Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5rhVfSgxlY-ruIDEdWacZ9bDe_c.roa
File: 5rhVfSgxlY-ruIDEdWacZ9bDe_c.roa (raw, json)
Hash identifier: DeTPn6Q3iIrsHfk0rsy513epFLX7bWndAwXAYskdWUM=
Subject key identifier: E6:B8:55:7D:28:31:95:8F:AB:B8:80:C4:75:66:9C:67:D6:C3:7B:F7
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 03258B39
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5rhVfSgxlY-ruIDEdWacZ9bDe_c.roa
Signing time: Sat 01 Jan 2022 01:54:25 +0000
ROA not before: Sat 01 Jan 2022 01:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206375
IP address blocks: 188.132.132.0/24 maxlen: 24
188.132.139.0/24 maxlen: 32
188.132.138.0/24 maxlen: 32
188.132.137.0/24 maxlen: 32
188.132.136.0/24 maxlen: 32
188.132.133.0/24 maxlen: 24
188.132.145.0/24 maxlen: 32
188.132.144.0/24 maxlen: 32
188.132.143.0/24 maxlen: 32
188.132.140.0/24 maxlen: 24
188.132.237.0/24 maxlen: 32
188.132.238.0/24 maxlen: 24
188.132.236.0/24 maxlen: 32
188.132.247.0/24 maxlen: 24
188.132.248.0/24 maxlen: 32
188.132.160.0/24 maxlen: 24
188.132.162.0/24 maxlen: 24
188.132.161.0/24 maxlen: 24
31.210.43.0/24 maxlen: 32
31.210.42.0/24 maxlen: 32
188.132.186.0/24 maxlen: 32
188.132.185.0/24 maxlen: 32
188.132.188.0/24 maxlen: 32
31.210.55.0/24 maxlen: 32
31.210.54.0/24 maxlen: 32
78.135.97.0/24 maxlen: 32
78.135.96.0/24 maxlen: 32
78.135.95.0/24 maxlen: 32
78.135.94.0/24 maxlen: 32
78.135.93.0/24 maxlen: 32
78.135.92.0/24 maxlen: 32
78.135.91.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52792121 (0x3258b39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6b8557d2831958fabb880c475669c67d6c37bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:bd:72:78:d4:7e:62:8c:28:b3:0a:1b:4a:c0:
d7:bb:74:07:49:75:66:a1:2f:8f:27:64:35:59:b9:
42:c0:e1:a8:09:69:07:f8:20:c5:c4:8c:a8:99:93:
0d:a1:9e:1e:3d:05:3e:f5:d1:08:36:3d:cf:a5:a1:
63:88:b5:20:18:80:6b:3a:a9:a3:60:36:6d:1a:8b:
c6:83:58:37:02:f8:62:09:db:77:95:3f:02:28:e0:
e4:16:e7:f0:c2:40:4a:2a:fd:3b:5d:63:8c:27:bd:
29:9f:5e:dc:f2:24:9c:b2:41:c6:f4:f4:99:ac:ac:
e5:6e:53:f6:6f:c1:94:73:2b:de:31:df:4f:c7:b5:
5d:81:39:8a:6f:25:9a:a6:42:96:16:4a:e9:91:b2:
79:b5:19:f6:25:81:1d:0c:dd:8c:7d:c7:31:07:9f:
16:48:84:0c:46:5d:17:a0:cd:bd:7f:62:b0:8a:33:
36:b0:c3:49:6e:44:b0:5b:20:44:0b:7b:e5:cb:85:
f6:bb:4f:21:29:39:ab:33:d6:ef:ae:ab:69:5c:12:
20:00:e9:e4:72:09:52:e7:10:5c:b3:b1:a8:cd:73:
91:fb:e7:0c:63:ae:25:2f:66:85:83:c7:d9:ad:8a:
a4:3c:ee:eb:71:fd:7b:9f:4e:92:1a:c2:99:53:15:
8a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B8:55:7D:28:31:95:8F:AB:B8:80:C4:75:66:9C:67:D6:C3:7B:F7
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5rhVfSgxlY-ruIDEdWacZ9bDe_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.42.0/23
31.210.54.0/23
78.135.91.0-78.135.97.255
188.132.132.0/23
188.132.136.0-188.132.140.255
188.132.143.0-188.132.145.255
188.132.160.0-188.132.162.255
188.132.185.0-188.132.186.255
188.132.188.0/24
188.132.236.0-188.132.238.255
188.132.247.0-188.132.248.255
Signature Algorithm: sha256WithRSAEncryption
63:50:05:be:8c:e1:3b:47:cd:e3:36:17:97:a5:31:c0:76:e4:
27:04:b0:f0:2f:72:2d:fc:0d:74:77:06:86:70:82:34:55:df:
ff:d2:76:8e:9b:44:3f:a3:d3:dd:5a:4e:ee:ee:f9:d0:3b:9d:
d2:a9:84:46:40:c6:44:a4:b1:91:78:56:fa:91:40:8d:6f:90:
c4:65:d7:54:cd:6c:66:c5:fe:07:f4:a5:87:d7:84:fe:76:8c:
43:9d:91:f3:51:a0:88:f7:4b:aa:e2:e1:d6:9e:f7:70:d4:fa:
fc:db:68:03:11:a8:a9:0c:7d:6f:ad:c3:86:6a:1f:f3:c9:72:
9a:75:10:ae:5e:73:58:34:46:0b:58:66:c0:37:be:0a:0e:b0:
cb:5b:9c:30:ce:cc:dd:13:12:f3:9d:0d:29:c0:d9:63:34:38:
e0:a4:e6:93:a6:0a:df:06:c9:06:6b:62:23:94:5e:d0:fd:b6:
57:2b:9f:fa:05:8f:e6:2a:f4:41:95:a1:17:ea:34:2d:9d:81:
a9:ac:cc:6d:a1:06:c5:b7:6e:63:30:07:47:83:54:b1:e2:b8:
57:79:bb:83:12:ea:74:79:1b:a2:76:7b:e4:a9:f4:d5:53:9b:
31:9c:8c:12:0e:a9:5f:35:7d:fd:14:d1:7e:2c:0d:7e:07:7b:
cc:7d:91:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org