Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/V_KpgESZdb2_SAhF7zsTII9vwKA.roa
File: V_KpgESZdb2_SAhF7zsTII9vwKA.roa (raw, json)
Hash identifier: tOcY1Md9qhJPcqf9lOrp5kv85MWDkkCYiLdUcO1zA4Y=
Subject key identifier: 57:F2:A9:80:44:99:75:BD:BF:48:08:45:EF:3B:13:20:8F:6F:C0:A0
Certificate issuer: /CN=0b9d86096a49110cf9bf670240b519315b66abcb
Certificate serial: 0BA55F4D
Authority key identifier: 0B:9D:86:09:6A:49:11:0C:F9:BF:67:02:40:B5:19:31:5B:66:AB:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C52GCWpJEQz5v2cCQLUZMVtmq8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/V_KpgESZdb2_SAhF7zsTII9vwKA.roa
Signing time: Mon 07 Mar 2022 12:35:24 +0000
ROA not before: Mon 07 Mar 2022 12:35:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20559
IP address blocks: 185.122.116.0/22 maxlen: 24
194.213.112.0/23 maxlen: 24
5.172.40.0/21 maxlen: 24
31.200.208.0/21 maxlen: 24
91.224.248.0/23 maxlen: 24
45.13.164.0/22 maxlen: 24
46.226.88.0/21 maxlen: 24
185.51.56.0/22 maxlen: 24
45.133.196.0/22 maxlen: 24
193.37.204.0/22 maxlen: 24
185.46.64.0/22 maxlen: 24
193.187.188.0/22 maxlen: 24
45.146.124.0/22 maxlen: 24
88.218.152.0/22 maxlen: 24
185.113.84.0/22 maxlen: 24
46.19.216.0/21 maxlen: 24
91.218.148.0/22 maxlen: 24
93.186.176.0/20 maxlen: 24
85.209.108.0/22 maxlen: 24
2a03:3400::/32 maxlen: 48
2a00:d10::/32 maxlen: 48
2a06:6940::/29 maxlen: 48
2a04:a840::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195387213 (0xba55f4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b9d86096a49110cf9bf670240b519315b66abcb
Validity
Not Before: Mar 7 12:35:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57f2a980449975bdbf480845ef3b13208f6fc0a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9d:2d:8e:53:6d:63:82:de:db:7b:db:03:82:
2d:f0:b6:fa:ef:02:42:6e:63:1e:40:47:75:a7:80:
04:5b:68:29:a9:e5:4c:bf:82:b6:88:25:41:bf:f7:
bf:ae:9b:d1:90:4a:f2:8e:75:f9:1b:69:1e:74:cf:
22:f1:a9:bb:fc:82:31:06:ee:10:c7:35:a7:7c:72:
46:48:47:6d:bd:3a:f7:80:4f:7c:18:b2:f7:61:14:
35:43:65:e0:69:a0:e5:6b:a2:48:fa:42:c1:70:45:
2b:53:cc:c9:78:0b:c3:e9:f1:3d:4e:8e:b0:46:3a:
c0:f8:80:c7:49:7d:8d:7e:d1:d5:66:e2:12:a2:05:
fd:06:3c:2b:4f:4b:79:cc:7a:65:dd:00:12:7c:be:
f1:f9:41:b0:02:f7:3d:d6:c6:b4:e8:66:a3:90:a4:
45:50:7f:11:52:08:9c:c4:59:81:b5:3c:58:63:99:
68:89:75:0b:9f:d6:77:cc:f3:bc:06:f6:9a:ac:58:
e7:14:b9:18:c6:a5:6b:15:20:41:f1:ac:6a:96:17:
db:19:fc:9f:ed:40:3f:8e:62:03:ac:c4:f7:07:a9:
48:ce:8f:fc:83:75:e8:16:88:97:91:24:e5:c4:dd:
da:f5:50:42:31:a0:35:f4:e4:15:cb:a1:52:db:67:
49:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:F2:A9:80:44:99:75:BD:BF:48:08:45:EF:3B:13:20:8F:6F:C0:A0
X509v3 Authority Key Identifier:
keyid:0B:9D:86:09:6A:49:11:0C:F9:BF:67:02:40:B5:19:31:5B:66:AB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C52GCWpJEQz5v2cCQLUZMVtmq8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/V_KpgESZdb2_SAhF7zsTII9vwKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1e1a97-f276-4a51-b1b5-8c10909a485c/1/C52GCWpJEQz5v2cCQLUZMVtmq8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.40.0/21
31.200.208.0/21
45.13.164.0/22
45.133.196.0/22
45.146.124.0/22
46.19.216.0/21
46.226.88.0/21
85.209.108.0/22
88.218.152.0/22
91.218.148.0/22
91.224.248.0/23
93.186.176.0/20
185.46.64.0/22
185.51.56.0/22
185.113.84.0/22
185.122.116.0/22
193.37.204.0/22
193.187.188.0/22
194.213.112.0/23
IPv6:
2a00:d10::/32
2a03:3400::/32
2a04:a840::/29
2a06:6940::/29
Signature Algorithm: sha256WithRSAEncryption
ca:13:b2:36:da:a1:4a:b6:e2:6f:60:82:a3:a6:1d:cd:55:32:
dd:96:13:95:ca:03:23:ad:67:86:81:4e:ea:31:93:16:ee:af:
0e:c0:f9:3b:98:81:88:7b:c2:a0:79:c8:74:21:1c:62:0e:58:
3d:f0:c9:fb:01:db:94:e2:13:a1:e3:fa:af:67:cf:bf:a1:8b:
c7:77:b5:70:14:9f:fa:f4:89:3e:06:05:56:b4:3c:46:3a:6d:
62:10:73:61:16:88:98:f1:18:df:b7:af:b5:da:c2:67:91:53:
ff:76:bb:e5:5e:77:ef:0f:32:ac:72:84:59:7a:3c:07:a1:c7:
97:d2:81:eb:65:cd:17:44:37:3c:92:82:f6:d0:f0:62:50:80:
d8:d6:a1:1c:f3:24:d1:bd:f8:da:10:1a:57:a0:b7:c0:cf:b4:
9c:07:94:9d:24:69:3c:bf:e0:01:87:35:21:25:cf:54:e0:92:
71:f4:0d:37:4d:9f:8b:5c:40:09:8f:f5:7e:2c:0b:20:97:be:
bc:8f:7d:72:a4:44:98:56:43:73:65:55:84:e1:ff:ab:55:3e:
88:38:b5:de:8d:98:79:2b:aa:b7:54:7d:0d:76:52:de:50:6e:
4d:62:c1:ec:bc:75:c7:f6:de:fa:4f:bb:b2:d2:2a:f5:62:13:
0e:6e:08:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:23 2024 by rpki-client on console-fra.rpki-client.org