Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ee6c6a-fb55-4dc8-9dcf-22e7a37e8e38/1/hsO-vVQSNWW8f98Ohq1bcMQUYcI.roa
File: hsO-vVQSNWW8f98Ohq1bcMQUYcI.roa (raw, json)
Hash identifier: saO4Fi3rSIzLFACAva44kyXVVQbPFK/G10buQmcSMZU=
Subject key identifier: 86:C3:BE:BD:54:12:35:65:BC:7F:DF:0E:86:AD:5B:70:C4:14:61:C2
Certificate issuer: /CN=b7cc2da2bdb97be912a2d942ebe7eafa4651e885
Certificate serial: 382B9DC2
Authority key identifier: B7:CC:2D:A2:BD:B9:7B:E9:12:A2:D9:42:EB:E7:EA:FA:46:51:E8:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8wtor25e-kSotlC6-fq-kZR6IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ee6c6a-fb55-4dc8-9dcf-22e7a37e8e38/1/hsO-vVQSNWW8f98Ohq1bcMQUYcI.roa
Signing time: Sat 01 Jan 2022 16:06:26 +0000
ROA not before: Sat 01 Jan 2022 16:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44314
IP address blocks: 185.83.54.0/24 maxlen: 24
185.83.54.0/23 maxlen: 23
185.83.52.0/22 maxlen: 22
185.83.52.0/23 maxlen: 23
185.83.52.0/24 maxlen: 24
185.83.53.0/24 maxlen: 24
185.83.55.0/24 maxlen: 24
79.170.176.0/21 maxlen: 21
79.170.176.0/22 maxlen: 22
79.170.178.0/23 maxlen: 23
79.170.178.0/24 maxlen: 24
79.170.176.0/24 maxlen: 24
79.170.176.0/23 maxlen: 23
79.170.177.0/24 maxlen: 24
79.170.179.0/24 maxlen: 24
79.170.183.0/24 maxlen: 24
79.170.180.0/22 maxlen: 22
79.170.181.0/24 maxlen: 24
79.170.182.0/23 maxlen: 23
79.170.182.0/24 maxlen: 24
79.170.180.0/24 maxlen: 24
79.170.180.0/23 maxlen: 23
2a01:4e8::/32 maxlen: 32
2a01:4e8:8000::/33 maxlen: 33
2a01:4e8::/33 maxlen: 33
2a01:4e8::/34 maxlen: 34
2a01:4e8:4000::/34 maxlen: 34
2a01:4e8:8000::/34 maxlen: 34
2a01:4e8:c000::/34 maxlen: 34
2a01:4e8:c0c0::/48 maxlen: 48
2a01:4e8:feed::/48 maxlen: 48
2a01:4e8:3a4d::/48 maxlen: 48
2a01:4e8:cda8::/48 maxlen: 48
2a01:4e8:cafe::/48 maxlen: 48
2a01:4e8:ffff::/48 maxlen: 48
2a01:4e8:f1d::/48 maxlen: 48
2a01:4e8:cccc::/48 maxlen: 48
2a01:4e8:c22c::/48 maxlen: 48
2a01:4e8:127::/48 maxlen: 48
2a01:4e8:182::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 942382530 (0x382b9dc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7cc2da2bdb97be912a2d942ebe7eafa4651e885
Validity
Not Before: Jan 1 16:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86c3bebd54123565bc7fdf0e86ad5b70c41461c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b9:c1:36:9d:32:5c:fa:70:81:b7:ba:f9:85:
ac:aa:28:44:28:b2:33:5e:4e:9e:5e:b4:5a:95:3f:
9c:1e:67:a0:fb:60:36:83:a3:bc:8e:9e:89:f0:4f:
02:f8:52:9a:59:4f:01:9b:2f:2b:7a:3d:26:25:51:
80:e6:7d:d3:47:4c:ce:f7:3e:92:89:b1:f5:4e:05:
57:46:52:66:7c:bf:95:3c:39:e6:8f:79:54:76:20:
5d:b0:ec:1b:ac:73:fc:cb:66:07:4a:f5:24:c2:b7:
eb:a3:6f:68:a1:7c:b1:74:e6:64:bd:58:3f:72:6d:
cd:61:6e:29:2e:a7:75:06:58:66:ba:90:bf:3e:b0:
a9:8a:c5:26:26:6a:0b:2c:76:d2:8a:55:5d:ab:40:
0b:29:27:e9:13:b1:01:69:c8:08:50:02:d0:5f:50:
26:3b:1e:52:0c:2e:e8:31:83:88:b9:19:06:f6:6a:
43:f2:a8:aa:50:bf:c9:77:fb:a3:4d:ff:69:54:67:
11:e9:fe:5b:47:39:b6:87:17:3f:52:21:fe:ee:1a:
83:57:29:1a:4b:f3:6e:31:ca:17:03:ef:18:8f:1a:
fe:33:1e:6f:fb:5b:51:9e:23:27:f4:70:b6:99:c6:
a4:0e:24:8c:4a:b4:15:e7:14:33:c3:cd:01:e8:03:
57:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C3:BE:BD:54:12:35:65:BC:7F:DF:0E:86:AD:5B:70:C4:14:61:C2
X509v3 Authority Key Identifier:
keyid:B7:CC:2D:A2:BD:B9:7B:E9:12:A2:D9:42:EB:E7:EA:FA:46:51:E8:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8wtor25e-kSotlC6-fq-kZR6IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ee6c6a-fb55-4dc8-9dcf-22e7a37e8e38/1/hsO-vVQSNWW8f98Ohq1bcMQUYcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ee6c6a-fb55-4dc8-9dcf-22e7a37e8e38/1/t8wtor25e-kSotlC6-fq-kZR6IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.176.0/21
185.83.52.0/22
IPv6:
2a01:4e8::/32
Signature Algorithm: sha256WithRSAEncryption
a5:1e:19:2b:36:60:0d:83:5f:6a:c9:1b:e5:fd:a1:33:e2:f1:
b6:f3:de:35:ca:21:0a:66:1d:0e:9e:de:af:6d:07:c3:2a:c8:
86:79:89:a7:9f:10:94:66:84:07:dd:d7:a7:bd:f4:32:0e:af:
92:be:98:7a:7f:ae:cc:d0:36:d5:70:6b:82:db:ad:06:d5:91:
a3:f1:1c:f1:82:16:c6:7c:0b:9d:bb:98:3d:ac:6c:0d:de:6c:
1f:9f:12:f5:37:d7:04:f1:00:49:49:70:99:e4:0a:56:a6:9b:
09:8f:e3:2d:bc:03:47:50:ae:c3:a4:dd:33:98:78:11:b1:e9:
78:85:56:fb:54:61:4e:13:48:41:7c:cd:ce:3c:d6:e7:84:e1:
d5:8a:86:ef:d1:58:54:0d:7c:56:98:e3:e1:f1:a2:ca:a5:4b:
66:ab:19:15:a4:64:66:4f:7d:2d:35:b6:be:5a:84:f5:e6:b8:
06:dd:3f:a2:39:57:c4:91:16:d1:ea:02:21:0c:b7:d1:42:b3:
dd:29:55:3b:59:a8:65:4d:33:d6:1c:5e:85:5b:89:a1:49:68:
67:c2:40:3b:19:3d:c0:82:83:4b:e5:33:59:22:5b:50:bd:cb:
6d:32:3c:a1:d9:a9:20:f3:9f:80:db:57:a0:fe:ce:7f:da:cf:
e0:e8:b7:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net