Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/ASaz5RCAgSawcd91r3fI0BYNbvk.roa
File: ASaz5RCAgSawcd91r3fI0BYNbvk.roa (raw, json)
Hash identifier: N0ufLCo/X8tiiFqDzNC9mTIGFv92Yn9PAtvrgkGL/Mk=
Subject key identifier: 01:26:B3:E5:10:80:81:26:B0:71:DF:75:AF:77:C8:D0:16:0D:6E:F9
Certificate issuer: /CN=50741158f3ed65bee1bde12f34f895afb0dd50d5
Certificate serial: 11D94A2E
Authority key identifier: 50:74:11:58:F3:ED:65:BE:E1:BD:E1:2F:34:F8:95:AF:B0:DD:50:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHQRWPPtZb7hveEvNPiVr7DdUNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/ASaz5RCAgSawcd91r3fI0BYNbvk.roa
Signing time: Tue 15 Feb 2022 09:47:13 +0000
ROA not before: Tue 15 Feb 2022 09:47:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208905
IP address blocks: 147.235.40.0/24 maxlen: 24
147.235.46.0/23 maxlen: 24
147.235.45.0/24 maxlen: 24
147.235.61.0/24 maxlen: 24
147.235.60.0/23 maxlen: 23
147.235.60.0/22 maxlen: 22
147.235.62.0/24 maxlen: 24
147.235.62.0/23 maxlen: 23
147.235.60.0/24 maxlen: 24
147.235.63.0/24 maxlen: 24
147.235.76.0/22 maxlen: 22
147.235.78.0/23 maxlen: 23
147.235.77.0/24 maxlen: 24
147.235.78.0/24 maxlen: 24
147.235.74.0/23 maxlen: 23
147.235.74.0/24 maxlen: 24
147.235.75.0/24 maxlen: 24
147.235.76.0/24 maxlen: 24
147.235.73.0/24 maxlen: 24
147.235.72.0/23 maxlen: 23
147.235.72.0/24 maxlen: 24
147.235.72.0/22 maxlen: 22
147.235.76.0/23 maxlen: 23
147.235.80.0/24 maxlen: 24
147.235.79.0/24 maxlen: 24
147.235.26.0/23 maxlen: 24
147.235.25.0/24 maxlen: 24
147.235.36.0/24 maxlen: 24
147.235.94.0/23 maxlen: 23
147.235.94.0/24 maxlen: 24
147.235.95.0/24 maxlen: 24
147.235.93.0/24 maxlen: 24
185.130.84.0/22 maxlen: 22
2a06:c702::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299452974 (0x11d94a2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50741158f3ed65bee1bde12f34f895afb0dd50d5
Validity
Not Before: Feb 15 09:47:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0126b3e510808126b071df75af77c8d0160d6ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e7:b0:8f:a4:c9:86:9f:a1:45:11:ed:f8:bf:
ea:a6:31:b3:28:64:b7:5a:f8:da:04:c9:c6:04:1f:
77:67:81:88:10:6b:e8:9c:26:b6:f0:07:83:2b:34:
84:be:7f:56:fc:6e:aa:ce:90:38:c9:b3:0d:04:4e:
3f:69:7a:1f:8f:ae:b4:d7:4a:eb:50:3f:98:dd:82:
3b:39:af:39:41:65:90:5b:9f:b5:27:ee:ee:5e:07:
ae:f9:8c:33:6a:22:d7:5c:17:87:e4:f8:59:e0:42:
31:7e:82:13:8d:3c:c3:ec:24:ea:79:e1:8e:34:0d:
64:70:66:c4:da:bf:0e:57:49:1b:16:36:34:44:f9:
fa:df:fe:e7:6e:c2:ef:d1:a1:4b:49:28:11:3f:6f:
5a:42:cd:a0:ec:51:97:81:9d:77:a4:5c:40:be:ee:
85:12:14:0b:b9:8b:49:e4:b1:a9:cb:96:9d:14:3a:
91:9a:be:0b:83:f1:32:bd:48:43:1f:7b:9c:3b:e8:
f1:22:e5:34:02:14:32:79:c0:fd:a3:92:38:ac:4b:
6d:62:58:9f:5c:73:b0:42:5d:df:11:6c:db:24:b0:
82:02:80:9d:55:25:7f:42:ad:e7:9e:fa:3e:0e:2d:
8c:62:27:67:75:27:3f:05:b1:8b:01:54:58:9a:c9:
95:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:26:B3:E5:10:80:81:26:B0:71:DF:75:AF:77:C8:D0:16:0D:6E:F9
X509v3 Authority Key Identifier:
keyid:50:74:11:58:F3:ED:65:BE:E1:BD:E1:2F:34:F8:95:AF:B0:DD:50:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHQRWPPtZb7hveEvNPiVr7DdUNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/ASaz5RCAgSawcd91r3fI0BYNbvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/739b81-3cd3-469c-b954-3553b4ed6794/1/UHQRWPPtZb7hveEvNPiVr7DdUNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.235.25.0-147.235.27.255
147.235.36.0/24
147.235.40.0/24
147.235.45.0-147.235.47.255
147.235.60.0/22
147.235.72.0-147.235.80.255
147.235.93.0-147.235.95.255
185.130.84.0/22
IPv6:
2a06:c702::/48
Signature Algorithm: sha256WithRSAEncryption
95:22:83:4e:27:68:39:c7:8e:dd:53:ca:0c:de:2a:fb:c1:a7:
f7:8e:b9:2d:12:d6:60:a4:d2:a3:c3:8d:e3:05:fd:0d:0e:cb:
aa:8c:37:a4:1f:bd:58:54:bd:3f:3d:94:8c:9b:d6:6f:7e:bb:
18:53:aa:38:39:7b:f4:4d:69:b3:95:27:cb:88:48:4a:c3:ac:
22:f7:89:3c:27:ec:4f:26:0c:8b:cd:27:13:9f:99:08:65:2c:
44:8c:06:1f:a0:86:42:80:af:03:4c:bb:2a:88:da:f1:75:7f:
7e:79:96:e8:e9:71:26:cf:1a:5d:ae:b6:09:b3:cd:54:d6:a0:
aa:62:28:be:63:ed:43:76:2e:60:55:10:75:22:69:b1:d2:ba:
d5:72:90:d7:49:a9:b6:93:51:0f:5c:3c:fd:6d:56:bf:61:7b:
8a:df:22:3b:9a:36:d6:6f:67:bc:f0:b9:81:bb:2d:68:14:03:
38:cb:a7:76:ab:96:6a:71:7f:d1:ad:96:83:10:9c:54:46:b4:
34:d7:6c:74:8a:ea:a3:ab:89:43:1f:7b:17:a8:d6:3d:e3:b3:
ee:3a:fe:bf:ce:57:9a:51:ca:8e:08:c8:42:0d:89:06:c7:e3:
da:af:19:99:b7:cd:e3:38:11:6f:d4:6e:3b:e0:d3:e8:68:3c:
27:3e:c5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:41 2024 by rpki-client on console-ams.rpki-client.org