Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/WB7vXImOhD2ODAfQ7UV_ySa9ed4.roa
File: WB7vXImOhD2ODAfQ7UV_ySa9ed4.roa (raw, json)
Hash identifier: MECioyVF3h2/FVuFRULqAmTIuHySGrd8tcBg/SvLRVk=
Subject key identifier: 58:1E:EF:5C:89:8E:84:3D:8E:0C:07:D0:ED:45:7F:C9:26:BD:79:DE
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 0184104737CFBD77E22CC869380A43301BD9
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/WB7vXImOhD2ODAfQ7UV_ySa9ed4.roa
Signing time: Tue 25 Oct 2022 17:53:33 +0000
ROA not before: Tue 25 Oct 2022 17:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 85.8.160.0/23 maxlen: 23
85.8.162.0/23 maxlen: 23
62.182.32.0/23 maxlen: 23
62.182.34.0/23 maxlen: 23
139.28.240.0/23 maxlen: 23
139.28.242.0/23 maxlen: 23
5.133.100.0/23 maxlen: 23
5.133.102.0/23 maxlen: 23
31.40.204.0/23 maxlen: 23
31.40.206.0/23 maxlen: 23
212.107.4.0/23 maxlen: 23
212.107.6.0/23 maxlen: 23
84.54.0.0/23 maxlen: 23
84.54.2.0/23 maxlen: 23
85.8.144.0/23 maxlen: 23
85.8.146.0/23 maxlen: 23
92.249.62.0/23 maxlen: 23
92.249.60.0/23 maxlen: 23
193.187.108.0/22 maxlen: 22
176.53.156.0/23 maxlen: 23
176.53.158.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:47:37:cf:bd:77:e2:2c:c8:69:38:0a:43:30:1b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Oct 25 17:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=581eef5c898e843d8e0c07d0ed457fc926bd79de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c4:2c:df:8a:92:04:fc:ac:8f:30:07:a0:2e:
d8:5b:3c:db:77:30:3f:a7:f5:43:72:45:02:f7:85:
6c:1a:b1:17:69:18:39:76:b8:99:c9:d5:2e:d8:e8:
93:03:42:a0:be:de:e7:7a:7b:47:ed:bc:da:a3:07:
ad:63:77:7d:bf:65:42:f3:ae:59:02:53:42:dd:8b:
d0:f9:8d:0b:49:0a:3f:fd:50:54:b5:b8:73:9c:de:
b0:83:5f:fa:c3:95:f7:b4:fa:0f:66:13:fc:35:70:
84:1d:db:b1:7a:b6:23:5d:0d:d5:fa:fd:12:da:79:
47:b8:d0:31:3b:2f:4c:62:aa:43:97:04:46:60:23:
89:b6:fb:eb:53:2f:5b:df:17:ab:3a:ab:5c:23:94:
95:db:04:0d:3d:f4:82:75:04:c5:d5:8e:e8:ca:df:
a6:4b:ef:c7:0c:ed:b4:fb:a1:fc:48:e7:60:1d:84:
e6:05:cb:47:6d:28:ad:41:52:77:3e:aa:7e:b5:6b:
ab:50:2b:9d:a7:97:a2:21:bb:15:f0:4c:98:31:3f:
2d:8c:39:78:7a:79:46:10:fa:c3:a4:ac:96:0d:ad:
58:9d:b5:39:75:0a:6d:03:3d:04:f0:c4:24:5b:88:
fb:02:95:12:2a:48:4c:55:c8:22:8b:cd:f1:fd:d2:
bf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1E:EF:5C:89:8E:84:3D:8E:0C:07:D0:ED:45:7F:C9:26:BD:79:DE
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/WB7vXImOhD2ODAfQ7UV_ySa9ed4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.100.0/22
31.40.204.0/22
62.182.32.0/22
84.54.0.0/22
85.8.144.0/22
85.8.160.0/22
92.249.60.0/22
139.28.240.0/22
176.53.156.0/22
193.187.108.0/22
212.107.4.0/22
Signature Algorithm: sha256WithRSAEncryption
07:7c:22:fa:7a:93:54:3b:de:9a:df:7d:78:48:9f:4c:fd:54:
5e:4d:76:29:a0:70:30:54:fd:67:be:7f:b0:79:5a:99:ea:64:
dd:ba:f0:a9:02:d9:e8:76:f2:cf:26:29:9f:f3:a7:3f:21:dd:
f6:61:cf:16:fc:ef:24:3c:04:f3:ec:50:4f:65:f1:d6:30:96:
43:80:dc:b1:14:0e:bf:73:b2:11:09:62:c6:84:6c:7d:c4:f1:
9c:01:8d:4f:da:93:53:c4:99:af:01:dd:79:7f:04:39:a8:5e:
68:d7:d6:a4:c4:2d:ad:83:bf:98:ef:e0:74:46:e0:d9:7d:66:
25:25:97:e5:b4:48:3b:58:18:a7:9c:8f:6e:c7:45:9c:5d:54:
ef:69:9b:0a:29:f4:ba:b6:98:39:00:a6:4c:ca:a2:70:5f:63:
18:97:94:42:3d:e7:da:e3:9f:c7:1a:f6:92:fd:f7:6b:64:4c:
96:9c:9b:be:53:35:e6:e4:d0:ae:a3:90:4c:b4:0d:83:b8:0a:
0d:7b:98:0b:41:00:47:14:fc:9f:15:36:05:e0:80:4e:02:5c:
68:b2:e6:ea:76:5b:13:c8:ee:2e:67:2e:ef:f3:6d:fe:77:87:
a2:bf:d4:5e:83:57:21:74:e7:7d:fe:28:60:fd:66:6e:11:36:
6d:53:89:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:49 2024 by rpki-client on console-ams.rpki-client.org