Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/uRz5hsvabsdGXm9zcgFy-vrydDI.roa
File: uRz5hsvabsdGXm9zcgFy-vrydDI.roa (raw, json)
Hash identifier: Pe2K7mMBUqEgdv9Dcp1M+9VGk1umxt9lsBvKKegKX1E=
Subject key identifier: B9:1C:F9:86:CB:DA:6E:C7:46:5E:6F:73:72:01:72:FA:FA:F2:74:32
Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Certificate serial: 1C710315
Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/uRz5hsvabsdGXm9zcgFy-vrydDI.roa
Signing time: Sat 01 Jan 2022 06:53:20 +0000
ROA not before: Sat 01 Jan 2022 06:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49293
IP address blocks: 95.170.112.0/24 maxlen: 24
95.170.118.0/24 maxlen: 24
95.170.117.0/24 maxlen: 24
95.170.116.0/24 maxlen: 24
95.170.115.0/24 maxlen: 24
95.170.114.0/24 maxlen: 24
95.170.113.0/24 maxlen: 24
95.170.112.0/21 maxlen: 21
95.170.119.0/24 maxlen: 24
212.107.226.0/24 maxlen: 24
212.107.225.0/24 maxlen: 24
212.107.224.0/20 maxlen: 20
212.107.224.0/24 maxlen: 24
212.107.230.0/24 maxlen: 24
212.107.229.0/24 maxlen: 24
212.107.228.0/24 maxlen: 24
212.107.227.0/24 maxlen: 24
212.107.233.0/24 maxlen: 24
212.107.232.0/24 maxlen: 24
212.107.231.0/24 maxlen: 24
212.107.237.0/24 maxlen: 24
212.107.236.0/24 maxlen: 24
212.107.235.0/24 maxlen: 24
212.107.234.0/24 maxlen: 24
212.107.239.0/24 maxlen: 24
212.107.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477168405 (0x1c710315)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Validity
Not Before: Jan 1 06:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b91cf986cbda6ec7465e6f73720172fafaf27432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6d:19:eb:8f:a0:36:14:13:e0:75:cf:1e:a6:
64:96:79:62:2f:94:24:f3:fc:a3:7d:ca:2c:a6:ad:
73:6a:1c:35:d8:0e:cf:0c:2a:d5:0b:e7:ca:9a:c4:
8f:79:bb:37:95:ac:40:e0:42:1b:60:67:62:3c:cb:
94:33:1e:37:f2:fb:cc:32:42:c1:2f:a5:41:96:57:
78:64:b0:05:c2:6e:5e:09:0a:7f:9d:14:64:63:6f:
b7:1a:c9:f0:94:cc:13:26:d9:e5:1c:01:d4:c4:40:
8b:cc:90:b8:fe:ca:13:ff:54:8c:ee:73:ca:d6:ed:
57:f8:1d:0b:56:16:bb:ab:9a:76:c2:12:d7:7f:a0:
1d:ca:52:20:b2:eb:f3:e9:7b:84:49:db:6f:28:8d:
61:b9:7a:28:bf:01:ca:20:f3:3f:27:70:ff:ff:12:
8f:55:a2:44:6e:8e:b3:56:df:d8:f5:07:f6:1c:e5:
d8:0f:75:6e:f6:d3:ea:52:96:ba:8f:b4:0c:b0:51:
c3:6f:ba:70:5a:8a:62:08:45:f4:67:7f:bc:8e:f9:
0b:6d:33:1d:b4:95:a5:53:3b:e7:ac:b8:0e:44:39:
5f:cf:ca:21:1d:c1:e9:f0:32:a9:08:b9:1b:4d:a1:
49:e0:db:af:a1:ef:23:c5:eb:11:df:8c:ec:54:f2:
31:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1C:F9:86:CB:DA:6E:C7:46:5E:6F:73:72:01:72:FA:FA:F2:74:32
X509v3 Authority Key Identifier:
keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/uRz5hsvabsdGXm9zcgFy-vrydDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.170.112.0/21
212.107.224.0/20
Signature Algorithm: sha256WithRSAEncryption
b1:89:fa:6f:0c:8a:2e:4f:55:2a:ca:88:1d:8b:4d:fc:b4:8a:
d4:3e:63:60:d8:d5:f1:a9:72:4d:b5:95:60:38:a7:b8:e2:4e:
ca:f5:09:f1:aa:04:ab:82:b2:6b:a5:04:7e:b3:6c:df:ab:54:
59:22:77:47:41:f6:9f:47:19:c0:7b:c1:7e:be:bc:78:73:3c:
27:52:77:f5:b8:57:d1:96:13:97:75:ce:ff:fe:d7:56:42:4f:
7a:a4:00:36:40:e3:d9:99:6b:f3:a7:d0:ea:1c:48:92:53:da:
6d:f5:e1:41:c4:d0:3e:5a:e9:ff:4e:e0:4c:e9:f5:ca:72:b3:
c5:39:6d:c4:69:e5:42:79:3e:fe:e9:f4:8b:ea:31:ba:df:a5:
ad:f1:6b:97:61:72:3b:17:44:b4:65:54:44:af:de:fd:0c:97:
2c:5e:1d:5d:db:ce:3b:2c:a1:e8:87:c2:4c:21:83:ff:3c:8b:
1b:0d:8a:4d:4c:9f:c0:2a:5c:36:fe:6d:5f:51:e4:a7:8a:9f:
32:bb:12:93:09:9e:e7:60:a5:f5:99:ff:ad:39:f4:83:77:39:
69:16:f0:9a:cc:72:b7:3c:a9:f0:9c:81:94:28:8e:60:a2:d5:
af:58:db:07:a1:1d:89:07:b1:35:fb:33:32:c5:b6:0a:3d:ae:
dc:e1:70:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:32 2024 by rpki-client on console-fra.rpki-client.org