Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/t5MTRmJ-IYPha-weaiHOyomBqpY.roa
File: t5MTRmJ-IYPha-weaiHOyomBqpY.roa (raw, json)
Hash identifier: cyWKaFG5FiuVs1TtnjgNPrVlG+O+/j/Ab6q625dR8Zk=
Subject key identifier: B7:93:13:46:62:7E:21:83:E1:6B:EC:1E:6A:21:CE:CA:89:81:AA:96
Certificate issuer: /CN=a8b5fe67c20797d3941555554f8c988ca2f7c17b
Certificate serial: 38AAFCAB
Authority key identifier: A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/t5MTRmJ-IYPha-weaiHOyomBqpY.roa
Signing time: Thu 09 Jun 2022 09:38:03 +0000
ROA not before: Thu 09 Jun 2022 09:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56595
IP address blocks: 188.241.20.0/22 maxlen: 24
185.7.230.0/23 maxlen: 23
46.226.0.0/21 maxlen: 21
185.73.152.0/22 maxlen: 22
185.7.228.0/22 maxlen: 22
185.7.228.0/23 maxlen: 23
89.32.88.0/21 maxlen: 21
185.34.8.0/22 maxlen: 22
185.100.68.0/22 maxlen: 22
192.124.197.0/24 maxlen: 24
192.124.198.0/24 maxlen: 24
185.122.64.0/22 maxlen: 22
192.124.193.0/24 maxlen: 24
192.124.203.0/24 maxlen: 24
192.124.206.0/23 maxlen: 23
91.240.174.0/24 maxlen: 24
185.240.200.0/22 maxlen: 22
2a00:a600::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 950729899 (0x38aafcab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8b5fe67c20797d3941555554f8c988ca2f7c17b
Validity
Not Before: Jun 9 09:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7931346627e2183e16bec1e6a21ceca8981aa96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:78:df:7c:79:3e:97:ea:56:aa:89:70:c6:1a:
a0:d1:27:4b:44:86:9d:24:bb:64:0b:4f:73:7d:1a:
64:b6:ef:59:ed:09:a9:7e:c2:f0:bd:19:3e:9a:78:
5a:43:8f:33:b3:68:ae:24:74:15:49:eb:6a:da:7e:
e4:44:c4:65:06:fe:a1:6c:8c:af:ad:4e:31:9f:fd:
60:9e:13:cc:2a:c8:73:c9:af:61:c6:69:e2:72:43:
0b:cf:57:23:a3:e0:6a:be:f4:c6:8d:f2:f2:34:67:
80:cb:a7:31:99:db:dc:43:c1:ec:44:46:f3:99:67:
83:8b:cd:c9:9c:e9:69:3c:a0:17:6a:b7:2a:84:f4:
b3:d2:1e:e7:9e:7b:b2:66:95:97:bd:0f:fa:e1:e8:
11:78:52:a9:59:72:87:4d:7c:d5:7e:b4:71:73:57:
e3:d5:b8:2e:39:9c:ff:91:11:2f:6d:20:dc:df:05:
69:8d:33:c5:3e:24:28:f2:e3:dc:0b:56:f0:39:08:
57:61:ff:96:bc:50:14:3c:4e:9c:62:32:de:01:b0:
6a:a1:8f:6f:5e:e0:b9:39:ac:1c:ef:29:3f:40:5c:
6b:eb:ab:70:df:ac:c6:c4:45:f1:d5:a7:93:56:48:
5d:24:42:c1:e4:62:fc:f9:2d:68:77:73:5c:08:41:
ed:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:93:13:46:62:7E:21:83:E1:6B:EC:1E:6A:21:CE:CA:89:81:AA:96
X509v3 Authority Key Identifier:
keyid:A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/t5MTRmJ-IYPha-weaiHOyomBqpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.0.0/21
89.32.88.0/21
91.240.174.0/24
185.7.228.0/22
185.34.8.0/22
185.73.152.0/22
185.100.68.0/22
185.122.64.0/22
185.240.200.0/22
188.241.20.0/22
192.124.193.0/24
192.124.197.0-192.124.198.255
192.124.203.0/24
192.124.206.0/23
IPv6:
2a00:a600::/32
Signature Algorithm: sha256WithRSAEncryption
27:40:fa:9a:c0:e2:fd:32:da:b9:4c:4e:3a:b4:4c:3e:cc:d2:
ab:38:8a:57:e6:17:c5:17:81:55:63:e1:c6:a8:e9:36:5e:ac:
1e:80:d0:0c:24:a0:8c:d8:f2:0d:60:f3:bf:ae:80:e8:a4:b6:
7c:d8:02:cf:d2:71:14:7d:cb:31:fa:15:57:38:15:27:a9:e0:
42:73:8f:5e:4b:8f:c0:c2:3b:94:95:2b:e3:89:bc:4a:f9:ec:
04:5b:8d:f9:eb:4f:08:1e:fe:a1:7f:0a:21:cf:37:46:9a:a3:
08:74:b1:fc:87:52:ef:ec:a0:40:f5:2e:82:40:4c:82:bc:b7:
e7:89:1c:94:ac:27:40:9f:d2:61:71:34:ed:1c:b2:b2:51:e3:
16:21:19:02:7c:c7:f9:ea:93:71:7b:66:3d:fb:f7:81:77:0b:
81:16:f4:14:67:1b:a9:b0:e4:72:6d:d6:d3:b1:48:3d:ba:1f:
16:a0:b6:af:c3:39:64:42:3a:b0:1c:26:b0:ee:92:60:89:05:
01:b2:01:3d:5e:c1:82:a9:64:2b:60:fc:e3:4d:fa:c0:86:73:
ec:64:9a:58:c8:14:d3:42:1b:65:3d:1c:1b:44:88:6c:d6:54:
0e:12:01:cd:48:b8:15:b9:0e:b6:0c:8f:c5:69:6a:92:e3:fa:
b0:03:81:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:22 2024 by rpki-client on console-ams.rpki-client.org