Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/hHpqi372JEjO1WE-IgMCr7ucoqQ.roa
File: hHpqi372JEjO1WE-IgMCr7ucoqQ.roa (raw, json)
Hash identifier: EGxKrw5bDdMBEiM4K70sy8cCsQQE2ow/rrcypseL2Qc=
Subject key identifier: 84:7A:6A:8B:7E:F6:24:48:CE:D5:61:3E:22:03:02:AF:BB:9C:A2:A4
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 0183B6CAB7F24B3236E8FCA69B08E768CBDC
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/hHpqi372JEjO1WE-IgMCr7ucoqQ.roa
Signing time: Sat 08 Oct 2022 08:51:22 +0000
ROA not before: Sat 08 Oct 2022 08:51:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204650
IP address blocks: 5.160.77.0/24 maxlen: 24
46.209.57.0/24 maxlen: 24
46.209.56.0/23 maxlen: 24
46.209.214.0/24 maxlen: 24
77.237.66.0/23 maxlen: 24
46.209.134.0/24 maxlen: 24
46.209.134.0/23 maxlen: 23
46.209.133.0/24 maxlen: 24
5.160.208.0/23 maxlen: 23
5.160.111.0/24 maxlen: 24
5.160.110.0/24 maxlen: 24
5.160.110.0/23 maxlen: 23
5.160.131.0/24 maxlen: 24
5.160.130.0/23 maxlen: 24
5.160.130.0/24 maxlen: 24
46.209.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b6:ca:b7:f2:4b:32:36:e8:fc:a6:9b:08:e7:68:cb:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Oct 8 08:51:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=847a6a8b7ef62448ced5613e220302afbb9ca2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:d6:e4:1d:12:92:cd:b5:cb:aa:11:83:0b:
ce:f0:9f:ad:4f:5a:37:b2:95:16:56:62:a4:aa:15:
92:75:13:9a:a6:62:ce:38:48:00:66:90:44:cf:bd:
36:3d:9a:8c:98:80:4b:f6:b1:22:29:46:39:52:35:
64:19:0e:d6:d8:cb:b6:c5:b3:9f:d5:c3:7b:1f:29:
5d:d4:dd:75:fa:c3:a3:95:d2:dc:bd:33:37:7c:9b:
c9:0e:4f:bc:e2:46:a2:61:e4:08:d1:88:f5:d2:ce:
94:0a:97:70:79:9f:ad:ef:84:a9:37:3c:30:4f:f7:
a0:9c:ec:96:ce:6c:34:ea:9a:dd:05:18:85:84:57:
5d:00:00:b5:8a:2c:c0:4e:00:bc:aa:60:2b:d4:af:
13:bb:7d:15:fb:6e:d3:92:e0:7e:62:d5:ac:9c:0f:
e8:47:cf:73:6a:90:d4:63:8e:02:55:51:34:be:b8:
b6:72:9d:14:ab:90:29:f2:ca:95:27:4b:16:73:fa:
c7:77:aa:9c:26:8b:42:15:21:92:9f:32:32:fe:99:
fa:21:34:cf:b0:c3:4f:15:a6:9e:07:7b:a5:9a:65:
97:4f:dd:f7:ca:e8:8a:39:a4:69:42:69:99:79:93:
4f:28:f1:3e:55:e7:c2:2f:1c:3e:5c:38:68:6c:05:
33:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:7A:6A:8B:7E:F6:24:48:CE:D5:61:3E:22:03:02:AF:BB:9C:A2:A4
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/hHpqi372JEjO1WE-IgMCr7ucoqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.77.0/24
5.160.110.0/23
5.160.130.0/23
5.160.208.0/23
46.209.56.0/23
46.209.108.0/22
46.209.133.0-46.209.135.255
46.209.214.0/24
77.237.66.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:90:c2:9e:95:b6:2b:1a:12:06:42:36:53:b4:55:e6:4f:8f:
c0:a9:4c:d6:2b:03:b2:9f:83:3f:9d:85:c4:72:47:43:4e:07:
2d:5c:13:a1:f3:58:44:4e:50:b7:f6:73:fa:86:6a:6f:4e:32:
68:c1:0b:8f:cc:62:9b:75:fd:49:77:6f:29:9a:bf:77:c8:19:
58:a3:77:ec:9e:f9:23:91:e9:6d:fb:f9:e6:af:1c:46:66:89:
c5:68:04:0b:bc:28:46:2b:53:81:de:d6:fc:a5:eb:61:4f:25:
e5:77:07:1d:2d:4d:2c:e4:bd:61:ec:70:5a:cf:fe:37:62:4a:
64:87:6e:15:ed:c4:07:b0:1f:4e:c3:e6:01:ec:b3:41:92:8c:
20:db:12:d7:93:7a:a8:f9:e8:31:1a:90:70:74:9b:be:95:56:
ca:fb:19:5c:fc:55:dd:c2:3d:ec:aa:51:cd:4f:22:61:f5:c8:
bd:a6:57:9c:37:c5:b6:12:96:df:dc:f7:d1:1d:60:13:67:6a:
67:2f:9b:8c:43:22:b1:21:1e:b0:ea:0c:92:bf:22:f6:57:3f:
2a:fb:ea:7f:4a:1f:3b:7d:a3:5c:e4:b0:29:93:ee:f0:39:3e:
a7:6d:58:7c:d3:68:5f:94:4a:fc:aa:73:4d:9c:52:c6:fe:76:
96:d6:c7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org