Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/n5dtdQoT96LFTeszTs2hMptmqqA.roa
File: n5dtdQoT96LFTeszTs2hMptmqqA.roa (raw, json)
Hash identifier: 4Y3ubtuRNHB9HbZMalTvGMlPwdnYA7lTGknnauI00Zo=
Subject key identifier: 9F:97:6D:75:0A:13:F7:A2:C5:4D:EB:33:4E:CD:A1:32:9B:66:AA:A0
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 05183E9A
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/n5dtdQoT96LFTeszTs2hMptmqqA.roa
Signing time: Sat 01 Jan 2022 05:52:58 +0000
ROA not before: Sat 01 Jan 2022 05:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1273
IP address blocks: 195.92.0.0/16 maxlen: 16
195.80.64.0/19 maxlen: 19
194.112.64.0/18 maxlen: 18
194.6.64.0/19 maxlen: 19
194.205.0.0/16 maxlen: 16
62.208.0.0/16 maxlen: 16
194.6.0.0/18 maxlen: 18
213.38.0.0/16 maxlen: 16
217.134.0.0/15 maxlen: 15
195.10.0.0/18 maxlen: 18
212.165.0.0/19 maxlen: 19
193.164.160.0/19 maxlen: 19
195.144.128.0/19 maxlen: 19
194.176.128.0/19 maxlen: 19
212.158.0.0/17 maxlen: 17
217.134.128.0/17 maxlen: 17
185.204.4.0/22 maxlen: 22
195.44.0.0/16 maxlen: 16
213.12.0.0/16 maxlen: 16
217.135.0.0/16 maxlen: 16
195.2.0.0/19 maxlen: 19
62.221.0.0/19 maxlen: 19
194.221.0.0/16 maxlen: 16
62.25.64.0/18 maxlen: 18
195.27.0.0/16 maxlen: 16
195.59.0.0/16 maxlen: 16
194.152.64.0/19 maxlen: 19
194.177.160.0/19 maxlen: 19
213.185.192.0/19 maxlen: 19
212.137.0.0/16 maxlen: 16
2001:5000::/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85474970 (0x5183e9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: Jan 1 05:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f976d750a13f7a2c54deb334ecda1329b66aaa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e5:fd:c8:1e:9d:cd:ce:4c:96:18:17:cc:a4:
90:45:d8:e6:0a:86:8d:1b:c4:dd:61:0f:45:3b:15:
7a:50:06:d7:fa:c4:34:7d:1f:42:4c:31:7a:72:af:
2d:9e:2d:66:b4:43:c7:6f:ec:a2:58:7a:6e:58:97:
6c:d1:3b:3b:53:90:47:4d:6e:26:f2:ea:df:c5:88:
a4:8f:3c:d1:58:b3:be:fd:9a:d3:87:6e:57:01:c2:
85:59:57:79:7a:9d:21:ec:96:c1:c1:8e:e7:73:5e:
60:56:78:7d:86:4b:4c:e2:fb:3a:47:04:eb:01:bd:
7c:f0:6d:02:c2:4c:75:cc:63:25:54:17:44:c2:31:
f4:c9:bc:99:9b:d1:b1:2a:fa:6f:a8:86:57:85:83:
5f:91:9e:e1:e3:12:41:ff:14:81:30:d5:1c:94:2e:
b3:f4:fb:1b:5e:02:f3:73:3e:4a:72:67:ba:d7:4b:
a8:ec:f9:70:b4:b5:d6:aa:d1:d3:36:f7:e6:ed:bd:
c4:ac:1b:d4:b5:90:58:a1:af:bb:19:17:20:a5:a2:
ff:f2:3c:b2:71:c4:e5:8d:fb:4d:87:56:9a:25:40:
94:02:07:08:88:d5:52:10:ad:6e:72:03:25:de:ef:
95:ce:53:0a:fc:d5:03:f6:0c:e1:fd:b5:88:c0:9b:
c9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:97:6D:75:0A:13:F7:A2:C5:4D:EB:33:4E:CD:A1:32:9B:66:AA:A0
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/n5dtdQoT96LFTeszTs2hMptmqqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.25.64.0/18
62.208.0.0/16
62.221.0.0/19
185.204.4.0/22
193.164.160.0/19
194.6.0.0-194.6.95.255
194.112.64.0/18
194.152.64.0/19
194.176.128.0/19
194.177.160.0/19
194.205.0.0/16
194.221.0.0/16
195.2.0.0/19
195.10.0.0/18
195.27.0.0/16
195.44.0.0/16
195.59.0.0/16
195.80.64.0/19
195.92.0.0/16
195.144.128.0/19
212.137.0.0/16
212.158.0.0/17
212.165.0.0/19
213.12.0.0/16
213.38.0.0/16
213.185.192.0/19
217.134.0.0/15
IPv6:
2001:5000::/21
Signature Algorithm: sha256WithRSAEncryption
01:6c:b8:96:23:55:ca:e8:5c:9e:4f:3a:04:a4:1f:9b:ca:99:
56:64:6e:40:4d:b2:3f:ad:ce:31:a7:62:bd:ad:a6:9b:26:2a:
2f:4d:09:3f:3f:0e:a9:bd:ee:4b:26:63:df:44:65:7d:bf:89:
80:39:04:f2:7e:5e:26:d9:e7:0a:63:40:5f:bc:e1:bc:a4:dc:
45:0b:43:9b:20:02:b9:c0:f9:33:fe:16:16:c9:c1:13:8d:b6:
e7:1e:08:8f:d4:4c:18:5b:8d:40:6f:9a:9e:27:a2:83:db:8c:
f2:48:57:6a:0d:df:bf:9f:5e:aa:f0:9a:90:fe:ec:34:d4:29:
cf:b1:db:23:56:66:38:b5:82:bc:8a:d7:9e:0f:99:63:4c:4c:
9d:7e:c1:01:67:74:ea:86:cc:11:d5:fd:51:5c:73:b7:9e:4c:
f4:6f:10:cb:f3:cb:66:bf:bf:bc:f3:d3:34:13:94:f5:9a:6f:
85:c1:a9:13:49:a9:97:3c:de:b1:8e:49:ff:0e:90:99:4c:c5:
02:a9:fd:15:c2:1b:ae:74:7b:04:b8:6e:5f:b1:f0:ed:eb:31:
d3:b5:f5:98:d4:db:71:8b:4c:f5:9a:ed:eb:df:48:ec:f8:9a:
d3:c8:c1:80:ad:e5:d8:6b:6c:61:7d:54:6d:42:69:d8:c9:06:
68:9a:f6:25
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:22 2024 by rpki-client on console-ams.rpki-client.org