Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/be3pI5RKleQIh799JzRf5_Id-uM.roa
File: be3pI5RKleQIh799JzRf5_Id-uM.roa (raw, json)
Hash identifier: cdUX28A3mcIba5PrhYWFWOUlt33bKFHs5BXnw8mF9Ag=
Subject key identifier: 6D:ED:E9:23:94:4A:95:E4:08:87:BF:7D:27:34:5F:E7:F2:1D:FA:E3
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 01827DADDA22C107E4A460BD9A0C76EB57DD
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/be3pI5RKleQIh799JzRf5_Id-uM.roa
Signing time: Mon 08 Aug 2022 13:38:41 +0000
ROA not before: Mon 08 Aug 2022 13:38:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15895
IP address blocks: 81.23.16.0/24 maxlen: 24
81.23.16.0/20 maxlen: 20
85.223.128.0/17 maxlen: 17
37.229.0.0/16 maxlen: 16
176.8.0.0/16 maxlen: 16
188.163.0.0/17 maxlen: 17
212.109.32.0/19 maxlen: 19
188.163.0.0/16 maxlen: 16
46.185.0.0/17 maxlen: 17
94.153.0.0/16 maxlen: 16
134.249.0.0/16 maxlen: 16
212.82.192.0/19 maxlen: 19
62.64.64.0/18 maxlen: 18
77.247.216.0/21 maxlen: 21
109.162.0.0/17 maxlen: 17
94.153.164.0/22 maxlen: 22
94.27.0.0/17 maxlen: 17
46.118.0.0/15 maxlen: 15
83.170.192.0/18 maxlen: 18
193.41.60.0/22 maxlen: 22
193.41.60.0/23 maxlen: 23
193.41.62.0/23 maxlen: 23
89.162.128.0/17 maxlen: 17
5.248.0.0/16 maxlen: 16
37.115.0.0/16 maxlen: 16
46.211.0.0/16 maxlen: 16
178.137.0.0/16 maxlen: 16
2a02:2378::/32 maxlen: 32
2a02:8a8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7d:ad:da:22:c1:07:e4:a4:60:bd:9a:0c:76:eb:57:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Aug 8 13:38:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dede923944a95e40887bf7d27345fe7f21dfae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b5:a4:cc:5e:aa:ef:54:cd:4c:99:b0:73:24:
24:76:68:1e:d6:d5:32:42:31:40:9a:35:31:1d:ee:
c3:b5:30:70:df:39:22:fb:88:0c:3e:98:d5:7d:a1:
13:80:9b:92:6a:49:5e:7b:38:ee:a6:9c:28:91:a3:
30:6a:ab:17:c8:7d:6c:8f:5e:6a:ff:bc:06:c6:13:
ca:2d:3d:bc:11:8c:5d:fd:35:10:24:6a:fb:d1:85:
a6:29:70:91:f7:59:13:7e:9f:ed:84:26:40:10:98:
97:42:b7:b9:93:52:af:e1:4d:6f:2e:4e:86:48:1e:
67:7f:55:9c:cb:3f:9a:e1:f4:01:f8:8a:40:ea:b3:
5e:b3:34:a5:44:cf:fd:c8:ef:ca:a8:67:dc:65:21:
89:fb:96:d9:a9:7e:e7:24:88:68:f9:2d:7c:74:c5:
7e:00:70:80:fb:93:94:1f:68:99:f1:dc:0a:10:f2:
20:29:fc:be:40:23:df:d9:43:8c:74:4a:d3:f2:56:
f8:da:98:23:f1:23:22:a2:1a:38:56:fa:1d:67:85:
e6:7f:b0:2f:55:df:2f:58:37:af:a3:9e:76:80:ea:
52:c7:fe:62:7b:54:18:5e:6c:f0:ef:2d:4d:53:ad:
92:bd:f8:45:aa:41:b0:93:84:1b:70:e0:7a:82:41:
68:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:ED:E9:23:94:4A:95:E4:08:87:BF:7D:27:34:5F:E7:F2:1D:FA:E3
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/be3pI5RKleQIh799JzRf5_Id-uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.248.0.0/16
37.115.0.0/16
37.229.0.0/16
46.118.0.0/15
46.185.0.0/17
46.211.0.0/16
62.64.64.0/18
77.247.216.0/21
81.23.16.0/20
83.170.192.0/18
85.223.128.0/17
89.162.128.0/17
94.27.0.0/17
94.153.0.0/16
109.162.0.0/17
134.249.0.0/16
176.8.0.0/16
178.137.0.0/16
188.163.0.0/16
193.41.60.0/22
212.82.192.0/19
212.109.32.0/19
IPv6:
2a02:8a8::/32
2a02:2378::/32
Signature Algorithm: sha256WithRSAEncryption
11:f8:34:60:d5:64:f5:87:2f:a2:8b:d9:2a:b8:95:08:c5:b0:
bf:d8:49:6d:22:7b:8b:70:69:7a:07:21:43:27:cf:8c:e4:5b:
2f:f1:4e:d1:46:e8:60:c1:de:f6:e2:d0:17:d9:bc:98:db:29:
6a:bc:59:cd:b9:0d:01:05:e5:75:98:2f:ca:16:52:1e:d1:f9:
c5:68:51:29:fe:23:61:ca:05:2c:3e:4e:f0:cb:bf:f7:98:6a:
34:a9:f9:7a:a5:4e:b1:6b:f2:73:23:63:65:f2:79:76:40:b1:
e9:52:36:f1:11:9b:28:c9:b7:10:97:26:21:49:8f:29:ba:e2:
17:05:63:82:15:ad:b9:19:a8:99:78:98:48:a3:08:ca:c6:fc:
b2:14:98:e6:5c:03:6a:16:cb:06:fd:66:3e:a9:6a:38:65:ac:
0a:f3:6c:cd:ec:57:61:6d:fa:20:db:f3:15:47:8a:42:33:b2:
99:85:d8:f3:56:3b:77:cc:0c:79:0f:1d:ae:a4:0d:6a:64:c4:
6a:3f:55:c1:de:45:66:1a:9c:1e:8d:0b:51:c2:ef:60:e2:c4:
e2:fd:43:b6:05:eb:9b:ba:c2:d2:77:c0:04:2d:9e:fa:2a:8c:
ef:49:9a:31:3f:e1:df:fe:73:e4:fd:b7:75:af:b9:7c:83:f2:
73:91:48:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org