Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/XrUVVIyCvIb4UsQVQKawZcBWqT8.roa
File: XrUVVIyCvIb4UsQVQKawZcBWqT8.roa (raw, json)
Hash identifier: vSZuAgR8AjgGTUeEDd0Grgc4kKoIg+QhvUy1wuRNk7Q=
Subject key identifier: 5E:B5:15:54:8C:82:BC:86:F8:52:C4:15:40:A6:B0:65:C0:56:A9:3F
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 018255AF3A1186F0772584D5CF4874EF6736
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/XrUVVIyCvIb4UsQVQKawZcBWqT8.roa
Signing time: Sun 31 Jul 2022 19:15:23 +0000
ROA not before: Sun 31 Jul 2022 19:15:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24651
IP address blocks: 188.92.16.0/24 maxlen: 32
188.92.16.0/21 maxlen: 32
77.93.0.0/19 maxlen: 32
46.23.32.0/20 maxlen: 32
82.193.64.0/19 maxlen: 32
89.221.122.0/24 maxlen: 24
185.31.44.0/22 maxlen: 32
89.221.121.0/24 maxlen: 24
109.73.96.0/20 maxlen: 32
185.75.236.0/22 maxlen: 32
83.99.128.0/17 maxlen: 32
217.195.48.0/20 maxlen: 32
212.142.64.0/18 maxlen: 32
82.193.83.0/24 maxlen: 32
185.141.52.0/22 maxlen: 32
2a01:4e1:cc1::/64 maxlen: 64
2a04:4e00::/29 maxlen: 29
2a01:4e1:460:1::/64 maxlen: 64
2a01:4e0::/29 maxlen: 29
2a01:4e0::/32 maxlen: 32
2a01:4e1:1745::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:55:af:3a:11:86:f0:77:25:84:d5:cf:48:74:ef:67:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: Jul 31 19:15:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5eb515548c82bc86f852c41540a6b065c056a93f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:14:38:da:38:03:b1:8a:ed:4a:70:1e:c3:bb:
f9:19:38:fc:ff:29:91:a7:d5:e8:e6:35:89:d6:df:
d1:3b:5d:be:7e:42:f2:2e:bd:bb:e2:5c:bd:6d:38:
6a:bf:d2:ef:32:d6:04:5c:78:99:fd:ec:ab:d3:42:
26:80:8e:5e:37:f6:35:f1:13:75:9a:f2:bd:43:4a:
ed:63:14:1b:93:2e:04:bb:6b:0a:b4:2e:95:36:46:
c2:9b:95:fe:a9:92:35:a4:9e:76:49:ad:b2:5b:6f:
7c:9c:17:a4:47:f9:34:2d:7a:5b:50:d1:29:3e:1c:
d1:28:ee:5b:d8:48:62:ff:dc:81:07:c9:55:5b:fc:
4a:de:ec:5b:01:37:5c:7c:4a:6e:27:bc:24:02:ce:
4d:5e:7a:e1:36:9a:5e:9f:9a:5b:c1:bb:44:52:f8:
5d:8d:07:97:8e:72:59:24:93:03:2b:3d:bb:2c:da:
fb:6f:95:db:8a:44:85:80:c2:04:99:e4:fa:8b:16:
d2:99:2e:5e:c5:93:35:25:46:db:02:2e:d4:dd:e2:
39:6e:9f:6f:1a:e5:56:36:f1:ad:db:22:b1:d9:e1:
a1:3c:77:3b:71:b6:45:7c:51:9f:e4:74:3e:d9:a3:
29:ca:4d:ac:bf:82:82:2c:75:7e:31:d5:74:33:11:
ad:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B5:15:54:8C:82:BC:86:F8:52:C4:15:40:A6:B0:65:C0:56:A9:3F
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/XrUVVIyCvIb4UsQVQKawZcBWqT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.32.0/20
77.93.0.0/19
82.193.64.0/19
83.99.128.0/17
89.221.121.0-89.221.122.255
109.73.96.0/20
185.31.44.0/22
185.75.236.0/22
185.141.52.0/22
188.92.16.0/21
212.142.64.0/18
217.195.48.0/20
IPv6:
2a01:4e0::/29
2a04:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
26:98:a2:e7:c6:2c:a8:af:8c:67:46:84:0e:ee:7f:54:6c:74:
8b:73:87:97:7f:a0:0f:b0:9e:0b:28:0d:3d:e8:a3:c6:32:8a:
2b:e5:ba:0d:8a:d7:0e:d1:6c:c1:cb:4c:e9:08:ab:3a:fb:ea:
ca:8d:e9:53:ec:f7:42:d9:a5:27:6c:b9:82:1a:84:12:56:3c:
d3:fc:d9:c2:01:3f:eb:11:63:cd:e4:66:fd:41:8d:9b:f5:65:
6f:ef:14:f5:6e:08:77:68:5a:a5:c1:a1:31:6e:39:63:f9:7c:
17:1c:a1:0a:07:04:c4:32:17:1f:6b:b2:b5:64:f9:ef:e3:a7:
fd:17:02:6c:b9:cf:41:db:06:45:94:52:ee:34:f3:eb:a8:7c:
9e:e0:d6:ad:3d:fb:3b:eb:ad:2b:2c:da:a0:8b:60:ab:91:66:
fc:87:a3:e6:36:ae:f1:73:0d:bb:3c:a4:99:6f:c3:f1:6c:5d:
1b:04:40:ee:10:58:85:96:97:8c:2e:25:5d:3f:15:35:ca:a6:
8c:bf:4f:96:95:f1:4e:7a:1d:9a:0e:df:dc:12:e9:4e:40:49:
bc:20:a3:c0:75:6b:60:e0:ae:e2:57:90:f2:50:34:68:c8:cf:
39:c5:15:53:50:7f:7f:d5:01:5f:eb:b6:23:23:70:c2:70:81:
27:3e:8c:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:04 2023 by rpki-client on console-fra.rpki-client.org