Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/5PD65cacImIIz4R7AW4jBm4u7nw.roa
File: 5PD65cacImIIz4R7AW4jBm4u7nw.roa (raw, json)
Hash identifier: qmoIBmYVKbFAwnyR7I+8yC3OJjejy9/5IfM4T17Qk5I=
Subject key identifier: E4:F0:FA:E5:C6:9C:22:62:08:CF:84:7B:01:6E:23:06:6E:2E:EE:7C
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0182039E6BF6FD92FBC1FBF3305FDE26E532
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/5PD65cacImIIz4R7AW4jBm4u7nw.roa
Signing time: Fri 15 Jul 2022 20:48:09 +0000
ROA not before: Fri 15 Jul 2022 20:48:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 37.252.3.0/24 maxlen: 24
37.252.14.0/23 maxlen: 23
37.252.13.0/24 maxlen: 24
185.238.170.0/23 maxlen: 23
185.238.168.0/23 maxlen: 23
37.1.200.0/21 maxlen: 21
37.1.216.0/21 maxlen: 21
5.45.72.0/22 maxlen: 22
5.45.76.0/22 maxlen: 22
5.45.84.0/22 maxlen: 22
5.45.88.0/22 maxlen: 22
5.45.92.0/22 maxlen: 22
46.102.106.0/24 maxlen: 24
5.61.48.0/22 maxlen: 22
5.61.56.0/22 maxlen: 22
5.61.52.0/22 maxlen: 22
5.45.64.0/21 maxlen: 21
45.136.48.0/22 maxlen: 22
2a02:c6c3::/32 maxlen: 32
2a02:c6c1:2::/48 maxlen: 48
2a02:c6c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:03:9e:6b:f6:fd:92:fb:c1:fb:f3:30:5f:de:26:e5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jul 15 20:48:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4f0fae5c69c226208cf847b016e23066e2eee7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b1:ab:8d:16:8d:53:02:72:8b:90:98:54:21:
7b:f0:df:5e:37:07:d1:23:b2:fe:b4:4b:57:44:21:
38:5c:cf:fb:7d:27:e6:cc:b6:cc:1e:61:88:0a:2b:
ed:b3:e9:b5:7d:1c:75:2f:79:56:e6:8f:5c:66:30:
4d:8b:5e:d4:43:5b:e8:c8:c4:66:2e:55:be:0e:94:
e7:6a:74:3a:7c:fd:bc:68:69:a7:27:38:87:c5:bc:
5a:3b:5a:80:d9:65:87:4d:7a:ba:99:30:02:c3:45:
78:86:bc:ab:3f:56:d1:93:26:3c:34:38:22:9d:ef:
a7:ce:fd:f6:3f:44:81:ca:9a:1f:1b:4e:8f:00:6f:
08:e5:58:c0:52:86:1d:2a:a3:eb:0d:67:41:05:8e:
7f:af:93:89:c9:81:e2:14:30:a1:51:ea:12:dd:bc:
d1:b8:9f:3e:30:42:81:dc:a8:36:20:78:67:3a:f5:
ef:3e:2d:be:79:f8:b5:db:ce:1b:65:61:28:41:0f:
7b:ec:a8:19:0e:16:7c:62:83:7b:02:72:90:75:4e:
da:ef:7e:ff:a8:0a:4c:b2:15:32:a0:d0:e1:03:f8:
7f:91:42:7a:08:90:ff:45:4b:72:df:df:e4:46:c6:
e8:b1:48:13:82:5e:d4:e2:67:94:cb:e4:13:98:f7:
e4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F0:FA:E5:C6:9C:22:62:08:CF:84:7B:01:6E:23:06:6E:2E:EE:7C
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/5PD65cacImIIz4R7AW4jBm4u7nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.64.0/20
5.45.84.0-5.45.95.255
5.61.48.0-5.61.59.255
37.1.200.0/21
37.1.216.0/21
37.252.3.0/24
37.252.13.0-37.252.15.255
45.136.48.0/22
46.102.106.0/24
185.238.168.0/22
IPv6:
2a02:c6c1:2::/48
2a02:c6c2::/31
Signature Algorithm: sha256WithRSAEncryption
34:8b:c1:f4:db:00:9d:bf:3a:cd:de:de:d7:f3:95:7f:2c:06:
e1:af:7a:aa:01:87:67:cc:bc:88:57:92:b4:47:2e:ac:88:23:
99:06:5b:2f:19:2c:48:e0:71:b5:9e:27:1d:7d:9c:11:2b:29:
c0:d6:91:19:67:02:71:0c:04:df:9e:fa:39:94:21:71:90:bd:
31:79:67:c1:f4:d9:15:cb:06:3d:5c:7d:a4:05:f2:92:12:56:
ef:97:60:fc:60:fc:4a:8b:d2:b0:ab:a2:a6:b1:de:4c:b3:31:
74:60:2d:bd:3c:b5:8c:de:9a:9d:98:1c:47:05:91:64:4f:ef:
6d:0d:e2:14:1f:1f:b0:bc:9f:5f:bb:59:5b:e0:6f:7b:17:a8:
4d:d0:95:ff:43:e0:7e:37:74:be:36:37:38:a0:9a:a8:b3:7d:
9d:bc:cf:73:30:fe:a7:60:fd:03:23:96:5b:59:7d:8c:1f:4d:
4c:dd:4e:4b:9c:0a:74:19:4c:09:ff:9e:5b:55:34:00:c2:af:
f9:fa:82:23:3a:13:80:7d:89:28:64:aa:72:92:b3:6e:d6:00:
88:be:65:f4:f5:3f:ac:63:1e:47:e9:73:6c:e1:93:f2:26:8e:
7a:f8:f5:a6:5e:d1:62:a9:18:d9:4c:be:17:9e:d5:d4:80:2e:
74:c8:2a:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org