Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/5b7IqSgFVsTiqmHHfVnIwb6yt-Y.roa
File: 5b7IqSgFVsTiqmHHfVnIwb6yt-Y.roa (raw, json)
Hash identifier: SaUlC71GRCty3X73RDjgDSnQ9/kpwkwMC/KaCwobpJI=
Subject key identifier: E5:BE:C8:A9:28:05:56:C4:E2:AA:61:C7:7D:59:C8:C1:BE:B2:B7:E6
Certificate issuer: /CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Certificate serial: 05445044
Authority key identifier: D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/5b7IqSgFVsTiqmHHfVnIwb6yt-Y.roa
Signing time: Sat 01 Jan 2022 06:04:05 +0000
ROA not before: Sat 01 Jan 2022 06:04:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41046
IP address blocks: 77.242.80.0/20 maxlen: 20
82.114.192.0/19 maxlen: 19
81.200.56.0/21 maxlen: 21
178.72.192.0/19 maxlen: 19
178.72.192.0/18 maxlen: 18
178.72.224.0/19 maxlen: 19
81.200.48.0/21 maxlen: 21
81.200.48.0/20 maxlen: 20
2a07:b5c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88363076 (0x5445044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff0fecd7bf44148931788dfe7f20d67a67a0db
Validity
Not Before: Jan 1 06:04:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5bec8a9280556c4e2aa61c77d59c8c1beb2b7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4f:43:ce:c6:72:e7:96:40:38:56:06:b3:85:
59:ec:69:1a:82:13:11:28:0b:0e:e4:b8:68:3c:61:
40:be:44:7e:74:d4:88:18:95:02:6d:26:2a:28:57:
34:0a:ca:50:d2:cf:60:d5:21:8d:79:26:31:16:3f:
cd:d6:df:bf:28:4d:74:63:9a:a4:de:92:93:35:e1:
90:fe:8c:3e:c4:de:31:e5:54:af:d1:41:08:69:f7:
4e:6b:4f:80:d6:40:69:80:54:74:ac:39:76:79:5e:
1e:fd:2b:10:6f:f8:32:fa:6d:b4:62:a4:e1:76:b4:
9b:a4:9f:34:f9:27:2b:a0:05:fc:dc:ba:57:d3:71:
88:3c:b1:12:8e:ce:4c:0a:77:dc:e1:b2:3e:29:63:
19:0a:0c:fb:60:37:93:49:f4:dc:8e:3f:f0:98:0b:
c1:c2:77:33:81:54:cc:b9:e8:15:78:f0:68:2e:24:
7a:2d:c7:bb:95:9d:df:0a:19:e4:e4:79:23:20:ea:
b1:9e:f6:ba:84:43:51:72:55:72:ce:9f:47:bd:ff:
e6:73:b6:13:c3:9b:82:b5:a9:dc:84:cc:3a:28:c2:
6b:e0:63:0a:41:b6:ab:79:8d:58:69:12:61:04:ae:
49:d1:98:69:a9:5d:55:9f:2b:46:00:d8:0c:cb:46:
77:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BE:C8:A9:28:05:56:C4:E2:AA:61:C7:7D:59:C8:C1:BE:B2:B7:E6
X509v3 Authority Key Identifier:
keyid:D4:FF:0F:EC:D7:BF:44:14:89:31:78:8D:FE:7F:20:D6:7A:67:A0:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P8P7Ne_RBSJMXiN_n8g1npnoNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/5b7IqSgFVsTiqmHHfVnIwb6yt-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0c0c65-9f82-4450-9165-f0c21f8186f0/1/1P8P7Ne_RBSJMXiN_n8g1npnoNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.80.0/20
81.200.48.0/20
82.114.192.0/19
178.72.192.0/18
IPv6:
2a07:b5c0::/29
Signature Algorithm: sha256WithRSAEncryption
8f:8e:57:ad:c7:76:ee:95:ea:67:27:a1:f2:1b:ea:f3:94:f4:
21:9b:cd:0b:e3:34:81:d0:aa:06:f4:de:81:9f:01:7f:91:0a:
b4:14:6c:2b:0f:fd:1b:e0:cf:61:27:51:f3:05:6a:2a:e9:b5:
5a:7b:b7:f1:8a:8b:4f:c2:15:b4:aa:8a:90:f2:c6:5a:46:fc:
ff:c4:99:99:cb:88:d9:bf:a0:f5:5a:83:2e:28:26:d1:d4:91:
0b:d7:4d:9b:34:09:b6:cd:84:27:3d:d0:7e:b7:e0:76:53:ca:
b3:b4:f2:bd:7c:cd:56:49:95:c3:15:5a:bb:0f:fb:d9:66:91:
5e:c8:3f:f0:65:4f:f2:fd:e2:e2:0f:c1:9d:f5:30:ed:6c:3d:
bb:c5:92:02:00:9f:e9:42:cd:a8:6a:8b:b1:7b:a5:f3:31:62:
21:31:3c:24:4c:41:42:8c:80:0a:b9:11:04:6a:01:9b:dd:ee:
bb:cc:08:42:cd:f8:0e:be:bd:d7:4e:5f:76:e5:57:db:b8:c8:
14:20:f6:e9:21:82:fb:e9:92:6c:67:af:bc:97:01:0f:40:b0:
2a:5b:1d:a3:ad:0e:73:a1:27:00:eb:5e:d0:0a:5b:d5:42:5b:
93:fb:6a:d7:21:2d:c0:7b:52:e9:8b:ae:de:8f:fd:6e:f1:bc:
17:81:44:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org