Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/MqsJXhdfGefeD6KSz94kGgEarOs.roa
File: MqsJXhdfGefeD6KSz94kGgEarOs.roa (raw, json)
Hash identifier: XoyPOq3B8efUuBfJ9TJZwr3VVqJYA/kbGFewKlsdoqI=
Subject key identifier: 32:AB:09:5E:17:5F:19:E7:DE:0F:A2:92:CF:DE:24:1A:01:1A:AC:EB
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 024C33D5
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/MqsJXhdfGefeD6KSz94kGgEarOs.roa
Signing time: Sat 01 Jan 2022 04:56:11 +0000
ROA not before: Sat 01 Jan 2022 04:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47377
IP address blocks: 91.87.0.0/19 maxlen: 19
94.110.160.0/19 maxlen: 19
178.50.0.0/15 maxlen: 19
91.87.32.0/19 maxlen: 19
94.110.96.0/19 maxlen: 19
94.107.0.0/17 maxlen: 17
94.110.128.0/19 maxlen: 19
91.87.96.0/19 maxlen: 19
94.104.0.0/13 maxlen: 23
212.87.96.0/19 maxlen: 24
94.104.64.0/19 maxlen: 19
94.111.0.0/19 maxlen: 19
91.87.128.0/19 maxlen: 19
94.104.96.0/19 maxlen: 19
94.107.192.0/18 maxlen: 18
94.111.32.0/19 maxlen: 19
94.104.0.0/24 maxlen: 24
94.110.192.0/19 maxlen: 19
94.104.17.0/24 maxlen: 24
91.87.64.0/19 maxlen: 19
94.104.24.0/21 maxlen: 21
94.110.224.0/19 maxlen: 19
94.107.128.0/18 maxlen: 18
94.104.32.0/19 maxlen: 19
94.106.128.0/17 maxlen: 17
91.86.0.0/16 maxlen: 16
91.86.0.0/15 maxlen: 20
94.110.32.0/19 maxlen: 19
94.110.64.0/19 maxlen: 19
212.53.0.0/20 maxlen: 24
212.224.128.0/17 maxlen: 19
94.110.0.0/19 maxlen: 19
212.65.32.0/19 maxlen: 19
94.111.96.0/19 maxlen: 19
94.104.160.0/19 maxlen: 19
94.104.192.0/19 maxlen: 19
94.111.128.0/19 maxlen: 19
91.87.160.0/19 maxlen: 19
94.111.64.0/19 maxlen: 19
94.104.128.0/21 maxlen: 21
85.10.64.0/18 maxlen: 24
94.107.246.0/24 maxlen: 24
94.111.224.0/19 maxlen: 19
94.105.48.0/20 maxlen: 20
94.105.64.0/19 maxlen: 19
62.88.0.0/17 maxlen: 20
62.88.0.0/19 maxlen: 19
94.111.160.0/19 maxlen: 19
94.104.240.0/21 maxlen: 21
94.104.252.0/22 maxlen: 22
62.88.32.0/19 maxlen: 19
94.104.248.0/22 maxlen: 22
94.111.192.0/19 maxlen: 19
2a00:1868::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38548437 (0x24c33d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Jan 1 04:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32ab095e175f19e7de0fa292cfde241a011aaceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e1:97:95:e2:54:92:92:6d:c2:8a:cd:7e:d1:
e8:6a:bc:b3:50:0f:89:15:22:5c:27:c4:8d:c8:39:
3a:2a:de:9c:36:d8:aa:9d:6d:fa:7b:96:fc:fb:fa:
7c:b6:7b:3c:d1:c1:eb:fc:67:cd:21:0d:38:a5:e4:
c5:de:da:11:c0:74:9a:75:b7:78:9f:33:c3:9f:40:
56:fc:f4:b6:d0:3e:dc:69:f5:17:55:75:3e:4f:95:
7c:2e:03:6f:5c:db:5e:e4:cf:ac:14:4e:74:7a:11:
73:0e:94:7d:56:b6:cc:92:2c:9d:19:68:d0:ce:76:
3f:1c:3c:f9:56:a0:21:42:ae:0b:1d:e9:40:fb:45:
4c:45:fb:e5:2e:f9:4a:f5:03:f0:c6:08:8f:5a:a2:
1e:3e:60:f8:ac:14:1b:8f:3d:a8:5f:da:7d:23:3a:
f1:a6:2f:c8:96:63:7d:20:2c:ed:24:bc:cf:64:42:
bd:7e:da:a8:b4:1f:18:e3:9f:a1:e1:2c:72:b4:18:
56:52:e0:62:43:50:5d:b2:d0:70:69:bc:45:14:30:
fb:28:8f:d5:5c:63:b1:a2:d6:e8:11:63:1f:b9:5a:
91:7c:b5:e3:34:93:d2:25:ae:6f:e4:05:d4:27:f5:
97:1f:26:30:34:02:83:4d:63:38:49:23:15:01:05:
e2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:AB:09:5E:17:5F:19:E7:DE:0F:A2:92:CF:DE:24:1A:01:1A:AC:EB
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/MqsJXhdfGefeD6KSz94kGgEarOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.88.0.0/17
85.10.64.0/18
91.86.0.0/15
94.104.0.0/13
178.50.0.0/15
212.53.0.0/20
212.65.32.0/19
212.87.96.0/19
212.224.128.0/17
IPv6:
2a00:1868::/32
Signature Algorithm: sha256WithRSAEncryption
08:b0:a4:eb:0e:b8:a1:ce:81:fa:81:26:b1:5e:6f:27:4c:5c:
d7:28:14:12:de:21:6f:91:d6:2b:db:06:cd:35:06:69:f4:9a:
4d:eb:9b:0e:a7:82:31:41:07:23:c7:ce:66:74:ae:54:ba:6f:
1d:ae:3d:4c:09:bd:e4:d6:cb:74:1e:1f:d7:08:62:16:00:d8:
11:64:32:b4:67:4a:55:4d:18:85:4a:52:ef:9f:40:9a:5a:bd:
c0:17:1a:72:85:89:f2:40:5e:fa:01:3e:e0:8a:c7:be:2a:fa:
31:b7:22:9d:69:1b:bf:7a:01:5e:83:ec:67:a1:19:1a:0f:1f:
a7:eb:a0:0e:28:15:7c:05:92:ad:c5:d1:13:1b:ee:6f:7c:56:
78:c7:6a:45:e0:88:70:f9:84:f0:83:7d:23:fb:59:18:de:06:
b0:f4:4c:61:f2:dd:9b:8d:57:72:10:1d:11:c5:cd:ed:e1:15:
cd:65:8e:97:c1:1b:b1:3e:29:9a:66:11:2b:c1:24:98:b9:50:
08:78:08:ed:b8:1f:79:9d:46:49:dc:3c:0a:54:76:f7:81:20:
ae:3b:ef:76:9a:3d:48:f2:76:e0:4b:80:93:bb:2d:e9:a8:ad:
22:d4:c2:78:38:8e:ec:59:28:07:f3:2b:38:53:9a:a9:4e:b1:
77:7a:d2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:37 2024 by rpki-client on console-ams.rpki-client.org