Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/p5TXKDWSprkM6aZ228YQSSdhrac.roa
File: p5TXKDWSprkM6aZ228YQSSdhrac.roa (raw, json)
Hash identifier: bwehT8gj68F5mDPrdExoKj5CXPtg7C5wrJJ02uXqrJI=
Subject key identifier: A7:94:D7:28:35:92:A6:B9:0C:E9:A6:76:DB:C6:10:49:27:61:AD:A7
Certificate issuer: /CN=7ae62148b30b66bd0a3da3897ecfbfd9af4f431e
Certificate serial: 37FCB3A6
Authority key identifier: 7A:E6:21:48:B3:0B:66:BD:0A:3D:A3:89:7E:CF:BF:D9:AF:4F:43:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/euYhSLMLZr0KPaOJfs-_2a9PQx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/p5TXKDWSprkM6aZ228YQSSdhrac.roa
Signing time: Thu 31 Mar 2022 08:27:53 +0000
ROA not before: Thu 31 Mar 2022 08:27:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24592
IP address blocks: 212.92.32.0/24 maxlen: 24
212.92.38.0/24 maxlen: 24
212.92.37.0/24 maxlen: 24
212.92.36.0/24 maxlen: 24
212.92.35.0/24 maxlen: 24
212.92.34.0/24 maxlen: 24
212.92.32.0/19 maxlen: 19
212.92.33.0/24 maxlen: 24
212.92.40.0/24 maxlen: 24
212.92.39.0/24 maxlen: 24
217.13.112.0/24 maxlen: 24
217.13.116.0/24 maxlen: 24
217.13.115.0/24 maxlen: 24
217.13.114.0/24 maxlen: 24
217.13.112.0/20 maxlen: 20
217.13.113.0/24 maxlen: 24
217.13.118.0/24 maxlen: 24
217.13.117.0/24 maxlen: 24
212.92.55.0/24 maxlen: 24
212.92.60.0/22 maxlen: 22
89.45.36.0/22 maxlen: 22
185.86.32.0/22 maxlen: 22
217.13.125.0/24 maxlen: 24
217.13.124.0/24 maxlen: 24
217.13.123.0/24 maxlen: 24
217.13.122.0/24 maxlen: 24
217.13.121.0/24 maxlen: 24
217.13.120.0/24 maxlen: 24
217.13.119.0/24 maxlen: 24
217.13.127.0/24 maxlen: 24
217.13.126.0/24 maxlen: 24
2a02:23c8:ff00::/40 maxlen: 40
2a02:23c8::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939307942 (0x37fcb3a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ae62148b30b66bd0a3da3897ecfbfd9af4f431e
Validity
Not Before: Mar 31 08:27:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a794d7283592a6b90ce9a676dbc610492761ada7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:35:70:00:54:b1:03:ca:ec:cc:f9:ff:33:85:
dd:1d:7d:01:76:78:a4:47:ed:9e:96:dd:45:4a:ce:
ba:d5:cd:63:39:71:1d:3c:fa:42:92:fa:e4:b3:06:
ef:bc:40:f3:83:a4:31:67:d5:8f:1c:c9:72:6b:00:
7e:bf:1b:46:f6:56:81:c0:ab:a2:a6:2e:a5:0e:04:
b9:e6:b6:52:f8:78:ab:69:37:13:fe:1d:bf:26:95:
0d:f2:77:38:bf:e3:10:87:c2:6b:b3:29:95:75:7d:
38:42:ec:f9:9f:23:c2:f6:d7:ed:b1:10:04:b5:a3:
de:fc:df:7a:0f:04:42:22:28:14:9b:d0:ea:0e:fe:
bf:1e:e7:1f:6b:21:98:2e:4e:14:16:dc:7a:fc:1c:
86:1e:3c:c8:eb:e9:45:34:04:73:4a:55:55:bc:21:
67:29:b9:a4:ac:db:cd:3b:0e:7a:a0:09:ac:ef:4f:
03:9e:75:89:09:37:d9:76:3b:c4:69:ba:59:81:e8:
d5:2c:43:83:a1:b1:86:90:50:28:50:4f:c8:c0:b2:
3b:a8:32:33:61:53:22:35:fe:6d:34:f4:f8:dc:f5:
c0:03:57:33:03:3d:e1:a3:41:b3:04:d6:a1:10:c6:
fe:89:e4:9c:fd:f1:bd:8b:a7:fe:50:04:0a:34:bc:
e6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:94:D7:28:35:92:A6:B9:0C:E9:A6:76:DB:C6:10:49:27:61:AD:A7
X509v3 Authority Key Identifier:
keyid:7A:E6:21:48:B3:0B:66:BD:0A:3D:A3:89:7E:CF:BF:D9:AF:4F:43:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/euYhSLMLZr0KPaOJfs-_2a9PQx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/p5TXKDWSprkM6aZ228YQSSdhrac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/31f27a-b57b-4780-84d0-271bd72cdf69/1/euYhSLMLZr0KPaOJfs-_2a9PQx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.36.0/22
185.86.32.0/22
212.92.32.0/19
217.13.112.0/20
IPv6:
2a02:23c8::/40
2a02:23c8:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
05:9a:dc:f0:95:fc:7f:19:99:49:7f:cb:39:46:a0:81:de:08:
1c:ad:10:6e:ae:8c:30:3f:c0:cc:b1:99:66:b5:f7:f4:3c:b3:
84:cf:40:be:6c:50:45:7b:f0:31:cc:02:79:6f:25:43:c2:0b:
8e:51:00:d7:97:f6:e9:74:77:e8:75:76:5a:04:a7:49:89:cd:
17:e8:aa:59:ab:52:49:74:97:b7:72:ad:ec:d9:81:46:5c:24:
e8:b2:3b:ed:ee:95:4a:d5:a6:64:1a:66:2e:c2:4d:7b:db:d0:
75:67:3d:45:37:7b:f6:dc:72:55:6b:92:be:8d:68:d9:c2:17:
0e:e4:00:bc:ad:37:6d:97:e3:d5:bd:97:2d:67:ff:5e:63:d4:
34:28:62:e6:e8:2d:cb:9e:c8:56:c6:07:03:10:a3:e1:c6:e5:
03:56:12:f5:f0:e7:d2:0e:f7:cc:86:6d:2b:9f:d6:74:12:2c:
b0:c3:6d:e3:f7:21:1e:3e:dc:4b:e8:9a:b8:e1:de:b2:6c:6c:
f6:0d:60:8e:d0:3d:74:8f:a8:3e:1a:ce:e8:9f:5e:d3:d1:28:
e4:97:f3:22:c7:1c:7d:b8:20:05:1a:6d:f0:19:fb:5d:8f:67:
5d:f8:13:c8:db:82:3b:12:a1:a2:47:77:5b:af:fe:39:55:c1:
1a:44:08:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:24 2024 by rpki-client on console-ams.rpki-client.org