:2d:36:83:0f:cc:9e:dd:c2:d7:51:a1:
6e:89:a3:e3:bc:da:a1:fa:8f:55:ce:77:13:01:1c:e0:e8:85:
0e:3a:55:3a:b1:4f:00:c6:61:fd:5f:1d:12:72:b6:ae:f8:d0:
51:77:db:f4:75:c3:c3:2c:86:81:68:90:fb:8c:6d:00:65:fd:
ce:53:94:e9:c7:ba:79:0c:30:17:79:7b:53:b7:06:25:a3:01:
12:84:de:63:93:03:10:c6:cb:14:d0:d1:59:b5:d2:31:67:77:
52:a8:43:0b:f3:d2:de:12:23:15:74:15:70:79:77:64:5e:aa:
00:ce:7b:c7:3d:31:ca:cf:34:6c:fb:06:30:c4:d9:65:60:3a:
fd:81:a9:10:dd:17:a8:bb:3c:3f:55:5e:ae:05:10:f9:68:c1:
93:2b:3b:c8:41:b3:ba:45:4d:63:e4:e8:8a:9d:d4:5d:59:ef:
db:eb:4c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net