Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/5AnsezkM_WhBiuKfj_7wiPWNDMQ.roa
File: 5AnsezkM_WhBiuKfj_7wiPWNDMQ.roa (raw, json)
Hash identifier: JSE9csf3VS9gkpwZZiztVHv1GPpchPIj9QZ2W9dmsyI=
Subject key identifier: E4:09:EC:7B:39:0C:FD:68:41:8A:E2:9F:8F:FE:F0:88:F5:8D:0C:C4
Certificate issuer: /CN=42cde365d7d2b58506e4d4abf0c2ef7cd5e3b462
Certificate serial: 34349B1E
Authority key identifier: 42:CD:E3:65:D7:D2:B5:85:06:E4:D4:AB:F0:C2:EF:7C:D5:E3:B4:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs3jZdfStYUG5NSr8MLvfNXjtGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/5AnsezkM_WhBiuKfj_7wiPWNDMQ.roa
Signing time: Sat 01 Jan 2022 15:02:46 +0000
ROA not before: Sat 01 Jan 2022 15:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 150.252.224.0/20 maxlen: 24
77.239.128.0/19 maxlen: 24
95.142.176.0/20 maxlen: 24
178.236.160.0/20 maxlen: 24
81.21.16.0/20 maxlen: 24
185.25.72.0/22 maxlen: 24
82.134.192.0/18 maxlen: 18
185.3.108.0/22 maxlen: 24
82.113.192.0/19 maxlen: 24
217.61.160.0/20 maxlen: 24
176.57.112.0/20 maxlen: 24
45.33.224.0/20 maxlen: 24
82.97.224.0/20 maxlen: 24
37.148.224.0/21 maxlen: 24
80.210.96.0/19 maxlen: 24
82.180.32.0/19 maxlen: 24
5.8.96.0/19 maxlen: 24
5.63.168.0/21 maxlen: 24
2a00:7ca0::/32 maxlen: 32
2a02:1630::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 875862814 (0x34349b1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42cde365d7d2b58506e4d4abf0c2ef7cd5e3b462
Validity
Not Before: Jan 1 15:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e409ec7b390cfd68418ae29f8ffef088f58d0cc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:19:45:97:37:3e:7a:8b:d2:f2:72:66:85:ae:
a3:33:37:e8:5f:60:b2:e1:0e:9e:e2:d5:b2:b5:c0:
bc:ce:5a:f4:b3:ea:ac:ce:6f:77:ec:59:c1:ec:2f:
c5:6b:da:1c:b6:93:ab:5b:69:60:52:bc:ac:3d:cc:
59:21:6b:07:bb:87:5b:5a:e7:7e:b2:8a:0b:91:d0:
2f:84:41:1a:62:e7:8a:6e:05:b3:c0:93:e2:32:0b:
7b:71:80:8a:98:7f:d0:4d:23:6d:f6:75:74:4c:dc:
03:60:6a:bf:09:ba:61:82:75:1d:f3:e0:e6:05:21:
21:09:27:e2:42:67:cd:54:6d:24:36:92:6e:e2:5e:
45:3f:6f:f1:81:f0:b7:8a:8f:31:ec:3e:a9:bd:d8:
d8:62:83:9a:7c:73:40:d4:b5:54:d9:33:d0:50:72:
48:7a:f0:54:05:3d:2d:ab:9d:f8:30:8e:5c:54:f7:
12:c4:17:04:15:32:e3:f8:83:27:7f:b1:42:20:e1:
cd:5c:c6:7e:b5:92:9b:4e:e0:a1:50:c5:0c:91:1a:
d8:6b:d3:55:84:99:25:14:c3:0e:f4:89:ff:d6:40:
c1:1f:98:a8:76:94:af:29:ff:88:10:bd:dc:69:91:
c9:9c:1c:7d:31:a4:50:5a:d0:74:50:54:54:b6:1d:
35:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:09:EC:7B:39:0C:FD:68:41:8A:E2:9F:8F:FE:F0:88:F5:8D:0C:C4
X509v3 Authority Key Identifier:
keyid:42:CD:E3:65:D7:D2:B5:85:06:E4:D4:AB:F0:C2:EF:7C:D5:E3:B4:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs3jZdfStYUG5NSr8MLvfNXjtGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/5AnsezkM_WhBiuKfj_7wiPWNDMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/Qs3jZdfStYUG5NSr8MLvfNXjtGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.96.0/19
5.63.168.0/21
37.148.224.0/21
45.33.224.0/20
77.239.128.0/19
80.210.96.0/19
81.21.16.0/20
82.97.224.0/20
82.113.192.0/19
82.134.192.0/18
82.180.32.0/19
95.142.176.0/20
150.252.224.0/20
176.57.112.0/20
178.236.160.0/20
185.3.108.0/22
185.25.72.0/22
217.61.160.0/20
IPv6:
2a00:7ca0::/32
2a02:1630::/32
Signature Algorithm: sha256WithRSAEncryption
37:c1:d1:5a:89:34:67:2a:4a:dc:fc:4a:7b:f4:fd:d4:4f:a6:
62:49:e0:55:44:b1:77:c0:8e:bf:5b:b4:47:6c:a1:f3:d1:82:
fc:69:f8:c3:83:60:f6:f9:ff:8f:d7:e2:06:c4:13:4b:ac:05:
c8:7f:3f:60:f3:fa:7a:32:c6:f3:cc:ef:83:a7:d5:27:b9:ee:
30:55:84:b9:46:28:c1:9c:58:1c:a2:86:86:51:b8:98:3d:75:
9e:1f:10:d0:1f:73:3c:12:a7:e4:a6:93:79:1a:2a:84:13:de:
70:78:16:3d:86:07:9d:3d:5b:95:d6:9b:f6:91:88:35:52:93:
a2:7f:d1:12:3f:05:ee:27:4a:3f:50:af:9d:43:44:eb:7c:e2:
c8:ba:ec:63:72:2d:5f:0f:06:b9:4e:64:0f:78:1d:f2:bc:1a:
6e:98:90:90:20:9f:be:f4:08:85:90:bd:39:7c:d5:bc:8b:8b:
39:67:ec:ce:57:52:0e:9c:e2:04:14:60:5e:29:de:1c:b7:4f:
a7:22:ee:96:43:da:fe:57:12:e8:d1:79:17:df:9c:c2:29:6c:
97:b4:37:d7:76:f4:c9:bc:3e:c3:8e:dc:13:11:4f:61:00:51:
59:bb:4a:32:fd:56:56:bc:d5:ef:28:27:87:3a:0e:04:1c:03:
9e:d7:d3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:51 2023 by rpki-client on console-fra.rpki-client.org