Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/05xT3M8MzCMFGaiU6V_PaJ0Se2k.roa
File: 05xT3M8MzCMFGaiU6V_PaJ0Se2k.roa (raw, json)
Hash identifier: D5+eNvp5ZP4iFEvqK/hxDaNTTHZE/vO0ikW7sptn/lU=
Subject key identifier: D3:9C:53:DC:CF:0C:CC:23:05:19:A8:94:E9:5F:CF:68:9D:12:7B:69
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 0A63D669
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/05xT3M8MzCMFGaiU6V_PaJ0Se2k.roa
Signing time: Tue 10 May 2022 21:36:02 +0000
ROA not before: Tue 10 May 2022 21:36:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211642
IP address blocks: 185.219.42.0/24 maxlen: 24
185.219.43.0/24 maxlen: 24
185.219.40.0/24 maxlen: 24
185.219.41.0/24 maxlen: 24
45.128.206.0/24 maxlen: 24
45.128.204.0/24 maxlen: 24
185.240.102.0/24 maxlen: 24
45.128.207.0/24 maxlen: 24
5.253.62.0/24 maxlen: 24
5.253.60.0/24 maxlen: 24
5.253.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174315113 (0xa63d669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: May 10 21:36:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d39c53dccf0ccc230519a894e95fcf689d127b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:52:8e:d3:00:9a:78:2e:27:56:d0:23:cc:84:
0a:28:4f:6a:c9:54:59:a1:df:22:33:d0:a0:0d:91:
c0:b7:42:83:5d:aa:95:3e:12:71:04:84:bd:ae:8b:
24:03:a2:91:7c:43:ab:04:bf:76:63:51:3c:19:1a:
22:e7:83:24:4f:ee:3a:40:3a:e2:47:0e:05:58:38:
85:a6:a2:10:49:a1:fb:20:86:a0:86:0f:8a:23:33:
e5:dc:4b:7d:d1:9b:e1:11:b8:46:8e:6e:00:58:4a:
50:b3:ed:cf:71:07:d7:0d:61:07:3a:56:27:ad:68:
a9:6c:98:b6:3d:a5:b1:b9:75:fb:9a:01:5e:3e:a9:
be:02:57:57:3a:e5:e3:1c:03:9a:b2:e0:c1:b1:52:
ce:28:44:9f:a3:72:6d:69:be:fe:0f:5c:4a:bd:5a:
bc:8d:17:7f:dd:ba:a6:d1:12:d8:ec:6d:05:fb:6c:
5a:c0:89:40:f2:7d:b6:b5:ec:f1:c5:b8:48:a2:1c:
38:96:98:02:27:20:44:60:3d:8a:27:40:13:3b:d8:
a7:ea:50:91:ec:0b:52:35:df:5b:2a:0b:6f:f8:b0:
b1:e8:a4:0e:3b:93:28:23:74:2e:fd:40:6f:18:6e:
f0:26:9e:95:1c:2b:be:3b:f2:82:4d:d2:a1:71:3e:
75:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9C:53:DC:CF:0C:CC:23:05:19:A8:94:E9:5F:CF:68:9D:12:7B:69
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/05xT3M8MzCMFGaiU6V_PaJ0Se2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.60.0-5.253.62.255
45.128.204.0/24
45.128.206.0/23
185.219.40.0/22
185.240.102.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:10:29:74:a0:b6:66:12:33:f0:66:99:62:e0:df:fe:24:c4:
82:ce:48:3f:6a:cc:7b:8d:34:d6:a4:d5:2a:8f:48:0f:36:35:
63:3e:25:f7:d8:7b:9a:8e:e1:c7:4a:b0:6e:c0:5e:10:c7:f4:
be:89:44:78:2c:c2:36:65:46:02:5a:d5:e0:e3:92:99:d6:b7:
96:79:2c:fd:9e:0a:04:d2:e9:09:15:a9:2b:c2:ae:13:a0:cc:
3f:03:21:97:5d:73:45:ae:f1:97:f7:1f:22:97:5d:10:23:a2:
05:1c:7d:c2:05:e1:42:9c:b9:19:6a:c4:08:0d:2d:1b:f8:bd:
d1:66:92:95:f6:58:39:74:4f:59:c1:ff:5c:a5:98:27:e2:4f:
2e:20:98:07:3f:75:f5:c8:b5:7a:3d:81:84:ff:82:6c:ca:9c:
d6:ca:d1:d3:e8:ba:35:59:6e:08:2e:f3:21:f9:68:ba:00:19:
ee:80:3d:f1:37:f0:62:e1:11:94:73:cb:ec:55:f6:c8:f9:f3:
28:11:93:95:34:03:4e:d6:f9:cf:93:47:68:c6:d3:43:f6:00:
08:2d:94:55:8f:82:86:a5:88:81:fe:fb:c4:df:9a:53:5c:fe:
b2:30:4e:41:5f:a6:3e:ff:b9:a7:c6:d0:1e:0b:97:c0:16:65:
85:21:04:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org