Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/vMZ0csXXYVenjqqLhl4rjCCD_RA.roa
File: vMZ0csXXYVenjqqLhl4rjCCD_RA.roa (raw, json)
Hash identifier: cc88BtvKGf0xoKUxUburRaFrpTeRhD5tKCauR4DgIAM=
Subject key identifier: BC:C6:74:72:C5:D7:61:57:A7:8E:AA:8B:86:5E:2B:8C:20:83:FD:10
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 0A216887
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/vMZ0csXXYVenjqqLhl4rjCCD_RA.roa
Signing time: Sat 01 Jan 2022 11:56:13 +0000
ROA not before: Sat 01 Jan 2022 11:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 5.182.244.0/24 maxlen: 24
93.157.189.0/24 maxlen: 24
185.233.246.0/24 maxlen: 24
93.157.191.0/24 maxlen: 24
185.233.245.0/24 maxlen: 24
89.200.216.0/24 maxlen: 24
89.200.218.0/24 maxlen: 24
89.200.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169961607 (0xa216887)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 1 11:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcc67472c5d76157a78eaa8b865e2b8c2083fd10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1a:cd:25:59:ec:cc:c9:d3:80:da:72:a0:86:
b5:2a:d4:ee:60:3a:c3:1f:cd:e1:bf:05:42:d6:e5:
37:08:f7:be:f8:2a:89:93:bd:a9:e6:8d:a1:70:c3:
7d:be:1f:7f:28:c1:4b:e0:bb:75:11:de:24:23:92:
e1:02:f5:a8:6a:4a:43:c1:7e:72:0d:32:30:43:ae:
c4:9f:cb:3f:76:36:79:bd:0e:a5:ba:c1:94:38:2c:
b2:39:2a:88:ef:d9:84:05:88:fe:e1:75:03:c9:44:
14:1b:8b:ae:3f:cf:91:71:27:30:6b:a3:8c:16:76:
50:7f:fa:37:4b:3c:0e:1f:aa:4c:67:56:58:37:f8:
94:cf:95:de:5d:3c:8c:99:79:35:df:ab:59:69:7d:
61:af:93:13:fc:ee:e3:2b:44:0b:7e:b0:55:92:cc:
7f:f8:6a:0c:23:01:75:bf:76:bb:5d:92:52:ab:c5:
15:31:e6:de:16:d7:e5:77:d9:55:6b:cc:f1:da:64:
30:6b:09:46:7d:81:02:f8:67:06:01:78:0e:86:bb:
39:5d:de:a7:c0:e5:e1:90:f3:ea:eb:c3:da:d6:e7:
db:3c:25:d8:f9:df:fd:9b:93:d2:60:3d:cf:f1:73:
8e:0c:7c:bb:68:8b:9d:23:c6:1e:bd:04:38:fb:04:
f4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C6:74:72:C5:D7:61:57:A7:8E:AA:8B:86:5E:2B:8C:20:83:FD:10
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/vMZ0csXXYVenjqqLhl4rjCCD_RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.244.0/24
89.200.216.0/24
89.200.218.0/23
93.157.189.0/24
93.157.191.0/24
185.233.245.0-185.233.246.255
Signature Algorithm: sha256WithRSAEncryption
1c:31:49:9c:32:e6:96:1b:0c:4e:5a:6a:c8:bd:7c:dd:48:9d:
86:51:bc:b5:fa:d6:bb:ee:96:cc:8d:75:50:18:1e:07:b4:73:
07:e8:c5:25:79:58:5f:82:c2:ba:69:5a:34:24:0a:8a:a0:c3:
3f:32:c2:e9:7d:cd:92:ae:e1:3a:f7:d3:b8:97:9c:6c:68:13:
22:a5:e5:0d:e5:a8:46:ab:13:9c:d4:2a:59:4a:ad:99:fa:36:
88:4c:26:8a:31:bb:c1:a4:b4:ae:30:a8:90:ec:ef:aa:07:c2:
e6:99:9d:17:f3:00:0a:a3:7c:d7:90:b0:64:cd:2a:bc:d5:7e:
09:c6:d0:df:d7:75:1e:80:c4:9f:d1:17:88:f6:06:cf:6a:65:
b7:ab:65:a1:24:a8:6c:28:a1:80:9a:65:05:34:6d:91:35:bf:
b4:51:c8:ea:4b:ea:18:e0:8d:08:a6:8c:78:90:e8:47:47:40:
45:e2:d5:d6:45:a4:74:9f:77:df:35:22:c5:17:a7:c2:c9:fa:
0a:45:90:7e:46:91:45:37:be:0e:5e:70:2c:80:e3:2a:99:f1:
c3:db:e4:df:e1:61:3b:99:80:7a:3a:df:a7:1a:22:fa:42:ea:
42:fc:a1:a4:ec:ee:b5:11:06:b9:32:e5:30:f1:a2:17:06:0d:
41:c7:1b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org