Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/Vt-6Sd08IHqI8h48WDH-c59Ls30.roa
File: Vt-6Sd08IHqI8h48WDH-c59Ls30.roa (raw, json)
Hash identifier: NZAK82c7BhwHXrFRet4ZB8BY1EiysqrI6dg4X5fUVes=
Subject key identifier: 56:DF:BA:49:DD:3C:20:7A:88:F2:1E:3C:58:31:FE:73:9F:4B:B3:7D
Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Certificate serial: 018363B03DC7B00E4DDE1B265E33CCE6DFE7
Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/Vt-6Sd08IHqI8h48WDH-c59Ls30.roa
Signing time: Thu 22 Sep 2022 05:33:57 +0000
ROA not before: Thu 22 Sep 2022 05:33:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61137
IP address blocks: 91.229.65.0/24 maxlen: 24
185.76.128.0/22 maxlen: 22
185.76.130.0/24 maxlen: 24
185.76.131.0/24 maxlen: 24
5.53.96.0/21 maxlen: 21
5.53.96.0/22 maxlen: 22
5.53.100.0/24 maxlen: 24
109.205.28.0/23 maxlen: 23
91.229.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:63:b0:3d:c7:b0:0e:4d:de:1b:26:5e:33:cc:e6:df:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Validity
Not Before: Sep 22 05:33:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56dfba49dd3c207a88f21e3c5831fe739f4bb37d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:09:f8:f2:4c:75:24:16:f6:47:0e:5e:7b:44:
6f:77:24:a5:2d:91:33:6f:8e:9c:d8:80:e3:fd:3e:
8e:5e:b0:80:3d:97:9a:62:2e:8c:26:04:87:84:75:
2d:5d:0e:fc:ce:e2:43:37:ad:b7:8d:5a:79:7d:e0:
f7:59:a6:64:5d:69:f3:e4:15:4c:63:b7:44:b7:28:
d1:39:aa:5d:a7:5f:68:08:24:c9:e4:6b:e1:d0:fb:
8e:1f:12:25:92:14:aa:98:aa:1a:56:b2:d9:d2:2f:
5c:fa:2b:59:66:d4:e6:a4:bb:24:17:2f:ff:32:0b:
3f:6c:57:a7:bb:bc:45:ea:c2:0d:ca:2f:02:e7:52:
72:c9:40:9a:ac:91:df:0d:b5:5a:92:13:8d:b4:7b:
d3:58:fc:bf:d0:c1:75:3c:1d:3b:e5:d0:3a:ee:2d:
96:84:8e:fe:0f:51:54:91:82:4c:5f:4c:64:c6:fb:
24:38:d8:44:f6:e2:53:f0:83:20:5f:f8:17:7b:d2:
ef:06:ad:34:6f:ce:ef:72:c1:be:25:10:c4:27:fb:
13:d0:a0:24:56:d2:f7:5f:be:87:54:1f:93:ed:cc:
84:e9:52:cd:37:7b:23:07:8c:ad:c7:88:a4:0f:db:
a1:77:82:8a:b0:a9:97:2a:c3:08:ff:de:4d:f7:92:
29:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DF:BA:49:DD:3C:20:7A:88:F2:1E:3C:58:31:FE:73:9F:4B:B3:7D
X509v3 Authority Key Identifier:
keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/Vt-6Sd08IHqI8h48WDH-c59Ls30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.96.0/21
91.229.64.0/23
109.205.28.0/23
185.76.128.0/22
Signature Algorithm: sha256WithRSAEncryption
62:5f:4a:9b:17:44:16:14:b8:2a:f6:ff:6c:14:27:dd:d1:dd:
45:f3:ee:93:d7:ab:a6:51:a9:e2:c5:0a:e3:f0:a6:75:3a:47:
25:03:b5:33:74:24:aa:48:2a:8c:ba:02:c5:8c:8d:14:38:7d:
c7:b9:1b:18:91:2a:50:3a:68:12:52:58:67:4c:24:40:40:6e:
fd:bf:d5:d0:d7:96:9c:7a:7f:92:a6:1d:a0:7b:35:f0:1e:1a:
be:4d:7a:6f:85:10:26:6b:09:85:dc:38:75:d3:ee:44:85:9a:
8c:d0:ae:cd:69:64:4f:7c:b6:06:c6:2a:a8:d7:c5:5c:45:e6:
d9:1d:ab:ad:d3:aa:61:e9:f0:dd:b0:81:15:55:97:62:ef:19:
c2:a2:11:e0:0a:fb:1f:15:07:25:b1:50:92:6e:a6:87:d1:ea:
ee:a5:e5:6b:f6:0f:98:a6:af:bb:fb:23:e8:74:1b:e8:fb:53:
ce:bd:d9:44:73:9e:37:52:ae:f6:a8:e8:2b:cb:90:68:23:c4:
22:8d:8b:bf:f5:b3:7c:9f:27:e9:42:23:03:ec:ac:8e:19:b9:
00:ac:c2:13:7e:de:db:dd:a3:42:14:0e:bc:4b:08:e2:25:3e:
60:3d:77:34:22:06:66:a8:2b:1f:e4:0f:af:3a:57:ff:3e:68:
75:0a:ee:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:55 2024 by rpki-client on console-fra.rpki-client.org