Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/m_Gin0EHWOWOJpBnm9QSHXLzVI0.roa
File: m_Gin0EHWOWOJpBnm9QSHXLzVI0.roa (raw, json)
Hash identifier: /MbA0Pq2ds3mrFbuAmma/CIW3h93MioKU0JHm14hPe4=
Subject key identifier: 9B:F1:A2:9F:41:07:58:E5:8E:26:90:67:9B:D4:12:1D:72:F3:54:8D
Certificate issuer: /CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Certificate serial: 018456386F032F9375C03F9498EAD30574C1
Authority key identifier: 5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/m_Gin0EHWOWOJpBnm9QSHXLzVI0.roa
Signing time: Tue 08 Nov 2022 07:50:49 +0000
ROA not before: Tue 08 Nov 2022 07:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34373
IP address blocks: 185.97.228.0/22 maxlen: 22
185.165.68.0/22 maxlen: 22
45.128.64.0/22 maxlen: 24
86.48.68.0/22 maxlen: 22
91.219.76.0/22 maxlen: 22
193.105.233.0/24 maxlen: 24
185.56.52.0/22 maxlen: 22
185.69.204.0/22 maxlen: 22
185.116.40.0/22 maxlen: 23
185.210.128.0/22 maxlen: 24
217.61.253.0/24 maxlen: 24
2a0b:ec00::/29 maxlen: 29
2a06:7bc0::/29 maxlen: 29
2a0b:57c0::/29 maxlen: 36
2a06:900::/29 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:56:38:6f:03:2f:93:75:c0:3f:94:98:ea:d3:05:74:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Validity
Not Before: Nov 8 07:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bf1a29f410758e58e2690679bd4121d72f3548d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ee:a8:4e:bf:85:ad:92:49:7f:a9:08:5a:e1:
e0:c4:ee:f9:47:ec:8b:0d:1b:62:fe:92:6d:7b:db:
bd:20:b0:07:ed:82:04:40:ce:58:b5:f3:af:7f:f8:
1e:11:2a:e8:e3:77:fc:3d:5d:f5:3d:71:e8:2b:2a:
f7:22:ae:ac:ec:9e:86:5a:03:85:f0:bd:2c:f3:6a:
6c:20:b1:30:bf:10:ea:1f:32:39:ce:a3:f1:ae:43:
fe:8c:15:97:6f:e8:4a:2f:c1:28:d4:fb:f6:14:19:
3e:af:f7:eb:10:79:30:ab:a7:a5:b8:ce:44:2d:b9:
74:55:2e:a8:28:ae:a6:32:44:16:81:59:6d:70:0d:
dd:ee:ab:93:e9:63:b5:7f:4d:72:29:2c:f6:63:b1:
6b:6c:70:fd:f3:63:32:f1:ec:38:51:63:55:ef:c6:
82:bb:00:91:39:92:77:fa:e6:af:fc:48:3f:81:01:
f8:3f:03:d1:3f:ad:43:69:34:f7:6a:0f:e2:65:a1:
bb:01:0e:ef:90:b5:19:64:13:47:9c:79:0e:86:1a:
d3:59:dd:16:d8:9f:4e:e8:91:01:7d:60:6e:1c:c5:
84:36:af:9c:3a:fc:fc:5b:47:22:d4:d1:cf:78:6d:
28:37:22:c8:85:b8:63:3f:eb:e3:12:34:ca:c2:58:
9c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F1:A2:9F:41:07:58:E5:8E:26:90:67:9B:D4:12:1D:72:F3:54:8D
X509v3 Authority Key Identifier:
keyid:5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/m_Gin0EHWOWOJpBnm9QSHXLzVI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/W-qBqpshl9kSe0QlJRAP-qNuDVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.64.0/22
86.48.68.0/22
91.219.76.0/22
185.56.52.0/22
185.69.204.0/22
185.97.228.0/22
185.116.40.0/22
185.165.68.0/22
185.210.128.0/22
193.105.233.0/24
217.61.253.0/24
IPv6:
2a06:900::/29
2a06:7bc0::/29
2a0b:57c0::/29
2a0b:ec00::/29
Signature Algorithm: sha256WithRSAEncryption
45:49:c9:cc:99:9e:d4:96:e4:0c:24:4c:0a:b3:ca:59:de:6d:
4b:44:a9:46:d6:bb:78:ae:81:09:24:be:e1:4f:95:71:3f:26:
38:00:fd:48:ba:ef:45:02:16:81:34:6b:4a:7b:dd:07:2e:70:
f8:e0:0c:55:52:9c:5d:5b:b8:a5:d0:f2:47:0d:f3:04:64:9f:
ed:ee:f2:6e:b4:65:86:00:47:a6:c9:2e:09:f9:85:3d:9f:a6:
05:ef:ed:e0:fd:fa:27:ce:2a:3f:99:a6:ce:f7:f1:81:b9:16:
62:63:15:6b:86:fd:19:4d:59:b9:73:06:f0:88:20:94:6b:a9:
92:19:d4:ce:ae:89:90:65:50:98:4e:7a:92:a0:bc:f5:ff:e5:
88:61:87:6d:ad:07:b0:8b:f2:1e:73:cd:b9:9c:b4:d0:b1:45:
20:5c:c6:a5:b1:57:f6:27:fb:0c:89:cc:b1:d4:23:9c:74:a1:
9c:08:10:d8:06:7f:23:58:ed:36:a4:5f:37:0c:fb:49:df:40:
b0:c8:b1:a8:5d:9f:f5:a1:8f:87:e0:9d:f5:c6:98:7a:c7:ae:
e4:df:77:5b:b0:aa:17:fd:05:aa:c9:9e:61:1a:6a:68:90:44:
ae:ca:54:f0:89:93:9a:2f:70:21:ba:22:a2:96:fc:51:df:85:
c2:e6:99:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:18 2024 by rpki-client on console-ams.rpki-client.org