Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W7lkfzII4h2X7HWNpOKQu8e-px0.roa
File: W7lkfzII4h2X7HWNpOKQu8e-px0.roa (raw, json)
Hash identifier: 02rcB7Ve+Lla2NOa86oklQ0WZfA/Z2KtYBTuIJ8qf4U=
Subject key identifier: 5B:B9:64:7F:32:08:E2:1D:97:EC:75:8D:A4:E2:90:BB:C7:BE:A7:1D
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0D53C82D
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W7lkfzII4h2X7HWNpOKQu8e-px0.roa
Signing time: Thu 10 Feb 2022 00:43:01 +0000
ROA not before: Thu 10 Feb 2022 00:43:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 185.244.36.0/22 maxlen: 24
45.87.40.0/22 maxlen: 24
185.224.128.0/22 maxlen: 24
5.182.208.0/22 maxlen: 24
45.14.224.0/22 maxlen: 24
2a0d:2400::/29 maxlen: 39
2a0e:2000::/29 maxlen: 29
2a0d:2780::/29 maxlen: 32
2a0e:16c0::/29 maxlen: 29
2a0e:1740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223594541 (0xd53c82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Feb 10 00:43:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bb9647f3208e21d97ec758da4e290bbc7bea71d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:79:61:6d:cf:d1:2e:6d:56:b0:ec:b5:2e:32:
5f:3d:6b:60:21:38:ab:a9:6a:4f:8d:cd:4c:d2:82:
db:32:c6:8e:35:65:5f:77:28:ba:2d:c0:17:4f:a8:
6a:07:fe:a5:b6:69:84:3f:ba:d8:3e:79:22:59:86:
7f:cd:92:16:cf:31:a8:9e:12:aa:88:72:37:99:a2:
83:ef:4c:9f:29:90:0e:06:8c:1e:44:3d:9c:b1:ef:
03:23:6e:d9:0c:ff:2e:63:4b:33:63:dc:92:0b:dc:
5c:e1:ba:35:53:6b:75:a1:15:1b:33:b3:4b:f9:33:
0e:8a:27:00:11:ca:98:cc:d3:f3:c9:d9:1c:93:e6:
b3:06:34:39:aa:64:1b:20:0e:ec:0b:c8:5c:f3:f0:
6c:fe:dc:14:b6:ab:3a:2d:ea:71:15:51:ae:7b:df:
26:c1:9b:7a:4f:58:41:9f:59:36:cf:f9:d6:bd:06:
0d:96:47:35:9a:c3:29:89:8d:d9:50:76:33:fc:b6:
e2:89:b2:d1:b7:1c:ea:32:e8:b7:a9:38:0d:4f:f2:
24:1d:10:32:6a:bf:41:d8:09:40:2e:61:ec:07:b2:
ca:bd:1c:4d:c7:b3:27:3d:6e:d2:8f:15:f1:70:35:
19:d5:b2:94:c9:89:43:cd:af:34:ae:85:3a:b0:78:
0f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B9:64:7F:32:08:E2:1D:97:EC:75:8D:A4:E2:90:BB:C7:BE:A7:1D
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/W7lkfzII4h2X7HWNpOKQu8e-px0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.208.0/22
45.14.224.0/22
45.87.40.0/22
185.224.128.0/22
185.244.36.0/22
IPv6:
2a0d:2400::/29
2a0d:2780::/29
2a0e:16c0::/29
2a0e:1740::/29
2a0e:2000::/29
Signature Algorithm: sha256WithRSAEncryption
38:1c:d4:8c:bd:2e:e1:9f:54:49:11:8d:da:29:a3:7d:3e:33:
e7:63:2d:e1:20:6a:bb:1d:23:8d:9a:b2:3a:e1:59:95:c4:33:
dc:a1:54:1e:2d:f1:a9:46:6b:7c:80:7a:84:11:b0:99:f5:32:
b1:c4:b7:07:7f:2e:40:33:3b:46:3a:dd:cf:f7:a1:bf:b3:d7:
b6:f0:cc:93:78:6e:88:63:1a:3b:e4:f9:af:41:fc:39:0e:1d:
97:3c:2a:27:c7:33:79:1d:35:eb:3d:53:e0:48:b7:9d:97:12:
86:14:20:e7:b5:84:04:3f:c9:43:bc:c7:fc:ae:61:e6:8e:b7:
21:a5:d3:9f:8f:71:6f:0d:1d:54:79:a6:7c:23:d8:f7:68:a5:
06:f2:53:d0:8a:15:d0:df:f7:83:a5:fa:2a:fc:b2:e2:44:dd:
9a:41:80:b3:b4:5b:b4:bc:d0:c5:d8:e7:6d:12:1c:1a:5b:29:
c1:6a:b8:8d:ea:f6:de:ae:42:1d:ba:63:8e:0b:e8:93:24:3b:
f1:22:39:a3:78:70:7f:21:24:3f:6f:cd:fe:7c:bc:d8:dd:be:
5d:93:67:92:30:6f:33:56:de:c0:82:43:62:d3:88:9d:68:a0:
bf:f7:5f:d6:0c:d1:95:bf:f3:a1:1c:6a:c3:79:91:b2:c3:74:
04:cd:51:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:18 2024 by rpki-client on console-fra.rpki-client.org