Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/miZua6kl5yAy3lFc9tLCCTMSeWU.roa
File: miZua6kl5yAy3lFc9tLCCTMSeWU.roa (raw, json)
Hash identifier: zreggqq+dFcpVIMsM1xnPZdvSur45E2XxOfgKkVyRws=
Subject key identifier: 9A:26:6E:6B:A9:25:E7:20:32:DE:51:5C:F6:D2:C2:09:33:12:79:65
Certificate issuer: /CN=5fe58e732a0f71f4f01302d62167173bd9b17cc1
Certificate serial: 01835A27155B1EEAB750FB5B84D46B93ECA0
Authority key identifier: 5F:E5:8E:73:2A:0F:71:F4:F0:13:02:D6:21:67:17:3B:D9:B1:7C:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X-WOcyoPcfTwEwLWIWcXO9mxfME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/miZua6kl5yAy3lFc9tLCCTMSeWU.roa
Signing time: Tue 20 Sep 2022 09:07:34 +0000
ROA not before: Tue 20 Sep 2022 09:07:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6085
IP address blocks: 57.55.0.0/16 maxlen: 16
57.50.0.0/16 maxlen: 16
57.226.0.0/16 maxlen: 16
57.18.0.0/16 maxlen: 16
57.2.0.0/16 maxlen: 16
57.13.0.0/16 maxlen: 16
57.61.0.0/16 maxlen: 16
57.192.0.0/16 maxlen: 16
57.0.0.0/16 maxlen: 16
57.16.0.0/16 maxlen: 16
57.27.0.0/16 maxlen: 16
57.54.0.0/16 maxlen: 16
57.33.0.0/16 maxlen: 16
57.49.0.0/16 maxlen: 16
57.17.0.0/16 maxlen: 16
57.52.0.0/16 maxlen: 16
57.63.0.0/16 maxlen: 16
57.19.0.0/16 maxlen: 16
57.3.0.0/16 maxlen: 16
57.62.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5a:27:15:5b:1e:ea:b7:50:fb:5b:84:d4:6b:93:ec:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fe58e732a0f71f4f01302d62167173bd9b17cc1
Validity
Not Before: Sep 20 09:07:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a266e6ba925e72032de515cf6d2c20933127965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6a:6a:12:96:f3:15:a2:be:c9:6a:33:b9:a4:
0c:31:65:17:46:38:42:33:ae:17:d0:84:50:bf:5b:
1c:b4:63:c3:97:cd:cc:68:ab:ac:1e:74:2c:85:75:
ab:ae:10:42:36:07:53:f6:de:96:6c:49:53:21:69:
2a:dc:94:3a:46:6e:a4:9d:cb:26:25:85:0e:85:cc:
20:42:2a:ce:2b:10:48:da:c3:2e:44:81:6f:c2:86:
4f:af:f8:93:48:61:b6:a7:87:68:8d:cb:c4:d7:85:
91:4a:22:59:17:b0:d5:64:ce:07:c3:4b:18:a3:e8:
14:ae:f2:51:99:36:2c:c9:9f:b3:f3:64:1d:26:2b:
42:94:8b:1d:7c:b8:30:a8:26:a0:a2:2f:15:a8:d7:
05:03:c7:f3:6c:9e:c1:b5:1e:78:2a:82:fc:03:5b:
27:4c:66:98:8f:9c:66:78:8d:6b:4c:7b:f8:a9:af:
ce:b4:63:9c:44:ec:64:d8:3e:86:71:98:be:e9:5d:
c1:1c:6e:d7:7e:94:b6:e9:cb:f5:4b:2f:ef:29:ce:
76:1b:0e:39:ff:d4:5a:2d:93:33:c1:b1:75:af:43:
a9:52:b1:d7:09:02:bc:91:36:74:c7:92:0a:77:00:
2a:f1:da:45:16:96:85:6a:9e:dd:16:96:e0:80:ed:
32:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:26:6E:6B:A9:25:E7:20:32:DE:51:5C:F6:D2:C2:09:33:12:79:65
X509v3 Authority Key Identifier:
keyid:5F:E5:8E:73:2A:0F:71:F4:F0:13:02:D6:21:67:17:3B:D9:B1:7C:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X-WOcyoPcfTwEwLWIWcXO9mxfME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/miZua6kl5yAy3lFc9tLCCTMSeWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/X-WOcyoPcfTwEwLWIWcXO9mxfME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.0.0.0/16
57.2.0.0/15
57.13.0.0/16
57.16.0.0/14
57.27.0.0/16
57.33.0.0/16
57.49.0.0-57.50.255.255
57.52.0.0/16
57.54.0.0/15
57.61.0.0-57.63.255.255
57.192.0.0/16
57.226.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b1:06:ec:1b:b8:44:2f:d0:50:25:54:ed:03:3c:f2:2a:d8:2f:
8b:3c:18:63:8e:a3:a1:f3:05:3d:8f:7d:b3:75:46:b8:a3:53:
b8:70:61:7c:c2:9d:ab:3a:a1:7a:5e:a0:68:6c:c4:af:9f:49:
f4:86:61:f9:91:47:89:b1:1d:8e:f3:ee:89:93:a5:a9:75:a3:
3a:54:4e:45:98:1a:14:1b:cc:73:90:02:e7:55:d0:f9:4f:da:
79:d2:6a:10:69:bd:a9:7c:ef:44:68:d3:f1:90:f4:1b:20:a6:
3a:67:b2:5e:ab:64:20:94:b6:2a:ec:08:65:13:4d:52:1c:32:
b2:32:ed:b8:c0:95:62:9b:3c:c9:38:ec:d4:be:ea:e8:61:cc:
f5:25:c0:18:b6:83:71:60:33:b0:c2:79:5b:28:d3:6d:b9:7e:
c1:43:8a:49:2a:fb:a1:b4:41:11:b0:44:64:c9:56:60:a0:c0:
12:42:59:80:32:76:df:d9:ee:88:58:c0:f5:10:3e:2c:01:69:
dc:cb:03:c5:61:a1:2e:1b:78:80:95:62:18:a5:52:94:e2:08:
36:73:80:c3:da:16:07:b1:bf:2d:ba:a4:fa:93:fb:8a:4a:2f:
ea:92:e1:73:20:d8:54:c6:3b:de:67:6a:ec:da:fd:cd:0c:94:
5f:5a:fb:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:44 2024 by rpki-client on console-fra.rpki-client.org