Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/mdUZ4D_nmWN7qvtPAFEMEOLuPgw.roa
File: mdUZ4D_nmWN7qvtPAFEMEOLuPgw.roa (raw, json)
Hash identifier: RyZHOwiU1fAAAr/PBj6LKpP8APcptyyto5WhZiH1s/Q=
Subject key identifier: 99:D5:19:E0:3F:E7:99:63:7B:AA:FB:4F:00:51:0C:10:E2:EE:3E:0C
Certificate issuer: /CN=e5503498ff185d0c607353f43f55e911f62a6802
Certificate serial: 361AB546
Authority key identifier: E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/mdUZ4D_nmWN7qvtPAFEMEOLuPgw.roa
Signing time: Thu 12 May 2022 10:42:48 +0000
ROA not before: Thu 12 May 2022 10:42:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15943
IP address blocks: 149.233.128.0/17 maxlen: 24
84.242.16.0/20 maxlen: 24
185.82.16.0/22 maxlen: 24
213.21.32.0/20 maxlen: 24
149.249.16.0/20 maxlen: 24
185.29.240.0/22 maxlen: 24
216.83.208.0/20 maxlen: 24
192.119.48.0/20 maxlen: 24
192.196.192.0/20 maxlen: 24
185.232.32.0/22 maxlen: 24
185.220.216.0/22 maxlen: 24
176.109.192.0/20 maxlen: 20
95.163.160.0/20 maxlen: 24
185.23.224.0/22 maxlen: 24
185.215.236.0/22 maxlen: 24
81.25.160.0/20 maxlen: 24
149.224.0.0/16 maxlen: 24
46.22.0.0/20 maxlen: 24
95.81.0.0/19 maxlen: 24
149.249.248.0/22 maxlen: 24
193.218.16.0/20 maxlen: 24
212.127.32.0/19 maxlen: 19
213.209.64.0/18 maxlen: 24
195.123.96.0/20 maxlen: 24
134.101.128.0/17 maxlen: 24
188.136.224.0/19 maxlen: 24
31.29.32.0/19 maxlen: 24
84.46.0.0/17 maxlen: 24
46.59.128.0/17 maxlen: 24
31.172.104.0/21 maxlen: 24
2a04:4540::/29 maxlen: 29
2a02:2028::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 907720006 (0x361ab546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5503498ff185d0c607353f43f55e911f62a6802
Validity
Not Before: May 12 10:42:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99d519e03fe799637baafb4f00510c10e2ee3e0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:77:5a:c4:af:85:aa:c2:40:ff:a9:c0:c4:1f:
16:24:95:fe:d9:51:15:88:24:8e:ae:1a:e3:69:07:
cf:d4:d5:fc:7a:1e:3f:c5:11:78:b1:83:a3:f1:39:
28:e9:39:6a:80:7d:dd:0e:5b:0b:50:da:35:0c:b2:
09:3a:01:ac:4c:38:e5:d2:2c:c7:11:e1:19:6c:51:
da:ad:e6:c7:2a:29:dd:ca:fc:66:31:ff:38:28:fe:
bd:87:50:54:44:c3:83:57:b2:26:01:c8:65:34:4f:
e3:33:a1:cd:c0:de:0d:ca:d8:db:98:9b:b4:d5:4f:
e8:43:14:4e:a8:95:36:d6:5d:84:74:8d:9d:14:a3:
aa:95:db:eb:04:17:a5:99:9b:d1:9a:07:42:c9:79:
d5:e9:91:d3:9d:b6:74:da:ac:63:0e:e8:fb:8d:72:
bd:6e:a4:06:ca:d1:6c:bc:18:41:2b:bb:4c:37:a6:
8a:41:be:8b:42:24:b3:a5:33:2e:a7:17:88:31:69:
85:8c:aa:27:94:b6:7b:15:0b:1b:2f:34:05:b4:35:
38:24:5d:68:5f:c9:4a:e1:c3:bb:bc:34:63:e2:ea:
cb:3e:0f:d5:1c:0d:9a:e0:c8:e3:1a:df:29:39:01:
d5:06:e3:6a:39:c5:5e:22:47:13:6e:6c:b3:08:28:
a4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D5:19:E0:3F:E7:99:63:7B:AA:FB:4F:00:51:0C:10:E2:EE:3E:0C
X509v3 Authority Key Identifier:
keyid:E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/mdUZ4D_nmWN7qvtPAFEMEOLuPgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/5VA0mP8YXQxgc1P0P1XpEfYqaAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.29.32.0/19
31.172.104.0/21
46.22.0.0/20
46.59.128.0/17
81.25.160.0/20
84.46.0.0/17
84.242.16.0/20
95.81.0.0/19
95.163.160.0/20
134.101.128.0/17
149.224.0.0/16
149.233.128.0/17
149.249.16.0/20
149.249.248.0/22
176.109.192.0/20
185.23.224.0/22
185.29.240.0/22
185.82.16.0/22
185.215.236.0/22
185.220.216.0/22
185.232.32.0/22
188.136.224.0/19
192.119.48.0/20
192.196.192.0/20
193.218.16.0/20
195.123.96.0/20
212.127.32.0/19
213.21.32.0/20
213.209.64.0/18
216.83.208.0/20
IPv6:
2a02:2028::/32
2a04:4540::/29
Signature Algorithm: sha256WithRSAEncryption
39:d4:6f:25:43:b0:ca:ac:db:b8:68:c7:0c:07:c1:bb:9d:5d:
1a:ba:29:a5:30:d3:cf:39:aa:5c:13:8e:86:ac:b4:68:54:1a:
db:81:9f:97:92:64:6a:46:f7:b5:9e:f4:e7:c7:55:32:de:67:
55:21:6e:6e:24:9c:cc:24:06:cb:60:5e:16:f3:c8:7b:30:31:
c1:4b:0c:73:07:60:dc:a3:50:b0:b7:a6:b5:7c:e9:59:2a:b8:
b3:cd:c5:f9:6b:3d:6f:dd:de:82:6f:86:d5:bf:94:04:86:70:
8d:f5:06:25:cf:fe:47:b9:a8:23:7b:ad:05:9d:4e:26:7c:0c:
da:63:9b:66:c4:01:9d:69:84:92:c5:d2:55:2b:47:47:ea:dd:
a2:c2:69:65:0b:77:67:ec:a9:e3:c9:39:05:ce:13:9d:8d:f0:
53:ef:49:d6:e1:cf:ed:72:27:1d:5c:d8:bb:50:5f:d8:a8:ef:
ba:77:9c:4d:a1:da:cd:ca:25:4e:35:70:89:18:f4:4e:ec:02:
74:59:cf:7d:06:bf:e5:26:25:32:12:d5:f4:34:e0:5e:68:0c:
ed:ab:f3:cb:ea:b6:31:b0:9f:1e:73:a8:be:c6:6d:17:93:c4:
17:60:d4:9d:6f:2d:48:c4:ac:77:9f:27:c5:c8:4f:11:51:7d:
04:39:61:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:59 2023 by rpki-client on console-fra.rpki-client.org