Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/m0DILH_axu2buicRqYYNRtV05vI.roa
File: m0DILH_axu2buicRqYYNRtV05vI.roa (raw, json)
Hash identifier: seazfcrQg4kD0tyYNCA1u1x6IGTVU2zFSRDKVKQsLKk=
Subject key identifier: 9B:40:C8:2C:7F:DA:C6:ED:9B:BA:27:11:A9:86:0D:46:D5:74:E6:F2
Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Certificate serial: 04765A6E
Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/m0DILH_axu2buicRqYYNRtV05vI.roa
Signing time: Sat 01 Jan 2022 04:53:30 +0000
ROA not before: Sat 01 Jan 2022 04:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61137
IP address blocks: 91.229.65.0/24 maxlen: 24
185.76.128.0/22 maxlen: 22
185.76.130.0/24 maxlen: 24
185.76.131.0/24 maxlen: 24
5.53.96.0/22 maxlen: 22
5.53.100.0/24 maxlen: 24
109.205.28.0/23 maxlen: 23
91.229.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74865262 (0x4765a6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Validity
Not Before: Jan 1 04:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b40c82c7fdac6ed9bba2711a9860d46d574e6f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1b:6a:31:f1:8e:e9:60:13:02:77:24:0a:12:
cd:6d:8d:fa:93:6e:cf:30:7d:c1:70:14:03:c7:a2:
90:05:df:e9:fa:1d:7e:85:46:ea:27:5d:32:a8:ad:
f3:a6:4f:b5:83:f1:ff:21:3e:39:57:bf:d3:37:d3:
44:8c:74:29:b5:fb:1d:e5:65:73:41:ad:37:4e:dd:
a7:1c:6a:a8:a5:d1:5b:21:14:87:2f:ec:10:85:96:
25:01:ab:13:c8:b2:71:c1:01:54:59:ff:0e:cc:33:
58:4a:c5:d3:a0:ac:27:92:c1:49:14:b6:2b:f1:12:
10:88:52:af:6c:e3:80:2f:ec:71:d4:c6:fd:3f:99:
bc:24:c0:36:2d:7f:a8:a8:47:90:ab:ad:fb:e4:9f:
7f:61:d7:48:7e:44:ee:3a:eb:bf:66:57:e6:b1:ee:
b4:3b:82:76:a7:62:4c:b1:8a:f9:01:4e:46:31:12:
9b:85:81:c9:33:6c:41:8d:73:d3:d7:d7:79:2f:48:
f5:e8:dd:e9:ac:76:70:3a:04:61:c8:e1:38:91:22:
bf:a6:a3:dd:e2:f9:ad:86:4e:d2:95:15:79:68:39:
36:d6:40:b1:56:12:c6:b4:00:74:e6:5a:3d:15:c0:
1a:5b:9b:b8:1c:cd:f9:d2:6c:68:e4:82:a7:f8:d1:
ee:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:40:C8:2C:7F:DA:C6:ED:9B:BA:27:11:A9:86:0D:46:D5:74:E6:F2
X509v3 Authority Key Identifier:
keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/m0DILH_axu2buicRqYYNRtV05vI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.96.0-5.53.100.255
91.229.64.0/23
109.205.28.0/23
185.76.128.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:22:ea:a9:53:b8:91:7c:3c:aa:6e:1b:6f:18:8b:50:31:19:
ff:85:61:4d:aa:71:cd:17:c8:fc:7f:4c:d6:50:dc:22:fe:9f:
4b:36:5e:a0:ac:2f:60:11:1b:11:94:32:dd:f2:b0:81:85:55:
3d:15:29:4b:80:80:77:36:53:56:c8:fb:1b:83:be:bb:8c:33:
16:eb:23:9e:c7:9d:8c:0c:60:fb:1a:3f:51:17:2f:23:10:dc:
c5:72:5e:97:0c:9e:85:0d:45:c7:72:ea:88:15:bf:d1:cd:98:
a6:0f:d2:45:13:44:a4:4e:4d:85:f7:33:05:1a:3c:23:99:18:
73:59:97:ad:60:88:b6:04:34:54:40:e5:eb:2c:96:f8:8a:69:
01:2e:e5:cd:88:d4:7f:30:a7:d7:2a:e0:0f:08:16:18:2a:aa:
5c:6f:18:36:1c:13:79:67:6c:69:32:a7:05:dc:f2:39:97:b5:
ff:3a:06:ea:cb:7f:be:c0:86:44:e6:8b:54:91:3a:58:13:36:
66:7b:86:9e:9b:fa:6b:4c:8a:c3:f7:2f:9b:97:c1:c0:bb:21:
91:5a:d0:ee:15:c0:ff:a6:44:58:cb:3e:a6:c8:b5:d1:27:0d:
ee:9e:cf:13:c8:3d:70:27:39:6a:b5:4d:dd:cb:2f:f5:2e:9d:
0e:40:79:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:55 2024 by rpki-client on console-fra.rpki-client.org