Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/eqRn-4kcHfwuDKBnKI6bVdKCHcU.roa
File: eqRn-4kcHfwuDKBnKI6bVdKCHcU.roa (raw, json)
Hash identifier: Wx+oy2RNzYruDtd9fuuRrC8NeTYwZGF/gz5YG7Zktv8=
Subject key identifier: 7A:A4:67:FB:89:1C:1D:FC:2E:0C:A0:67:28:8E:9B:55:D2:82:1D:C5
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0182C6537A16BFDB3F5D6D97CD7C6A451925
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/eqRn-4kcHfwuDKBnKI6bVdKCHcU.roa
Signing time: Mon 22 Aug 2022 16:12:15 +0000
ROA not before: Mon 22 Aug 2022 16:12:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56466
IP address blocks: 5.200.64.0/20 maxlen: 20
5.200.80.0/20 maxlen: 20
89.235.77.0/24 maxlen: 24
31.24.200.0/21 maxlen: 21
188.75.108.0/24 maxlen: 24
86.109.39.0/24 maxlen: 24
87.247.179.0/24 maxlen: 24
86.109.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c6:53:7a:16:bf:db:3f:5d:6d:97:cd:7c:6a:45:19:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Aug 22 16:12:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7aa467fb891c1dfc2e0ca067288e9b55d2821dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:89:68:1e:1b:88:b6:46:bb:94:ae:01:c8:b0:
8f:a0:3d:6b:2a:48:26:af:8d:be:98:e2:47:51:72:
5b:0d:59:d0:29:5a:de:18:82:b7:e4:27:e6:6f:0e:
89:59:6c:72:6f:e1:67:22:a8:64:a1:8d:5d:08:89:
a1:cc:c1:b6:d5:f0:3a:00:95:ac:07:71:fb:00:8e:
70:ac:87:01:d5:b6:e4:29:6d:4f:ba:c9:38:82:0b:
49:3c:a6:35:de:5a:3d:a4:7e:70:33:ec:d1:ac:ae:
f1:cd:39:16:85:35:d4:f5:20:bf:ed:b2:83:be:a9:
0c:aa:30:cd:35:b6:a0:27:35:2b:49:eb:20:de:ea:
02:62:ee:cd:9a:07:7e:7f:1c:3e:98:11:9f:6b:1f:
5a:5f:2e:1d:40:5c:c6:05:67:d9:c9:98:29:8f:d1:
76:a0:cd:94:b7:23:d3:d7:45:79:06:e9:60:e0:19:
e2:cc:2e:a3:83:09:0a:06:02:9d:b3:90:d0:a3:01:
39:2e:44:7c:94:45:78:bb:0a:24:4a:f9:cb:fe:fe:
e8:68:39:87:06:fd:26:8c:28:ab:d0:a8:63:52:94:
77:c3:3a:b5:c4:c5:b0:9f:64:89:06:1d:0e:6b:3a:
2b:c5:30:68:ca:4a:57:ef:2e:72:ee:a2:a3:6b:5a:
2a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A4:67:FB:89:1C:1D:FC:2E:0C:A0:67:28:8E:9B:55:D2:82:1D:C5
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/eqRn-4kcHfwuDKBnKI6bVdKCHcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.200.64.0/19
31.24.200.0/21
86.109.39.0/24
86.109.59.0/24
87.247.179.0/24
89.235.77.0/24
188.75.108.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:eb:d7:eb:bb:ac:85:17:2d:a4:5d:84:48:33:e7:83:ba:9a:
11:c8:33:3c:dd:73:8b:d4:66:be:f6:16:97:ce:e4:5e:de:ef:
61:88:68:84:85:7b:f4:95:72:de:6f:60:a5:8c:fd:cd:6a:8b:
49:ed:49:1e:ce:95:70:64:a9:03:17:5e:d1:5b:33:8e:fb:38:
b7:8f:b4:a6:29:20:e5:7c:7c:a1:c7:f1:c1:b2:d6:2f:66:56:
20:b2:99:29:e4:e7:59:33:11:54:01:fe:8f:37:55:17:7a:df:
d2:eb:62:5d:56:03:b0:4e:74:fd:8d:0c:d2:f9:c4:3e:84:c7:
0a:a1:7e:16:6b:1e:3b:55:de:2c:77:18:7b:01:87:36:3e:bb:
f1:4f:09:2c:2a:51:ea:2c:bb:f4:21:8a:27:37:a6:df:f7:c7:
ca:f9:2e:46:fa:e2:e8:50:18:14:5a:08:88:27:15:32:b7:00:
23:da:f9:c3:36:de:f7:ec:92:b8:95:f0:57:ec:9c:6b:e8:69:
8b:dd:27:e2:93:b6:9d:2f:7c:a6:aa:b0:43:49:ea:fc:2a:cb:
fc:cf:b7:75:bd:96:62:93:c6:7b:9b:cb:4e:14:07:05:9b:9a:
8d:d7:f4:14:29:fd:30:a6:2a:a2:a8:94:07:14:50:42:81:41:
71:a0:3b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org