Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/IWQpb6I7WWd3cl1TisRWppurHeA.roa
File: IWQpb6I7WWd3cl1TisRWppurHeA.roa (raw, json)
Hash identifier: hJRpPLweF06yvPFt11uQh7Yyco6b77I4Dn5RXL5nM8A=
Subject key identifier: 21:64:29:6F:A2:3B:59:67:77:72:5D:53:8A:C4:56:A6:9B:AB:1D:E0
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 2E787263
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/IWQpb6I7WWd3cl1TisRWppurHeA.roa
Signing time: Fri 25 Feb 2022 10:39:46 +0000
ROA not before: Fri 25 Feb 2022 10:39:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5607
IP address blocks: 188.220.0.0/14 maxlen: 14
51.146.0.0/16 maxlen: 16
90.192.0.0/11 maxlen: 11
87.80.0.0/15 maxlen: 15
51.198.0.0/15 maxlen: 15
176.255.240.0/24 maxlen: 24
176.255.242.0/24 maxlen: 24
176.255.241.0/24 maxlen: 24
51.190.0.0/15 maxlen: 15
151.224.0.0/13 maxlen: 13
5.64.0.0/13 maxlen: 13
51.194.0.0/16 maxlen: 16
93.96.0.0/16 maxlen: 16
46.64.0.0/15 maxlen: 15
94.192.0.0/14 maxlen: 14
78.86.0.0/16 maxlen: 16
51.182.0.0/15 maxlen: 15
51.241.0.0/16 maxlen: 16
149.241.0.0/16 maxlen: 16
2.120.0.0/13 maxlen: 13
2.216.0.0/13 maxlen: 13
176.248.0.0/13 maxlen: 13
51.186.0.0/15 maxlen: 15
94.0.0.0/12 maxlen: 12
51.19.0.0/16 maxlen: 16
176.24.0.0/14 maxlen: 14
78.105.0.0/16 maxlen: 16
2a02:c78::/29 maxlen: 29
2a02:c7d:8000::/33 maxlen: 33
2a02:c7d::/33 maxlen: 33
2a02:c7f:8000::/33 maxlen: 33
2a02:c7f::/33 maxlen: 33
2a02:c7e:8000::/33 maxlen: 33
2a02:c7e::/33 maxlen: 33
2a02:c7c:8000::/33 maxlen: 33
2a02:c7c::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 779645539 (0x2e787263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: Feb 25 10:39:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2164296fa23b596777725d538ac456a69bab1de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:11:bc:37:09:c5:8e:ab:78:4c:f7:90:f8:5d:
5e:92:30:2d:92:08:07:c3:3d:df:7a:7d:f8:00:6a:
cb:80:03:a9:71:b6:96:5a:e4:0a:81:5f:83:f2:b7:
3e:53:f7:b9:0d:e6:bd:54:da:2c:3f:34:e7:7a:06:
af:5e:9a:ab:34:37:fe:f2:d9:5a:db:39:7e:bc:bf:
b6:5e:23:80:74:ff:0b:a2:83:68:c3:69:9c:5a:c7:
98:2f:1e:23:bc:ee:4b:6e:63:f8:2b:ee:ed:fa:c7:
70:ca:03:56:12:a5:51:f1:e3:4e:a5:d9:6f:f7:c5:
19:b3:93:4b:44:37:3e:2a:88:7b:ad:67:47:2a:48:
59:b8:d5:da:97:58:87:53:24:85:c6:74:ec:80:c6:
98:4d:ea:b6:26:f3:31:16:2b:16:56:2e:aa:f7:2b:
7c:30:d6:0f:3b:f0:8c:fc:1a:dc:6b:1e:1d:02:10:
11:82:41:56:5e:c5:3a:ef:95:a3:9d:3d:b1:45:26:
a0:78:16:71:09:93:b4:3c:6e:a6:20:41:e4:88:3b:
c9:e5:38:df:30:4c:21:95:e5:aa:3b:cf:67:8d:da:
82:e7:d5:f3:2d:80:54:ab:b1:44:f3:56:10:a1:93:
32:9e:e9:41:fb:75:61:52:7b:32:59:ba:7f:0d:c5:
e4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:64:29:6F:A2:3B:59:67:77:72:5D:53:8A:C4:56:A6:9B:AB:1D:E0
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/IWQpb6I7WWd3cl1TisRWppurHeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.120.0.0/13
2.216.0.0/13
5.64.0.0/13
46.64.0.0/15
51.19.0.0/16
51.146.0.0/16
51.182.0.0/15
51.186.0.0/15
51.190.0.0/15
51.194.0.0/16
51.198.0.0/15
51.241.0.0/16
78.86.0.0/16
78.105.0.0/16
87.80.0.0/15
90.192.0.0/11
93.96.0.0/16
94.0.0.0/12
94.192.0.0/14
149.241.0.0/16
151.224.0.0/13
176.24.0.0/14
176.248.0.0/13
188.220.0.0/14
IPv6:
2a02:c78::/29
Signature Algorithm: sha256WithRSAEncryption
32:ed:1c:56:f7:3e:14:a3:cc:79:14:fe:e8:f8:ec:db:f6:b6:
a2:e3:b1:b7:c3:fe:50:89:17:12:cc:eb:2e:40:e3:6a:b3:7e:
37:29:ad:03:7b:ee:c9:83:c8:85:33:91:e7:7d:64:34:d4:a0:
37:9d:08:28:70:ab:87:2f:fb:29:11:c8:e9:df:f4:d9:2d:20:
2f:dc:21:a0:d0:a3:9d:64:ba:ff:80:b3:81:42:5c:40:85:9f:
0c:70:ee:93:2b:65:fe:ff:40:5f:e8:6d:a7:1a:65:5b:ec:92:
5c:6a:eb:c7:15:b9:80:4d:1c:f8:06:19:3f:84:4b:ef:3e:c6:
db:74:a5:69:40:50:70:77:6c:68:e3:f1:07:98:a5:51:c7:5a:
aa:a7:b6:51:ec:42:f4:1c:78:bb:34:40:f6:46:5d:bc:8d:b3:
63:4c:be:75:8d:a5:78:fe:0e:21:39:d8:b2:ee:66:1a:95:dc:
51:1a:9b:f6:42:76:40:54:d6:cb:48:4b:26:23:e3:f5:7d:fd:
0d:af:f5:49:ee:a0:e6:c2:10:00:4b:33:79:ff:d7:a2:b3:ed:
13:d3:29:4a:29:42:ed:40:3a:29:d8:ae:2f:5a:a3:fb:7e:a3:
bd:48:18:7b:f6:dd:ff:64:f0:bb:2e:14:ad:32:5f:e3:46:51:
e9:f4:4c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:06 2024 by rpki-client on console-ams.rpki-client.org