Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/jLVBNiE_KU5frLxsU7-uVW55yfs.roa
File: jLVBNiE_KU5frLxsU7-uVW55yfs.roa (raw, json)
Hash identifier: WIzQHsexZTiE0CPTibn9u3Le3Rady4VHzF6LtH5r5ew=
Subject key identifier: 8C:B5:41:36:21:3F:29:4E:5F:AC:BC:6C:53:BF:AE:55:6E:79:C9:FB
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 09C22CA9
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/jLVBNiE_KU5frLxsU7-uVW55yfs.roa
Signing time: Sat 01 Jan 2022 05:59:14 +0000
ROA not before: Sat 01 Jan 2022 05:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43927
IP address blocks: 185.250.105.0/24 maxlen: 24
185.250.104.0/24 maxlen: 24
185.250.107.0/24 maxlen: 24
185.250.106.0/24 maxlen: 24
93.113.174.0/24 maxlen: 24
185.199.172.0/24 maxlen: 24
185.199.174.0/24 maxlen: 24
185.199.173.0/24 maxlen: 24
185.199.175.0/24 maxlen: 24
188.240.47.0/24 maxlen: 24
92.114.98.0/24 maxlen: 24
91.188.224.0/24 maxlen: 24
91.188.226.0/24 maxlen: 24
91.188.225.0/24 maxlen: 24
91.188.227.0/24 maxlen: 24
89.33.197.0/24 maxlen: 24
185.105.32.0/22 maxlen: 22
185.125.108.0/24 maxlen: 24
185.125.110.0/23 maxlen: 24
89.45.248.0/21 maxlen: 24
89.32.144.0/21 maxlen: 21
188.241.112.0/21 maxlen: 24
2a06:cd40:cafe::/48 maxlen: 48
2a06:cd40:2::/48 maxlen: 48
2a06:cd40:200::/48 maxlen: 48
2a06:cd40:100::/48 maxlen: 48
2a06:cd40:400::/48 maxlen: 48
2a06:cd40:caff::/48 maxlen: 48
2a06:cd40:1::/48 maxlen: 48
2a06:cd40:101::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163720361 (0x9c22ca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Jan 1 05:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cb54136213f294e5facbc6c53bfae556e79c9fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9d:17:97:63:77:74:c2:bd:95:68:1e:5e:4e:
b5:9f:ec:53:63:d0:fb:64:9c:9e:31:4d:68:80:81:
61:99:30:0b:e6:38:ae:2f:e4:18:2f:5f:5c:ab:1a:
52:c5:ef:ec:49:30:1f:08:df:42:bd:61:b8:6c:29:
5a:1c:c4:d3:1b:81:92:3c:6e:92:b5:17:02:a9:8f:
ac:45:e7:93:49:53:f6:23:f7:f8:ba:3c:5a:2b:5b:
d7:a0:6b:a4:fe:82:7c:f3:07:8e:28:70:1f:02:a2:
8a:be:b6:f3:0e:d5:50:d7:e2:bf:33:d0:44:6b:e8:
3b:33:59:84:38:0d:ae:9d:20:36:54:84:47:8b:71:
e8:58:48:11:3b:f9:91:64:2c:e9:27:d0:75:31:d3:
30:6e:86:0c:48:b0:2f:38:66:67:0c:72:42:e1:42:
03:49:01:cc:0f:37:db:45:8b:ca:92:e4:1c:6e:05:
91:4b:15:8d:06:0e:6e:a9:6c:37:4e:90:00:28:56:
22:fc:39:da:fe:f9:9a:83:66:04:3a:cb:3b:69:cd:
10:5e:70:bb:01:9c:88:00:da:3f:d1:6d:1f:d2:ca:
52:97:a7:c5:9d:ed:a0:07:d7:a1:08:da:4a:10:d7:
bd:fa:6b:6e:03:fe:02:ff:ab:ab:7e:66:fe:d0:83:
2f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B5:41:36:21:3F:29:4E:5F:AC:BC:6C:53:BF:AE:55:6E:79:C9:FB
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/jLVBNiE_KU5frLxsU7-uVW55yfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.32.144.0/21
89.33.197.0/24
89.45.248.0/21
91.188.224.0/22
92.114.98.0/24
93.113.174.0/24
185.105.32.0/22
185.125.108.0/24
185.125.110.0/23
185.199.172.0/22
185.250.104.0/22
188.240.47.0/24
188.241.112.0/21
IPv6:
2a06:cd40:1::-2a06:cd40:2:ffff:ffff:ffff:ffff:ffff
2a06:cd40:100::/47
2a06:cd40:200::/48
2a06:cd40:400::/48
2a06:cd40:cafe::/47
Signature Algorithm: sha256WithRSAEncryption
96:64:2c:3f:0b:96:9e:8c:a8:c4:4f:2e:20:72:88:99:2b:65:
1b:b8:ad:f9:78:00:69:1a:24:73:ae:09:ef:67:dd:6a:cd:5e:
16:b9:61:9e:23:5c:21:0e:eb:b8:b7:9c:f6:a6:07:aa:99:60:
74:82:56:ff:ab:41:f2:38:34:f8:1d:2e:fe:f7:b8:2e:0c:06:
fa:da:8b:a5:c0:e3:aa:bf:9f:ae:24:b9:9b:40:0a:e6:df:ec:
43:b3:16:63:f4:00:ae:2a:a5:01:d0:61:70:4a:2b:71:0e:80:
ac:31:7f:22:23:f2:f2:81:58:e8:80:77:be:14:ab:dd:b7:03:
e5:cf:ac:b0:a9:44:cb:c4:11:d9:7d:2c:79:68:97:74:df:39:
93:c6:ad:2e:b3:fa:e7:5f:a2:44:99:2b:8f:c5:c3:a9:da:98:
05:0b:75:4b:ec:e7:01:9e:89:02:da:b4:09:51:71:41:5f:6d:
3f:7b:df:dd:f4:f1:4c:05:24:19:2f:4e:5c:6d:c4:ef:d4:37:
df:d1:a1:f5:19:d4:14:2e:d4:56:76:c4:6e:6b:14:e6:b7:73:
4c:75:57:ad:08:03:ff:ab:f7:91:4c:b6:02:9b:a1:40:5f:d9:
89:de:59:ac:bc:12:b4:45:93:ae:68:e0:fe:73:01:8c:08:5c:
fb:11:00:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:50 2023 by rpki-client on console-fra.rpki-client.org