Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/e_bds0w9pmGfK7uTJDvUmNohTDk.roa
File: e_bds0w9pmGfK7uTJDvUmNohTDk.roa (raw, json)
Hash identifier: VgcyTD/Fi0lTwU1c3ICw8KLkXprgypxSMrZKxv/CXLE=
Subject key identifier: 7B:F6:DD:B3:4C:3D:A6:61:9F:2B:BB:93:24:3B:D4:98:DA:21:4C:39
Certificate issuer: /CN=24b086f4824266384e078cf777375f21bd370b70
Certificate serial: 073CC7D1
Authority key identifier: 24:B0:86:F4:82:42:66:38:4E:07:8C:F7:77:37:5F:21:BD:37:0B:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLCG9IJCZjhOB4z3dzdfIb03C3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/e_bds0w9pmGfK7uTJDvUmNohTDk.roa
Signing time: Tue 21 Jun 2022 02:54:46 +0000
ROA not before: Tue 21 Jun 2022 02:54:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62382
IP address blocks: 193.143.96.0/24 maxlen: 24
185.37.191.0/24 maxlen: 24
185.37.188.0/22 maxlen: 22
185.37.189.0/24 maxlen: 24
185.37.188.0/24 maxlen: 24
80.72.219.0/24 maxlen: 24
80.72.218.0/24 maxlen: 24
80.72.217.0/24 maxlen: 24
80.72.216.0/21 maxlen: 21
80.72.216.0/24 maxlen: 24
80.72.221.0/24 maxlen: 24
80.72.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121423825 (0x73cc7d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24b086f4824266384e078cf777375f21bd370b70
Validity
Not Before: Jun 21 02:54:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bf6ddb34c3da6619f2bbb93243bd498da214c39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b6:d3:39:a3:56:49:75:87:8d:7d:da:4b:14:
7e:3c:8c:fd:61:c3:79:4e:ec:4e:e3:8d:66:9f:46:
e6:2e:69:09:3f:9e:ec:0c:07:da:1d:1f:b3:73:a8:
7a:d7:c0:a0:2a:b5:14:45:d5:35:fb:e0:2a:4b:3f:
b6:fa:cd:9d:4e:76:6a:62:2a:76:8c:ee:d6:79:98:
10:4e:28:f5:6d:7c:73:f8:c2:57:d6:e6:90:76:81:
8d:ba:52:da:f9:23:29:91:3b:f0:7b:71:fa:1e:69:
0f:e3:06:c1:77:f6:58:93:04:cd:5a:cd:e3:82:18:
db:0a:a2:ea:12:be:e7:9e:3d:fd:98:54:a6:26:38:
4e:2f:b3:f3:51:82:16:c0:df:34:76:3b:3f:ac:1b:
9b:8d:7d:14:8f:e8:fe:f9:67:c8:66:af:43:ed:0b:
9d:9b:1b:13:17:a1:23:c9:80:89:15:57:a0:cc:07:
c0:90:30:e4:e7:e2:db:da:26:b3:77:ed:18:e8:a2:
6c:be:06:f7:1c:4f:8a:d5:01:2d:3e:e1:a5:fe:f5:
81:16:33:c1:91:6b:94:5a:42:f0:08:f1:14:82:75:
05:98:72:b0:42:8b:50:af:30:5d:40:2a:9a:52:04:
2d:05:df:f1:0a:35:04:2a:4e:23:b2:a5:e9:88:4d:
f4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F6:DD:B3:4C:3D:A6:61:9F:2B:BB:93:24:3B:D4:98:DA:21:4C:39
X509v3 Authority Key Identifier:
keyid:24:B0:86:F4:82:42:66:38:4E:07:8C:F7:77:37:5F:21:BD:37:0B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLCG9IJCZjhOB4z3dzdfIb03C3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/e_bds0w9pmGfK7uTJDvUmNohTDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ee138f-5e63-4cc4-8e75-decb188a000d/1/JLCG9IJCZjhOB4z3dzdfIb03C3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.216.0/21
185.37.188.0/22
193.143.96.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:1e:ee:35:be:1c:fb:d6:27:5f:19:a3:ae:15:1c:65:69:bb:
bb:76:db:37:fb:14:b2:94:e7:c6:78:e6:fc:d8:22:3f:b4:bf:
e4:3b:09:97:6a:a1:de:72:2f:e8:e2:10:09:03:07:29:3d:e1:
b4:3e:28:46:c8:0b:9f:8c:02:29:e8:da:17:80:51:49:e4:e8:
48:a3:aa:37:a9:43:01:29:83:7f:3a:86:0a:7d:70:e1:0b:90:
13:85:28:8c:23:d9:4f:49:2c:4c:bc:2c:32:57:5e:1b:74:ca:
3d:80:73:95:22:f5:64:d9:bc:3e:0c:e3:25:ed:bd:69:6e:82:
b7:86:00:fd:1b:1f:d2:ca:bf:1b:8b:98:c0:fc:c0:29:b6:f0:
ab:48:20:82:bc:f7:26:df:4b:66:e4:7e:42:f2:68:44:0c:8b:
26:11:9f:7a:19:63:4a:d2:70:ce:fd:10:61:5b:46:f5:67:6d:
8b:b3:f4:d7:d6:5b:25:77:fe:c7:8c:c3:1f:aa:f9:ed:76:f2:
5c:24:d8:2e:17:aa:bb:e5:ac:0b:07:71:eb:47:dd:ea:c0:69:
82:31:78:18:f6:f1:4d:6a:6f:0f:13:bd:8e:b8:3f:41:4d:61:
20:e9:f8:ae:e6:ca:d3:1b:a3:18:b9:50:f6:56:9f:a7:b7:d3:
0e:4b:81:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:25 2023 by rpki-client on console.sobornost.net