Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/56w5fVRKaXJqdPTGG-NfIzusgaA.roa
File: 56w5fVRKaXJqdPTGG-NfIzusgaA.roa (raw, json)
Hash identifier: 8n8U0dNvNQGwaxQQU8TNBynIs6tBGEk15PewFpDNjZM=
Subject key identifier: E7:AC:39:7D:54:4A:69:72:6A:74:F4:C6:1B:E3:5F:23:3B:AC:81:A0
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 3821904F
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/56w5fVRKaXJqdPTGG-NfIzusgaA.roa
Signing time: Tue 19 Apr 2022 23:04:53 +0000
ROA not before: Tue 19 Apr 2022 23:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48854
IP address blocks: 185.134.28.0/22 maxlen: 22
195.178.14.0/23 maxlen: 23
185.21.40.0/22 maxlen: 22
212.97.132.0/22 maxlen: 22
212.97.140.0/22 maxlen: 22
94.143.8.0/21 maxlen: 21
93.191.152.0/21 maxlen: 21
93.191.152.0/22 maxlen: 22
217.61.236.0/22 maxlen: 22
93.191.156.0/24 maxlen: 24
93.191.158.0/24 maxlen: 24
93.191.157.0/24 maxlen: 24
89.188.72.0/21 maxlen: 21
185.25.141.0/24 maxlen: 24
94.231.96.0/20 maxlen: 20
94.231.103.0/24 maxlen: 24
185.223.24.0/22 maxlen: 22
185.221.36.0/22 maxlen: 22
212.237.248.0/23 maxlen: 23
194.150.112.0/22 maxlen: 22
185.20.204.0/22 maxlen: 22
185.20.205.0/24 maxlen: 24
185.20.206.0/23 maxlen: 23
2a06:eac0::/29 maxlen: 48
2a02:2338::/32 maxlen: 48
2a02:2339:4000::/34 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941723727 (0x3821904f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Apr 19 23:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7ac397d544a69726a74f4c61be35f233bac81a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:0b:d6:f7:6b:8e:96:d5:97:4d:93:4d:2e:64:
52:37:79:33:3e:5c:be:8a:3a:13:33:85:03:40:6b:
3b:e1:b0:de:c2:d8:8a:e7:55:89:aa:75:8a:a0:2e:
78:31:98:14:56:43:ab:da:9c:f4:76:47:b7:65:19:
74:eb:6f:2b:5d:75:21:94:92:73:60:76:8d:84:a5:
d5:00:db:af:09:6d:77:91:1f:ca:3a:fd:57:b6:4f:
5b:7d:65:c6:83:83:63:5f:33:b0:eb:f2:f2:73:10:
0a:b4:d0:f7:3f:61:dc:38:5a:c2:96:57:59:99:4d:
85:0d:fa:94:8b:b3:90:2b:58:87:56:fd:e9:83:1a:
2b:0a:42:28:06:c3:8e:25:24:42:81:e1:c9:b5:80:
86:81:73:09:4c:16:1c:d3:66:55:ad:a5:ca:3e:05:
57:1d:ad:80:1e:ae:93:3b:71:27:4b:34:35:77:c2:
0a:13:23:8b:3d:f0:47:a4:c0:64:77:36:6a:73:31:
57:1b:a2:9d:26:b5:05:04:23:3a:14:78:2c:6a:79:
48:d0:3f:21:da:c3:ea:54:eb:64:47:5b:5e:da:1b:
11:8f:e0:d3:2f:dd:0b:9f:04:22:2b:24:2b:43:e8:
eb:0d:ba:42:ea:64:eb:53:bf:13:38:56:e4:ca:af:
88:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AC:39:7D:54:4A:69:72:6A:74:F4:C6:1B:E3:5F:23:3B:AC:81:A0
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/56w5fVRKaXJqdPTGG-NfIzusgaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.188.72.0/21
93.191.152.0/21
94.143.8.0/21
94.231.96.0/20
185.20.204.0/22
185.21.40.0/22
185.25.141.0/24
185.134.28.0/22
185.221.36.0/22
185.223.24.0/22
194.150.112.0/22
195.178.14.0/23
212.97.132.0/22
212.97.140.0/22
212.237.248.0/23
217.61.236.0/22
IPv6:
2a02:2338::/32
2a02:2339:4000::/34
2a06:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
79:15:4d:69:a1:22:06:48:89:a1:6f:69:51:5c:e8:a6:d1:5f:
ad:c8:f9:67:89:c8:ce:d0:61:e1:53:38:91:a9:f0:e7:75:eb:
4c:a6:91:58:75:a3:4e:f4:ea:8e:75:92:4a:3a:3d:b8:a8:71:
da:4d:8f:06:5e:92:70:a2:32:ef:3e:c1:79:61:c1:c0:47:c8:
d9:f3:ea:44:ea:ad:86:95:ed:50:8b:d4:99:34:06:83:f4:34:
85:49:a2:53:76:17:1c:3b:e7:64:f3:f9:ee:bb:f7:ab:16:cb:
5f:8c:d5:5e:7d:79:7d:b7:49:47:b5:fb:5d:2b:1b:ea:09:84:
5e:d9:c5:46:05:96:b5:fd:9e:64:69:2a:b1:5d:cd:ba:48:20:
e7:da:61:f6:61:2e:b6:cc:5a:50:fd:a3:8c:c3:f7:e3:7e:15:
5b:8d:6c:f4:36:b2:85:b7:38:48:d0:21:a7:e5:0c:a0:b5:88:
e9:69:90:7d:9f:80:7a:1f:68:29:ef:1a:2a:9a:d4:43:f5:5d:
57:c5:ce:2b:d9:13:3a:d9:b1:d1:1f:c6:8a:16:c2:85:09:87:
03:d0:4e:ab:04:0d:cd:3e:0d:b6:ea:ba:0e:47:52:2d:fd:4e:
c2:61:2b:96:3d:e0:ce:74:cd:71:65:99:94:a8:aa:2d:49:6b:
ca:96:72:a7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:51 2024 by rpki-client on console-ams.rpki-client.org