Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/5PadbiZF2NYougUUb16uAsqBKWM.roa
File: 5PadbiZF2NYougUUb16uAsqBKWM.roa (raw, json)
Hash identifier: 6Lrflj42PCzo8ezj4m59dHtKeVl69MRHJjv1izvulwM=
Subject key identifier: E4:F6:9D:6E:26:45:D8:D6:28:BA:05:14:6F:5E:AE:02:CA:81:29:63
Certificate issuer: /CN=8569f2100c2fc454ad07adec796b9e6f6366f071
Certificate serial: 05BBA021
Authority key identifier: 85:69:F2:10:0C:2F:C4:54:AD:07:AD:EC:79:6B:9E:6F:63:66:F0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWnyEAwvxFStB63seWueb2Nm8HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/5PadbiZF2NYougUUb16uAsqBKWM.roa
Signing time: Sat 01 Jan 2022 07:54:05 +0000
ROA not before: Sat 01 Jan 2022 07:54:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57256
IP address blocks: 89.187.217.0/24 maxlen: 24
89.187.216.0/24 maxlen: 24
89.187.219.0/24 maxlen: 24
89.187.218.0/24 maxlen: 24
89.187.220.0/24 maxlen: 24
89.187.223.0/24 maxlen: 24
89.187.222.0/24 maxlen: 24
89.187.221.0/24 maxlen: 24
185.176.145.0/24 maxlen: 24
185.176.144.0/24 maxlen: 24
185.176.147.0/24 maxlen: 24
185.176.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96182305 (0x5bba021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8569f2100c2fc454ad07adec796b9e6f6366f071
Validity
Not Before: Jan 1 07:54:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4f69d6e2645d8d628ba05146f5eae02ca812963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4c:f4:79:3e:94:93:d1:d2:7e:77:cc:c9:25:
83:97:01:a5:e9:a1:5c:76:2f:dc:f4:3d:ca:32:47:
54:9d:eb:2a:9c:2e:71:b5:03:76:e9:20:48:80:97:
51:a1:d7:47:41:86:d2:4a:d0:bb:45:96:47:8f:5f:
9e:a6:97:99:1e:26:ea:db:4f:46:27:2b:a7:1a:b2:
0c:f2:9c:58:09:34:4e:78:f1:88:b4:fa:1c:3f:9d:
c5:04:14:9f:d3:71:b4:6a:a3:99:dc:80:20:c8:c1:
9e:cb:7d:68:2c:73:19:dd:10:e6:ec:b1:80:8e:07:
4a:82:42:3a:18:26:f3:2b:16:7c:84:bf:e3:83:02:
37:91:f1:85:09:85:bb:c4:fe:4e:ae:cc:8b:1c:90:
d4:88:70:e3:07:dd:52:f4:2c:12:ba:1f:f1:e3:e3:
e9:b0:14:d3:5d:5b:0e:4b:14:f5:b4:62:d5:ed:fe:
a3:09:cd:90:8b:eb:30:a0:14:d6:08:41:6d:b3:a3:
6a:90:d3:9c:a7:25:a2:95:1c:ab:57:44:49:d2:a5:
72:62:3d:87:be:2e:c6:74:00:b5:0b:4f:41:05:87:
72:b9:bd:bd:d0:27:9e:95:13:a3:76:19:8e:5b:cc:
48:60:51:a2:37:7f:3c:97:da:0d:c2:fc:c6:82:0e:
48:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F6:9D:6E:26:45:D8:D6:28:BA:05:14:6F:5E:AE:02:CA:81:29:63
X509v3 Authority Key Identifier:
keyid:85:69:F2:10:0C:2F:C4:54:AD:07:AD:EC:79:6B:9E:6F:63:66:F0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWnyEAwvxFStB63seWueb2Nm8HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/5PadbiZF2NYougUUb16uAsqBKWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/92656f-eb32-402a-a331-2336cdb9ba9f/1/hWnyEAwvxFStB63seWueb2Nm8HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.216.0/21
185.176.144.0/22
Signature Algorithm: sha256WithRSAEncryption
62:2f:8b:f1:19:46:1e:c1:76:61:cc:5f:84:5d:65:53:21:fa:
48:bc:06:9f:e8:55:3f:61:85:0b:2f:04:98:95:7a:60:f0:76:
89:92:14:62:2f:85:fd:56:32:79:2c:83:82:12:a9:5c:a9:53:
84:9c:6a:73:a9:57:95:4f:09:02:6b:69:08:6b:0d:49:c4:bb:
6a:8e:16:39:ed:8a:f1:4b:44:25:f3:65:e7:51:3c:11:d4:49:
3a:91:2b:e3:a4:24:43:3a:69:76:5d:9e:60:60:bc:ac:b1:90:
e0:c3:80:d4:0f:ff:11:2f:0a:a5:c8:f9:97:88:1c:5c:59:97:
4d:c1:eb:5e:1e:a5:1d:eb:5e:35:9f:b3:de:d0:21:82:2e:d1:
31:a2:8b:3b:5b:fb:62:ea:ab:cd:97:12:dc:b7:1b:1c:33:7f:
b6:02:d5:e1:e0:86:83:08:c8:3f:99:d9:4a:d7:97:6d:08:24:
58:87:42:40:b1:95:33:64:46:4e:93:2f:00:86:24:29:92:75:
9a:ea:f0:3a:9a:87:b0:05:94:9f:fd:88:55:98:94:2e:b2:76:
2f:5a:9d:61:af:8f:b0:ff:a4:74:e0:6f:cd:a6:1d:6a:bd:77:
5b:7d:e9:bd:7e:c9:60:2a:42:26:8b:6c:95:b6:65:b7:6e:84:
5d:42:9e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:02 2024 by rpki-client on console-ams.rpki-client.org