Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/XsLEWabJparcWoxugX_4gEBzLQ4.roa
File: XsLEWabJparcWoxugX_4gEBzLQ4.roa (raw, json)
Hash identifier: j/caH/Ht/R4o7+P8kOoQlOfcykoNKjNeQJ/GDyHUwYg=
Subject key identifier: 5E:C2:C4:59:A6:C9:A5:AA:DC:5A:8C:6E:81:7F:F8:80:40:73:2D:0E
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 04F442D1
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/XsLEWabJparcWoxugX_4gEBzLQ4.roa
Signing time: Sat 01 Jan 2022 01:57:50 +0000
ROA not before: Sat 01 Jan 2022 01:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28924
IP address blocks: 195.90.99.0/24 maxlen: 24
212.52.160.0/22 maxlen: 22
212.52.160.0/24 maxlen: 24
212.52.160.0/19 maxlen: 19
212.52.163.0/24 maxlen: 24
212.52.164.0/24 maxlen: 24
212.52.161.0/24 maxlen: 24
212.52.162.0/24 maxlen: 24
212.52.165.0/24 maxlen: 24
212.52.166.0/24 maxlen: 24
212.52.170.0/24 maxlen: 24
212.52.171.0/24 maxlen: 24
212.52.168.0/22 maxlen: 22
212.52.168.0/24 maxlen: 24
212.52.169.0/24 maxlen: 24
212.52.172.0/24 maxlen: 24
212.52.167.0/24 maxlen: 24
212.52.174.0/24 maxlen: 24
212.52.173.0/24 maxlen: 24
212.52.177.0/24 maxlen: 24
212.52.178.0/24 maxlen: 24
212.52.175.0/24 maxlen: 24
212.52.176.0/24 maxlen: 24
212.52.179.0/24 maxlen: 24
212.52.184.0/24 maxlen: 24
212.52.185.0/24 maxlen: 24
212.52.182.0/24 maxlen: 24
212.52.183.0/24 maxlen: 24
212.52.186.0/24 maxlen: 24
212.52.181.0/24 maxlen: 24
212.52.180.0/24 maxlen: 24
212.52.187.0/24 maxlen: 24
212.52.188.0/24 maxlen: 24
212.52.191.0/24 maxlen: 24
212.52.189.0/24 maxlen: 24
212.52.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83116753 (0x4f442d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Jan 1 01:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ec2c459a6c9a5aadc5a8c6e817ff88040732d0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:04:a1:fc:e6:3d:74:3b:d6:f6:d4:d8:2c:ee:
44:1d:27:3e:1d:3b:33:16:e2:1b:f3:c4:e1:da:be:
b8:e5:f9:f5:f7:e7:c2:3f:4b:3a:ec:e0:aa:cd:3a:
6e:37:14:57:26:fa:3a:7a:b0:97:ee:a9:96:b0:65:
19:56:88:b5:c8:77:e7:1c:69:76:59:cf:58:22:c7:
b5:90:f3:45:5a:1a:8b:ff:4e:36:3a:1a:6e:79:a2:
3a:ec:2b:98:ef:42:b8:ea:25:04:40:af:a7:49:80:
e3:23:d9:25:53:77:b2:64:fe:cf:0f:ac:f3:50:72:
e1:04:0d:d0:36:bc:d5:27:ee:5a:bf:64:06:8f:12:
c8:a3:2f:5c:e6:f8:25:98:8f:0a:d2:2a:f5:f7:9c:
40:af:99:b8:70:60:1b:ba:eb:3c:7f:fd:0f:b7:43:
cc:c9:29:0b:7f:79:f1:1a:db:e1:37:80:77:26:75:
c5:ca:bc:6c:25:6e:d3:82:5e:73:e4:d5:91:df:f4:
8d:43:6e:d7:c0:90:38:02:f2:1a:2a:3d:10:3c:77:
92:cb:4d:bb:08:e2:22:2d:a1:fb:a6:1b:6c:69:af:
65:50:31:7d:14:62:f0:08:07:d1:e4:a6:3a:3f:54:
a1:f8:98:7e:1e:1b:0a:ea:a7:39:50:65:dc:9b:85:
77:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C2:C4:59:A6:C9:A5:AA:DC:5A:8C:6E:81:7F:F8:80:40:73:2D:0E
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/XsLEWabJparcWoxugX_4gEBzLQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.90.99.0/24
212.52.160.0/19
Signature Algorithm: sha256WithRSAEncryption
b6:ce:e1:c0:9c:c4:95:1f:c0:0c:71:26:90:4c:0b:a6:9d:31:
b6:e4:99:f0:f3:c2:f4:cc:93:81:22:63:21:8b:51:d1:a6:27:
35:c1:d2:fc:18:ca:f7:42:22:3a:79:a4:a1:1f:df:db:f3:e2:
66:78:44:d7:d9:61:5a:15:34:d4:cb:95:35:de:b4:a7:b6:4d:
94:1d:46:d5:dc:ca:fe:a0:9b:0d:ec:61:a2:69:28:c7:a3:75:
c9:e8:eb:fa:8d:ac:6c:0f:f7:3d:7b:33:13:0c:aa:5b:0d:60:
55:e1:05:f0:16:75:50:fc:c4:6b:8d:1b:52:db:e6:d0:cc:88:
fb:13:3f:6d:6f:5b:38:a5:23:2e:a5:62:3f:ae:8a:2c:15:18:
9b:88:c9:56:1c:7b:bb:23:1a:8d:6a:86:d6:36:7b:bb:32:f0:
4b:28:1f:76:c0:ab:a9:f5:63:58:7b:da:64:40:5f:a0:af:5f:
d7:27:c2:f5:4e:c4:d0:a2:71:31:9c:77:bf:32:3a:b3:14:a7:
08:e5:f4:8f:27:58:fb:b9:5b:0f:87:56:8c:6f:d3:fe:9b:46:
6a:f2:44:8c:0f:7a:fb:3f:ec:52:a6:11:bf:2c:d3:d1:b2:61:
ad:4b:dd:0b:e2:56:3a:3f:02:5b:5c:ce:d2:a2:24:69:ef:9d:
1d:dc:a8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:28 2025 by rpki-client