Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/5XvNlNxj3yISzkIGlllMPCzZJfU.roa
File: 5XvNlNxj3yISzkIGlllMPCzZJfU.roa (raw, json)
Hash identifier: 42PKzsvyrC3Kkd7IuJzIcogeAD36Lzd6wjeTyR37gIk=
Subject key identifier: E5:7B:CD:94:DC:63:DF:22:12:CE:42:06:96:59:4C:3C:2C:D9:25:F5
Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Certificate serial: 0473F95E
Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/5XvNlNxj3yISzkIGlllMPCzZJfU.roa
Signing time: Sat 01 Jan 2022 04:53:28 +0000
ROA not before: Sat 01 Jan 2022 04:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47862
IP address blocks: 176.74.48.0/21 maxlen: 21
176.74.49.0/24 maxlen: 24
176.74.48.0/24 maxlen: 24
176.74.50.0/24 maxlen: 24
176.74.51.0/24 maxlen: 24
176.74.54.0/24 maxlen: 24
176.74.53.0/24 maxlen: 24
176.74.55.0/24 maxlen: 24
176.74.52.0/24 maxlen: 24
185.76.128.0/24 maxlen: 24
109.205.24.0/24 maxlen: 24
109.205.25.0/24 maxlen: 24
109.205.27.0/24 maxlen: 24
109.205.26.0/24 maxlen: 24
2a00:1b00:1000::/48 maxlen: 48
2a00:1b00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74709342 (0x473f95e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Validity
Not Before: Jan 1 04:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e57bcd94dc63df2212ce420696594c3c2cd925f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9f:67:64:fd:78:74:66:fc:f6:63:46:cd:44:
1a:d6:43:d8:4c:1b:a5:68:2a:59:2c:e7:07:9b:2e:
01:13:6c:7a:24:d5:08:98:d6:72:86:96:48:f9:5d:
7f:eb:3c:44:be:75:f3:8e:28:44:e5:6e:88:ea:d3:
b6:9a:1e:b2:ff:eb:af:68:25:58:ff:f8:b8:5f:9f:
73:aa:bd:53:8d:85:dc:3b:59:4f:b1:5d:15:7f:0e:
39:f8:1d:05:04:ca:ce:58:76:27:79:06:fd:09:1b:
4b:4f:3b:8f:83:23:4a:bd:20:0f:69:0a:4c:b1:db:
7f:0c:a0:52:9b:40:ff:f3:d6:4e:b7:36:c6:54:fa:
74:c9:b6:67:10:f0:17:a7:17:8a:e2:04:5a:dc:e1:
2b:99:df:c1:9b:ab:71:a0:0e:9e:26:83:27:85:72:
05:1d:c6:22:89:40:7a:06:5b:95:01:32:5a:99:f0:
14:f2:55:91:c4:a1:cf:1e:88:21:dc:c3:e3:f9:e3:
0b:4e:81:69:ca:58:c0:32:69:27:53:a5:79:a5:94:
87:20:e6:90:93:ec:3b:93:26:e0:f7:99:e7:67:0b:
d1:36:47:6f:fe:52:90:d0:20:9e:7f:6f:67:c2:2c:
ac:c3:d3:73:0f:10:f5:36:b4:7f:15:be:a0:5c:59:
d7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7B:CD:94:DC:63:DF:22:12:CE:42:06:96:59:4C:3C:2C:D9:25:F5
X509v3 Authority Key Identifier:
keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/5XvNlNxj3yISzkIGlllMPCzZJfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.24.0/22
176.74.48.0/21
185.76.128.0/24
IPv6:
2a00:1b00::/48
2a00:1b00:1000::/48
Signature Algorithm: sha256WithRSAEncryption
9c:12:d9:38:41:62:a6:04:f4:0e:92:9a:84:74:93:79:db:14:
ea:3d:da:69:a9:ee:0a:af:c9:b9:95:f0:7e:7e:c1:81:4d:6c:
43:46:11:9d:a9:bd:f1:51:6b:c3:14:ed:e7:57:5c:f7:5d:50:
4f:3b:97:01:2a:67:8d:25:12:09:fe:3f:c9:cb:c2:8b:d5:6d:
37:b0:56:a9:7d:90:f5:9f:ff:c5:ad:2a:d6:66:e9:ba:ab:3f:
ac:ba:d3:5f:a5:c4:00:d8:d5:a2:1f:cc:7b:cf:3f:a1:c8:96:
76:0e:95:22:e7:ac:0e:cf:bf:8e:56:05:72:4a:8e:77:c6:bf:
04:bc:02:03:01:1b:24:f3:1e:cd:13:f8:2e:58:3d:4d:35:22:
86:21:70:7d:d2:e4:ec:05:27:43:65:a7:29:b4:2a:f4:ff:48:
f6:19:74:0b:71:da:41:70:cc:d3:eb:a6:34:ea:a8:0e:32:b1:
f1:1c:06:d8:db:67:88:c5:75:08:43:d9:69:95:76:b7:47:e6:
07:2e:f9:0c:dd:66:71:f1:c4:a6:97:ee:dd:d8:51:7e:2a:6c:
66:af:11:b7:dc:c4:c8:a6:26:5a:9b:42:6e:a5:20:fb:ba:9e:
66:a3:02:11:e2:97:7b:eb:71:8e:21:e1:09:4b:c5:df:5c:16:
4d:ee:81:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:55 2024 by rpki-client on console-ams.rpki-client.org