Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/83eSyt_1OJuXirIYRoMdrWWH4mU.roa
File: 83eSyt_1OJuXirIYRoMdrWWH4mU.roa (raw, json)
Hash identifier: 1AbdsUosevDfHxDezcrpySyj2bBFm+2DVZue1ueVEVo=
Subject key identifier: F3:77:92:CA:DF:F5:38:9B:97:8A:B2:18:46:83:1D:AD:65:87:E2:65
Certificate issuer: /CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Certificate serial: 09145E57
Authority key identifier: 5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/83eSyt_1OJuXirIYRoMdrWWH4mU.roa
Signing time: Sat 01 Jan 2022 10:03:02 +0000
ROA not before: Sat 01 Jan 2022 10:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12360
IP address blocks: 185.39.108.0/22 maxlen: 24
93.119.240.0/20 maxlen: 24
82.115.96.0/19 maxlen: 24
5.57.192.0/21 maxlen: 24
212.7.160.0/19 maxlen: 24
2a02:1628::/32 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152329815 (0x9145e57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Validity
Not Before: Jan 1 10:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f37792cadff5389b978ab21846831dad6587e265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:14:72:f5:81:d2:52:c3:be:d1:60:58:1b:af:
d4:5d:58:00:f7:ff:8e:82:20:9f:c9:6f:9b:f4:50:
49:80:ba:55:5f:d6:30:2e:e7:03:cc:b9:64:83:c1:
ee:67:4a:50:f6:a4:51:83:d5:60:14:0f:f9:4d:07:
f8:23:c1:2f:a8:95:48:a2:04:61:a3:36:60:81:3e:
30:13:c5:5c:dd:8f:0d:44:b1:f6:e5:20:88:7e:ad:
af:f2:e2:01:f2:b0:9b:23:3b:ea:95:93:97:0e:32:
2e:47:e7:9c:d6:38:e3:e6:fc:b5:05:28:4e:9b:a7:
50:2e:04:32:56:3f:3c:a2:4c:1d:d0:39:75:9a:df:
a1:61:04:07:9e:a5:33:b4:54:d1:68:91:f4:be:ea:
8d:f1:ae:a1:19:fd:65:22:fe:fb:6f:d5:b4:ee:93:
dc:e0:82:9e:87:4b:fc:09:0d:b5:ed:7c:63:d4:aa:
15:00:7d:43:9b:df:23:59:60:1c:3b:1b:f1:a2:fe:
c9:a4:2f:70:6d:55:c1:fb:ab:61:2d:5e:0f:1d:aa:
b7:54:45:90:be:d0:f4:24:2e:19:b1:5f:12:80:49:
88:83:16:ac:68:97:3c:9a:44:f1:88:2d:7a:f2:8c:
ae:10:bc:ef:0e:b8:4a:b1:22:d2:66:29:4f:15:76:
b2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:77:92:CA:DF:F5:38:9B:97:8A:B2:18:46:83:1D:AD:65:87:E2:65
X509v3 Authority Key Identifier:
keyid:5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/83eSyt_1OJuXirIYRoMdrWWH4mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.192.0/21
82.115.96.0/19
93.119.240.0/20
185.39.108.0/22
212.7.160.0/19
IPv6:
2a02:1628::/32
Signature Algorithm: sha256WithRSAEncryption
5a:52:6a:0b:d6:fd:47:0a:40:01:16:74:50:44:d8:cf:c8:34:
40:73:d9:96:2a:9c:c2:85:49:9c:84:a5:60:78:01:c8:c6:1f:
39:92:be:4b:af:87:e3:cd:e9:db:91:a9:78:09:7e:e7:4e:d8:
65:73:99:88:9f:d8:f5:92:a3:af:2b:f3:08:a4:46:c5:9e:5b:
5a:0c:8b:76:e6:a6:a5:df:69:47:a2:c3:1f:a7:d3:a5:29:e1:
e4:1e:c3:5f:22:c3:55:23:fc:a9:c1:98:84:53:26:5f:87:bd:
bc:00:1d:c7:3d:d3:0c:92:ce:af:c8:74:df:41:57:a4:60:8f:
1a:f4:86:63:34:8a:bd:f1:0c:bb:5f:bf:96:b0:d7:4e:da:12:
f9:b1:dc:62:ce:20:76:06:03:39:e1:d4:86:59:0c:d8:1f:68:
07:6a:a7:ce:07:11:69:75:ae:87:f1:5d:52:ac:92:63:75:b0:
fb:21:82:0d:1c:e2:a2:9c:82:30:73:e9:3a:03:76:9f:25:e5:
a2:c0:90:85:a3:66:75:d8:75:fb:29:13:ef:f5:8f:ea:ed:ea:
f6:c0:f4:62:f7:09:ad:c8:ca:d2:24:d0:0f:09:7a:98:a7:82:
47:f9:e9:0a:42:de:4d:70:e8:15:b3:41:5c:86:6c:2d:40:fb:
24:6d:9e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:11 2023 by rpki-client on console-fra.rpki-client.org