Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/Vn5FIBMKFD6ilhMgSwEtQ0L5EI0.roa
File: Vn5FIBMKFD6ilhMgSwEtQ0L5EI0.roa (raw, json)
Hash identifier: pOIg5jtNGNZIEfGBavTQ25DHv77cXsBZ6moZjrJHefw=
Subject key identifier: 56:7E:45:20:13:0A:14:3E:A2:96:13:20:4B:01:2D:43:42:F9:10:8D
Certificate issuer: /CN=5a141c5090824d0a17c29ec4050e21007113fbda
Certificate serial: 369B84DD
Authority key identifier: 5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/Vn5FIBMKFD6ilhMgSwEtQ0L5EI0.roa
Signing time: Sat 01 Jan 2022 07:03:38 +0000
ROA not before: Sat 01 Jan 2022 07:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 185.85.76.0/22 maxlen: 22
5.63.24.0/21 maxlen: 21
91.190.168.0/21 maxlen: 21
2a02:798::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916161757 (0x369b84dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a141c5090824d0a17c29ec4050e21007113fbda
Validity
Not Before: Jan 1 07:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=567e4520130a143ea29613204b012d4342f9108d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:50:69:65:d8:3b:2c:5c:b8:2b:12:6b:4b:ba:
17:1c:44:98:a4:12:f5:3e:7b:e3:af:a4:ff:55:0b:
86:91:a1:c7:35:d4:f7:c2:f0:3f:bd:62:50:cc:95:
3c:e8:b3:44:26:c4:a5:2d:7d:8e:f3:74:92:da:18:
84:c3:24:b8:91:57:a4:5a:44:a5:57:03:92:b1:c3:
58:b7:4b:9e:52:12:11:4a:47:61:7c:3b:83:56:fc:
41:53:8c:8c:7e:11:26:b1:0a:47:ec:ac:44:23:9e:
cf:99:80:1b:a5:8c:08:62:03:ad:19:8c:7c:6b:86:
e7:13:c4:0a:f7:15:21:4e:51:2b:24:f6:27:35:27:
ff:d7:e3:4a:89:11:5e:79:9e:af:3e:4b:45:21:1d:
f0:6a:0b:3a:33:1c:9d:72:20:7e:1a:37:03:7e:31:
95:e4:81:00:5c:15:01:5d:3c:0e:69:bd:bd:d1:fb:
88:2a:76:49:61:7c:a1:d3:b3:79:39:e1:26:1d:4e:
56:00:fc:b8:ff:71:77:a0:4d:77:df:ce:ac:c7:39:
59:92:42:f6:e8:a4:cf:2b:cc:47:22:57:13:20:4d:
ee:ed:4d:0f:ec:5d:2a:dc:7c:84:b0:a4:17:97:fd:
a3:21:ab:d6:62:19:2f:e4:1f:5d:3e:b1:89:3b:a0:
df:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7E:45:20:13:0A:14:3E:A2:96:13:20:4B:01:2D:43:42:F9:10:8D
X509v3 Authority Key Identifier:
keyid:5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/Vn5FIBMKFD6ilhMgSwEtQ0L5EI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/WhQcUJCCTQoXwp7EBQ4hAHET-9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.24.0/21
91.190.168.0/21
185.85.76.0/22
IPv6:
2a02:798::/32
Signature Algorithm: sha256WithRSAEncryption
35:4a:29:76:c8:55:e1:5a:48:e3:49:62:3e:67:1d:fa:cd:2f:
68:30:6b:9a:fe:f9:3a:de:a1:24:a6:bd:51:63:ee:7d:a9:83:
3f:8c:de:5d:9d:d3:e1:45:5c:bb:15:41:08:37:66:8e:46:a3:
23:a4:ef:40:87:c3:59:60:af:fa:5d:87:5f:89:be:b7:df:7b:
c5:92:05:bf:e2:e1:2f:dc:4c:d1:be:82:39:5f:da:b0:65:6b:
c1:5d:43:b4:80:4b:48:0d:03:0b:cb:c6:1e:53:be:26:4b:57:
3b:db:a7:94:6d:fd:e1:d6:3b:ad:aa:16:6a:bd:08:81:4d:78:
f6:ec:d2:d4:44:ae:11:fe:58:64:38:7d:4f:f8:2e:ad:52:8c:
97:f1:2f:cf:90:3f:99:0b:be:bd:fc:23:6e:ab:ed:ad:63:34:
ce:ac:b7:37:3c:bd:d4:a6:ba:4f:84:87:49:21:8e:c8:03:9d:
5b:82:80:66:4d:98:40:8f:cc:76:ab:22:8f:60:1f:a0:f0:21:
7a:70:0a:7f:57:d2:66:40:64:33:ab:e1:ee:d3:fe:0f:5e:c7:
3b:38:19:ab:dc:eb:53:3c:41:ca:c1:8c:24:fc:b5:79:94:47:
bf:ed:a0:77:22:11:30:43:1d:c6:4d:07:b3:37:2d:14:ad:fa:
59:bd:99:2b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:53 2024 by rpki-client on console-fra.rpki-client.org