Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/s7MlWUGcl_ui3KK17BOhZWwXvBU.roa
File: s7MlWUGcl_ui3KK17BOhZWwXvBU.roa (raw, json)
Hash identifier: mBbobD5oMMD7veTKIt6YAu6FbUn7ejX8kaSw4QwCWS4=
Subject key identifier: B3:B3:25:59:41:9C:97:FB:A2:DC:A2:B5:EC:13:A1:65:6C:17:BC:15
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 36769536
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/s7MlWUGcl_ui3KK17BOhZWwXvBU.roa
Signing time: Sun 29 May 2022 07:15:15 +0000
ROA not before: Sun 29 May 2022 07:15:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197343
IP address blocks: 5.56.130.0/23 maxlen: 23
5.56.128.0/22 maxlen: 22
5.56.128.0/23 maxlen: 23
5.57.34.0/24 maxlen: 24
5.57.33.0/24 maxlen: 24
5.57.32.0/21 maxlen: 24
5.57.37.0/24 maxlen: 24
5.57.36.0/24 maxlen: 24
5.57.35.0/24 maxlen: 24
5.57.38.0/24 maxlen: 24
5.57.39.0/24 maxlen: 24
185.212.48.0/24 maxlen: 24
185.212.48.0/22 maxlen: 22
185.212.49.0/24 maxlen: 24
185.215.230.0/24 maxlen: 24
185.124.172.0/22 maxlen: 22
37.32.44.0/22 maxlen: 22
37.32.40.0/22 maxlen: 22
178.239.149.0/24 maxlen: 24
178.239.150.0/24 maxlen: 24
178.239.156.0/23 maxlen: 23
178.239.156.0/22 maxlen: 22
178.239.155.0/24 maxlen: 24
178.239.154.0/23 maxlen: 23
178.239.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913741110 (0x36769536)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: May 29 07:15:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3b32559419c97fba2dca2b5ec13a1656c17bc15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:92:0b:8c:80:ed:9d:3a:47:9e:6a:fa:80:b7:
5f:32:8a:1d:90:91:65:c5:04:70:5c:8f:4b:66:0c:
5e:45:cd:60:51:e4:17:e6:37:eb:90:78:5e:2c:72:
4b:98:43:5e:af:6a:4c:e0:cc:64:e4:72:b2:7b:56:
61:16:28:90:71:fc:a5:aa:4a:45:c4:50:be:a7:65:
17:63:e4:75:ac:b9:26:46:5e:1f:84:67:21:df:d7:
0b:5c:92:b2:a4:f2:a6:99:8b:e0:d9:1e:3c:ea:50:
4f:7a:32:3c:86:9f:0a:71:d5:6d:a0:0a:82:e0:69:
83:fc:ea:83:c2:2a:fa:be:ee:75:e4:a5:0e:44:5c:
2c:90:e5:44:d3:6d:f5:42:20:76:1d:14:65:87:44:
13:13:be:e4:84:82:da:aa:88:5e:ae:e2:b4:28:f9:
11:0d:94:53:36:58:58:55:63:12:d3:8a:2b:cf:57:
06:98:85:04:81:64:0c:47:fe:82:c8:0f:c3:1d:0f:
4d:f8:97:ab:80:22:8d:35:95:ff:80:79:7d:c4:c7:
38:3b:57:5b:5e:2a:4e:eb:aa:36:45:91:a4:df:07:
ff:04:99:7a:c1:83:e9:ca:0a:2c:ec:fb:e9:59:8b:
58:47:d4:eb:05:a7:7e:ee:25:85:2c:d9:0f:e8:50:
5c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B3:25:59:41:9C:97:FB:A2:DC:A2:B5:EC:13:A1:65:6C:17:BC:15
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/s7MlWUGcl_ui3KK17BOhZWwXvBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.128.0/22
5.57.32.0/21
37.32.40.0/21
178.239.149.0-178.239.150.255
178.239.154.0-178.239.159.255
185.124.172.0/22
185.212.48.0/22
185.215.230.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:67:ea:e7:0f:c6:94:89:36:78:11:34:69:ca:2a:fc:54:20:
75:5d:05:3c:43:14:29:50:ec:c9:20:ed:80:e3:bb:59:03:ce:
9d:ad:31:7e:fe:dd:89:de:07:74:f2:dd:a6:5f:e3:37:e8:0a:
ca:00:db:89:9c:0a:91:ba:5e:7b:61:53:63:ff:13:81:3e:aa:
d8:34:ac:93:6d:a0:7f:6d:82:05:f1:cd:4c:5c:fb:d5:ca:01:
85:5d:6f:0e:cf:62:26:c0:f3:f2:9d:03:bb:b6:05:f8:48:b3:
c7:03:9f:17:fb:61:2d:17:af:c1:7c:8f:12:ca:08:3d:99:8d:
a3:bb:ef:26:ff:b6:5b:a2:18:c3:d2:42:eb:59:a7:11:c4:8e:
0e:51:25:57:f2:ce:b9:5c:6d:bd:ba:8a:28:63:02:21:88:30:
b9:d8:21:8f:de:84:b9:7b:cf:01:a1:55:1b:e3:7a:f4:a6:97:
6f:b9:d4:b3:fd:df:f4:30:70:83:8e:ac:17:fd:e1:4c:e8:dc:
e5:8f:3c:0d:25:c8:54:16:4b:1e:e9:25:f2:e0:dd:6a:3a:d2:
b5:5e:a8:f1:1c:81:a9:c1:7f:6d:7b:18:24:9a:59:9d:57:46:
c9:8b:a9:75:b1:42:17:78:b3:65:cc:b0:cf:3a:b8:f6:e1:95:
a8:9a:f8:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:33 2023 by rpki-client on console-fra.rpki-client.org