Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/V5BXhfcSEviWbjoQ12jNMzGYlDM.roa
File: V5BXhfcSEviWbjoQ12jNMzGYlDM.roa (raw, json)
Hash identifier: O+ND3rn9j77YKuRvDuD3i6Az/PCMubAYsX7JCLnh8yM=
Subject key identifier: 57:90:57:85:F7:12:12:F8:96:6E:3A:10:D7:68:CD:33:31:98:94:33
Certificate issuer: /CN=a8b5fe67c20797d3941555554f8c988ca2f7c17b
Certificate serial: 3744392F
Authority key identifier: A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/V5BXhfcSEviWbjoQ12jNMzGYlDM.roa
Signing time: Sat 01 Jan 2022 07:54:23 +0000
ROA not before: Sat 01 Jan 2022 07:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56595
IP address blocks: 185.7.230.0/23 maxlen: 23
46.226.0.0/21 maxlen: 21
185.73.152.0/22 maxlen: 22
185.7.228.0/22 maxlen: 22
185.7.228.0/23 maxlen: 23
89.32.88.0/21 maxlen: 21
185.34.8.0/22 maxlen: 22
185.100.68.0/22 maxlen: 22
192.124.197.0/24 maxlen: 24
192.124.198.0/24 maxlen: 24
185.122.64.0/22 maxlen: 22
192.124.193.0/24 maxlen: 24
192.124.203.0/24 maxlen: 24
192.124.206.0/23 maxlen: 23
91.240.174.0/24 maxlen: 24
185.240.200.0/22 maxlen: 22
2a00:a600::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927217967 (0x3744392f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8b5fe67c20797d3941555554f8c988ca2f7c17b
Validity
Not Before: Jan 1 07:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57905785f71212f8966e3a10d768cd3331989433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:33:63:3b:96:28:7e:f2:a1:1a:30:be:86:7f:
6d:b5:33:01:b7:4e:69:27:92:61:08:49:c8:0a:7d:
eb:ad:b0:d8:04:5f:e2:fb:cd:d1:71:76:92:9e:4f:
92:e0:75:e9:0b:77:29:5c:76:57:ae:c3:c7:9c:9b:
11:1d:18:fa:3e:4f:cb:f5:c2:fd:82:fe:dd:0d:60:
ac:2f:84:ff:4a:7c:3d:7a:a1:e1:80:be:68:95:f0:
43:d0:b0:ac:26:f6:64:9d:c0:4b:e9:86:79:9f:fc:
31:66:d4:f3:85:90:32:35:0a:fd:78:6f:7c:9a:3d:
c7:0d:35:f9:7f:b1:ec:90:04:50:26:87:13:aa:71:
89:2f:e2:48:cd:c9:85:c8:e3:76:ad:99:7b:70:e6:
16:0a:72:30:d7:ff:24:a5:b8:9a:6d:fb:6b:54:87:
db:f0:ff:e7:c7:4b:3d:e0:87:7b:09:6a:99:31:6c:
8f:cd:3c:8b:01:e5:cb:7b:6b:80:e1:f6:e4:93:d5:
02:fb:01:0d:5e:70:14:5f:a4:3c:90:0e:fd:53:88:
27:57:6f:9b:0e:a4:f3:d5:cc:01:98:fa:fb:16:d8:
58:3d:cc:ac:ed:06:b1:7b:f9:bd:17:d2:9b:f2:31:
88:e0:5b:d4:a2:24:0b:be:3f:90:30:97:a7:2a:fa:
2c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:90:57:85:F7:12:12:F8:96:6E:3A:10:D7:68:CD:33:31:98:94:33
X509v3 Authority Key Identifier:
keyid:A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/V5BXhfcSEviWbjoQ12jNMzGYlDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.0.0/21
89.32.88.0/21
91.240.174.0/24
185.7.228.0/22
185.34.8.0/22
185.73.152.0/22
185.100.68.0/22
185.122.64.0/22
185.240.200.0/22
192.124.193.0/24
192.124.197.0-192.124.198.255
192.124.203.0/24
192.124.206.0/23
IPv6:
2a00:a600::/32
Signature Algorithm: sha256WithRSAEncryption
3e:e4:74:31:95:dd:6d:f2:fa:68:26:72:b8:bb:21:f0:da:d8:
60:2b:c6:b3:17:58:b1:e7:51:e8:8e:45:2b:a4:2e:42:e8:a7:
ee:e5:62:97:71:f2:e3:8d:04:5c:bc:80:bd:51:d5:4b:a8:56:
56:48:85:c1:4a:93:c2:cb:cc:80:62:a0:1b:32:3d:84:71:64:
7a:a7:96:00:dd:55:6c:69:57:52:f1:8a:ef:76:dc:cc:d9:b9:
8f:9d:a3:eb:a9:ba:95:33:f8:ea:87:ad:e5:20:1a:9d:6c:c3:
02:3c:84:45:ba:48:c8:7b:fa:19:c1:51:f8:13:68:85:78:25:
1e:83:21:aa:57:c1:7c:65:8d:2a:58:f6:fa:40:d4:ed:c5:21:
4c:9b:8a:59:a6:eb:65:3c:70:db:eb:7c:83:a1:a1:e6:e2:ae:
73:3b:76:a0:52:2a:2f:6a:96:4b:30:2f:24:35:d4:88:0d:f2:
21:bb:56:74:1c:c3:22:29:c3:d3:0e:83:fb:d6:65:da:27:29:
b9:a0:2c:b8:66:05:30:28:f3:a2:02:e1:9e:46:0c:4a:9c:a6:
ae:2b:75:b9:c1:a2:f1:93:da:99:99:eb:e7:19:50:7f:d0:53:
a9:af:60:96:36:00:0c:e6:28:a5:72:29:42:8f:86:1b:e5:5b:
ed:13:fc:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:14:37 2025 by rpki-client