Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/SZet8kiCAZ2W8jXoIIfCXXgv1ZE.roa
File: SZet8kiCAZ2W8jXoIIfCXXgv1ZE.roa (raw, json)
Hash identifier: tveV96Nf6o5Jsjojp0Nwe6QFVfrz+j8s/rk6w+Afwj0=
Subject key identifier: 49:97:AD:F2:48:82:01:9D:96:F2:35:E8:20:87:C2:5D:78:2F:D5:91
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 0183AD05FAF1147BA1A0798B5C21ADE31CFD
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/SZet8kiCAZ2W8jXoIIfCXXgv1ZE.roa
Signing time: Thu 06 Oct 2022 11:19:53 +0000
ROA not before: Thu 06 Oct 2022 11:19:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24651
IP address blocks: 188.92.16.0/24 maxlen: 32
188.92.16.0/21 maxlen: 32
82.193.64.0/19 maxlen: 32
46.23.32.0/20 maxlen: 32
89.221.122.0/23 maxlen: 23
89.221.122.0/24 maxlen: 24
89.221.123.0/24 maxlen: 24
89.221.121.0/24 maxlen: 24
89.221.124.0/23 maxlen: 24
89.221.124.0/24 maxlen: 24
89.221.125.0/24 maxlen: 24
185.31.44.0/22 maxlen: 32
89.221.126.0/23 maxlen: 24
89.221.127.0/24 maxlen: 24
109.73.96.0/20 maxlen: 32
217.195.48.0/20 maxlen: 32
85.158.72.0/21 maxlen: 24
82.193.67.0/24 maxlen: 27
82.193.83.0/24 maxlen: 32
185.141.52.0/22 maxlen: 32
83.99.167.0/24 maxlen: 24
83.99.167.0/26 maxlen: 27
77.93.0.0/19 maxlen: 32
185.75.236.0/22 maxlen: 32
83.99.128.0/17 maxlen: 32
212.142.64.0/18 maxlen: 32
89.221.112.0/20 maxlen: 24
82.193.67.0/27 maxlen: 27
2a01:4e0::/32 maxlen: 32
2a01:4e1:cc1::/64 maxlen: 64
2a04:4e00::/29 maxlen: 29
2a01:4e1:460:1::/64 maxlen: 64
2a01:4e0::/29 maxlen: 29
2a01:4e1:1745::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ad:05:fa:f1:14:7b:a1:a0:79:8b:5c:21:ad:e3:1c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: Oct 6 11:19:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4997adf24882019d96f235e82087c25d782fd591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:21:3f:bf:91:9d:fa:15:ad:3e:91:dc:7e:ea:
e6:2a:9f:1b:96:b6:f6:0e:20:39:3b:31:43:41:0d:
8f:38:80:d8:8e:09:75:bc:2e:88:05:a3:27:ff:84:
41:b0:6e:e0:d4:dc:62:af:74:e3:95:25:a8:aa:cc:
33:a8:47:d1:2a:88:3a:77:2d:16:23:ca:5c:a8:c0:
08:e8:2c:0d:88:fe:20:4f:8a:9f:a2:42:dc:d7:f6:
66:b2:87:97:33:cb:f8:ad:b4:4c:29:52:30:ad:f8:
b6:e5:62:4d:2d:a9:fa:2a:b3:c2:d6:1b:ea:c1:d6:
76:87:38:de:f6:ed:2a:f0:58:36:f6:1c:33:30:c3:
67:b3:51:4c:d5:39:9d:03:0f:3f:c2:77:f4:55:fe:
ef:0c:7e:25:7b:48:9a:ea:21:b5:0a:20:d6:48:43:
32:2e:7c:3a:b4:ca:b7:6f:f9:67:a1:83:5a:02:c8:
29:59:ff:6c:f3:26:92:06:b9:fc:e0:70:31:d2:13:
7c:1c:a2:94:f9:48:ef:b9:ae:74:c3:9a:9f:63:95:
84:18:3d:4d:70:5e:86:aa:03:5f:91:ff:1c:37:65:
15:14:02:eb:57:79:8f:69:2d:c5:05:b1:ed:78:78:
41:93:1d:0f:53:e4:f6:9c:25:ae:f6:dd:ee:8d:07:
21:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:97:AD:F2:48:82:01:9D:96:F2:35:E8:20:87:C2:5D:78:2F:D5:91
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/SZet8kiCAZ2W8jXoIIfCXXgv1ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.32.0/20
77.93.0.0/19
82.193.64.0/19
83.99.128.0/17
85.158.72.0/21
89.221.112.0/20
109.73.96.0/20
185.31.44.0/22
185.75.236.0/22
185.141.52.0/22
188.92.16.0/21
212.142.64.0/18
217.195.48.0/20
IPv6:
2a01:4e0::/29
2a04:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
5c:97:64:be:f0:8f:56:8d:7f:c4:84:cc:7f:d5:1f:f7:9b:c8:
96:66:21:c2:b6:94:c2:35:c5:f8:a4:8f:e6:67:86:f1:e1:4a:
29:6f:01:69:7d:5f:fe:ef:8a:39:68:b2:d2:29:f1:b7:4f:d6:
8a:df:9d:07:5f:4b:9d:dd:06:9a:92:e8:50:59:08:3e:bc:f1:
5e:b6:e7:4f:dd:f4:8d:e4:e7:65:1e:d1:7d:dc:ef:76:49:54:
da:50:82:ac:e1:8b:b6:04:87:cb:d3:52:64:28:6b:25:a2:bd:
d9:a3:a0:04:b9:68:09:9f:60:3c:7a:73:38:08:65:24:a7:a7:
cf:46:b3:6b:3c:17:a7:f4:ee:29:a0:b1:9f:47:0d:c2:4a:21:
de:76:77:ce:fb:cd:49:f8:df:dd:e2:98:0c:d8:20:4c:cf:38:
03:ab:8a:14:8f:e6:7e:62:18:35:56:6d:d1:f2:71:ad:15:63:
11:a3:90:7c:0a:a8:c8:45:18:74:db:83:ad:9b:66:b8:e8:6d:
4e:fe:40:b4:32:b0:3c:68:d4:a4:76:7a:e3:1d:93:ce:89:b1:
01:b7:9d:4b:aa:b4:dc:c5:b4:2e:c0:91:59:1d:40:9f:84:ca:
53:00:df:c1:84:09:ce:bc:15:6a:73:33:b8:aa:34:48:40:bd:
fd:3e:dd:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:04 2023 by rpki-client on console-fra.rpki-client.org