Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/GdfVoA6aTocym_BZgbVlR3-9phU.roa
File: GdfVoA6aTocym_BZgbVlR3-9phU.roa (raw, json)
Hash identifier: KpURjk+LFyTTzDTmpHz27YrFvkTRV+tgtm0p+KVST10=
Subject key identifier: 19:D7:D5:A0:0E:9A:4E:87:32:9B:F0:59:81:B5:65:47:7F:BD:A6:15
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 02F27075
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/GdfVoA6aTocym_BZgbVlR3-9phU.roa
Signing time: Thu 10 Mar 2022 07:15:24 +0000
ROA not before: Thu 10 Mar 2022 07:15:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47377
IP address blocks: 91.87.0.0/19 maxlen: 19
94.110.160.0/19 maxlen: 19
178.50.0.0/15 maxlen: 19
91.87.32.0/19 maxlen: 19
94.110.96.0/19 maxlen: 19
94.107.0.0/17 maxlen: 17
94.110.128.0/19 maxlen: 19
91.87.96.0/19 maxlen: 19
94.104.0.0/13 maxlen: 23
212.87.96.0/19 maxlen: 24
94.104.64.0/19 maxlen: 19
94.111.0.0/19 maxlen: 19
91.87.128.0/19 maxlen: 19
94.104.96.0/19 maxlen: 19
94.107.192.0/18 maxlen: 18
94.111.32.0/19 maxlen: 19
94.104.0.0/24 maxlen: 24
94.110.192.0/19 maxlen: 19
94.104.17.0/24 maxlen: 24
91.87.64.0/19 maxlen: 19
94.104.24.0/21 maxlen: 21
94.110.224.0/19 maxlen: 19
94.107.128.0/18 maxlen: 18
94.104.32.0/19 maxlen: 19
94.106.128.0/17 maxlen: 17
91.86.0.0/16 maxlen: 16
91.86.0.0/15 maxlen: 20
94.110.32.0/19 maxlen: 19
94.110.64.0/19 maxlen: 19
212.53.0.0/20 maxlen: 24
212.224.128.0/17 maxlen: 19
94.110.0.0/19 maxlen: 19
212.65.32.0/19 maxlen: 19
94.111.96.0/19 maxlen: 19
94.104.160.0/19 maxlen: 19
94.104.192.0/19 maxlen: 19
94.111.128.0/19 maxlen: 19
91.87.160.0/19 maxlen: 19
94.111.64.0/19 maxlen: 19
94.104.128.0/21 maxlen: 21
85.10.64.0/18 maxlen: 24
94.107.246.0/24 maxlen: 24
94.111.224.0/19 maxlen: 19
62.88.80.0/21 maxlen: 21
94.105.48.0/20 maxlen: 20
94.105.64.0/19 maxlen: 19
62.88.0.0/17 maxlen: 21
62.88.0.0/19 maxlen: 19
94.111.160.0/19 maxlen: 19
94.104.240.0/21 maxlen: 21
94.104.252.0/22 maxlen: 22
62.88.32.0/19 maxlen: 19
94.104.248.0/22 maxlen: 22
94.111.192.0/19 maxlen: 19
2a00:1868::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49442933 (0x2f27075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Mar 10 07:15:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19d7d5a00e9a4e87329bf05981b565477fbda615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:19:ac:7b:30:6e:20:4f:ae:b5:e4:e4:98:ab:
b4:1a:b2:e6:b3:ee:60:af:1a:89:61:b9:de:0d:09:
5d:bf:eb:56:50:50:a9:ef:ef:53:77:67:1c:17:a6:
2a:94:e5:34:29:78:41:d0:b7:18:2e:5e:fb:a0:9a:
93:c3:87:95:1c:16:2e:98:fa:46:98:78:1f:4b:6b:
d5:6d:ab:62:37:85:80:d5:cd:bd:a8:2d:84:25:5a:
6b:2c:cb:e3:4a:e2:e6:16:c6:19:97:0f:79:f3:54:
22:82:a0:10:d1:bb:9f:4c:99:9b:9c:48:a5:c7:03:
fb:20:23:09:61:1d:99:ab:17:7c:71:80:0e:d9:8a:
7c:2a:88:11:45:a4:d1:c3:86:7d:07:5e:da:02:49:
d2:ed:2f:82:af:8a:99:61:c1:14:7e:bd:68:fe:10:
5f:72:bc:76:c9:0f:2b:d3:a1:87:3b:fe:86:0b:5b:
53:70:f1:84:be:57:ec:2f:93:17:1c:12:90:fc:0a:
db:16:ec:b2:93:8d:da:ac:f1:7a:1a:33:8e:28:eb:
b4:c5:6b:50:d7:a0:0d:aa:b6:6e:4f:cd:14:70:d6:
44:30:69:9a:a5:6f:cd:ba:c9:c6:40:25:c8:97:d5:
62:3a:89:c4:d8:b6:dd:cd:01:99:76:4b:c4:57:e9:
d4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D7:D5:A0:0E:9A:4E:87:32:9B:F0:59:81:B5:65:47:7F:BD:A6:15
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/GdfVoA6aTocym_BZgbVlR3-9phU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.88.0.0/17
85.10.64.0/18
91.86.0.0/15
94.104.0.0/13
178.50.0.0/15
212.53.0.0/20
212.65.32.0/19
212.87.96.0/19
212.224.128.0/17
IPv6:
2a00:1868::/32
Signature Algorithm: sha256WithRSAEncryption
a9:2b:0c:68:57:4d:d8:e9:1f:81:0f:5f:8c:ed:75:9a:e9:e6:
62:df:01:7f:4c:3d:32:10:73:af:01:3b:0d:73:b4:5b:49:9d:
31:6d:99:3b:c2:9f:ca:81:29:d3:4b:ce:bb:25:1d:66:d6:17:
39:00:77:de:17:7b:65:47:3e:18:43:70:7b:48:b3:34:a1:54:
d7:27:42:41:6a:bc:aa:81:bc:8e:db:65:12:b6:d6:66:d0:94:
a3:86:71:2d:43:da:f0:a1:bc:ed:35:07:38:2e:ff:9f:6d:11:
34:c7:53:a1:d0:57:f4:b1:58:03:e8:c8:1e:77:9e:84:5f:77:
51:7c:59:f7:0f:fb:b8:2c:3e:0c:76:38:19:5a:66:f2:70:5e:
41:6d:c7:bc:c3:94:16:55:0c:26:ab:41:57:f1:f1:d0:28:b2:
27:f9:99:5f:7f:1b:e6:22:10:15:64:52:d0:7a:8e:4b:83:e0:
a0:65:41:85:99:2d:38:0e:e7:08:88:14:2e:35:4b:bd:05:6a:
cd:9e:1f:9b:9b:16:c3:02:1b:6c:b8:9b:44:2a:af:10:9d:0f:
24:46:a3:a9:12:8e:e9:43:97:94:30:93:1e:f8:72:3e:5b:ab:
93:dc:87:bb:7f:38:a9:d3:a2:c0:ea:c5:a7:50:aa:72:0c:4b:
a0:64:4e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:37 2024 by rpki-client on console-ams.rpki-client.org