Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/vEnAHI7pwP5HeofyqipumOcP74k.roa
File: vEnAHI7pwP5HeofyqipumOcP74k.roa (raw, json)
Hash identifier: 18iKujtidoNgYaQv1PDHK8d+fj1xlUvSjtlDhxV2clg=
Subject key identifier: BC:49:C0:1C:8E:E9:C0:FE:47:7A:87:F2:AA:2A:6E:98:E7:0F:EF:89
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 3404B634
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/vEnAHI7pwP5HeofyqipumOcP74k.roa
Signing time: Mon 31 Jan 2022 15:09:27 +0000
ROA not before: Mon 31 Jan 2022 15:09:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202196
IP address blocks: 5.57.20.0/24 maxlen: 24
5.57.21.0/24 maxlen: 24
5.57.20.0/23 maxlen: 23
37.10.1.0/24 maxlen: 24
37.10.24.0/24 maxlen: 24
37.10.24.0/23 maxlen: 23
37.10.27.0/24 maxlen: 24
37.10.28.0/24 maxlen: 24
37.10.29.0/24 maxlen: 24
37.10.30.0/24 maxlen: 24
37.10.31.0/24 maxlen: 24
37.10.25.0/24 maxlen: 24
37.10.26.0/24 maxlen: 24
37.10.30.0/23 maxlen: 23
37.10.41.0/24 maxlen: 24
37.10.42.0/24 maxlen: 24
37.10.43.0/24 maxlen: 24
37.10.44.0/24 maxlen: 24
37.10.40.0/24 maxlen: 24
37.10.45.0/24 maxlen: 24
37.10.46.0/24 maxlen: 24
91.195.236.0/24 maxlen: 24
2a01:5043:efd::/48 maxlen: 48
2a01:5043:2efd::/48 maxlen: 48
2a01:5041::/48 maxlen: 48
2a01:5041:4000::/48 maxlen: 48
2a01:5041:6000::/48 maxlen: 48
2a01:5041:1000::/48 maxlen: 48
2a01:5041:3000::/48 maxlen: 48
2a01:5041:2000::/48 maxlen: 48
2a01:5041:5000::/48 maxlen: 48
2a01:5043:e::/48 maxlen: 48
2a01:5041:7::/48 maxlen: 48
2a01:5041:2007::/48 maxlen: 48
2a01:5041:4007::/48 maxlen: 48
2a01:5041:efd::/48 maxlen: 48
2a01:5041:2efd::/48 maxlen: 48
2a01:5041:4efd::/48 maxlen: 48
2a01:5041:200e::/48 maxlen: 48
2a01:5041:400e::/48 maxlen: 48
2a01:5041:500e::/48 maxlen: 48
2a01:5041:600e::/48 maxlen: 48
2a01:5041:e::/48 maxlen: 48
2a01:5041:6004::/48 maxlen: 48
2a01:5041:2004::/48 maxlen: 48
2a01:5043:2000::/48 maxlen: 48
2a01:5043::/48 maxlen: 48
2a01:5041:eff::/48 maxlen: 48
2a01:5041:2eff::/48 maxlen: 48
2a01:5041:2010::/48 maxlen: 48
2a01:5041:6006::/48 maxlen: 48
2a01:5041:2006::/48 maxlen: 48
2a01:5041:6::/48 maxlen: 48
2a01:5042:2eff::/48 maxlen: 48
2a01:5042:eff::/48 maxlen: 48
2a01:5041:1003::/48 maxlen: 48
2a01:5041:6003::/48 maxlen: 48
2a01:5041:2003::/48 maxlen: 48
2a01:5041:3003::/48 maxlen: 48
2a01:5041:4003::/48 maxlen: 48
2a01:5041:5003::/48 maxlen: 48
2a01:5041:3::/48 maxlen: 48
2a01:5041:1014::/48 maxlen: 48
2a01:5041:3014::/48 maxlen: 48
2a01:5041:ea14::/48 maxlen: 48
2a01:5043:b::/48 maxlen: 48
2a01:5041:f::/48 maxlen: 48
2a01:5041:200f::/48 maxlen: 48
2a01:5041::/32 maxlen: 48
2a01:5041:ea16::/48 maxlen: 48
2a01:5041:ea09::/48 maxlen: 48
2a01:5042:1::/48 maxlen: 48
2a01:5042:2001::/48 maxlen: 48
2a01:5042:200b::/48 maxlen: 48
2a01:5042:b::/48 maxlen: 48
2a01:5041:ea15::/48 maxlen: 48
2a01:5041:200b::/48 maxlen: 48
2a01:5041:400b::/48 maxlen: 48
2a01:5041:b::/48 maxlen: 48
2a01:5041:1::/48 maxlen: 48
2a01:5041:2001::/48 maxlen: 48
2a01:5043:eff::/48 maxlen: 48
2a01:5043:2eff::/48 maxlen: 48
2a01:5041:8::/48 maxlen: 48
2a01:5041:6008::/48 maxlen: 48
2a01:5041:2008::/48 maxlen: 48
2a01:5042:200e::/48 maxlen: 48
2a01:5042:e::/48 maxlen: 48
2a01:5041:efe::/48 maxlen: 48
2a01:5041:2efe::/48 maxlen: 48
2a01:5041:4efe::/48 maxlen: 48
2a01:5042:efd::/48 maxlen: 48
2a01:5042:2efd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 872724020 (0x3404b634)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Jan 31 15:09:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc49c01c8ee9c0fe477a87f2aa2a6e98e70fef89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:b3:02:51:6e:96:11:15:be:44:8f:66:8b:
a9:cf:20:8f:96:a3:c3:b6:6b:cd:96:59:e1:88:0f:
45:93:d8:d1:5d:60:77:b0:7a:87:12:0e:ea:4f:9a:
b4:5c:ec:3b:2a:f9:3c:67:50:98:00:0c:06:d5:63:
06:06:51:4c:9c:4b:bf:7a:f8:f8:a7:5f:db:1d:69:
59:35:13:1a:cf:e1:06:57:7a:b0:8f:5f:cb:df:da:
12:48:1c:7b:ab:0a:5c:2b:ec:c4:72:d5:6d:96:8c:
95:26:45:57:45:31:03:e1:a2:62:96:be:70:93:54:
52:91:6a:d3:70:ec:ad:9b:d2:bf:6d:38:1f:ae:dc:
13:ee:2d:e4:18:0c:c5:3e:36:d4:52:3f:53:59:fd:
64:9b:d0:4b:c8:0d:40:8f:a1:d4:42:41:c9:8e:f0:
2e:67:61:d5:31:ac:9d:f1:d9:60:69:38:43:05:13:
f5:57:7b:dc:ae:2c:df:0f:c4:bf:d3:41:ac:28:c0:
b2:88:f6:26:db:9d:ba:b1:44:5f:7f:88:89:40:10:
a2:88:04:a8:23:6b:a5:1a:0e:80:c2:e5:50:20:5c:
ee:e4:e2:39:cc:37:0d:b6:be:0a:09:2c:20:f8:f2:
ea:f3:4a:69:8d:03:b5:c4:38:68:c1:51:cf:68:c3:
15:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:49:C0:1C:8E:E9:C0:FE:47:7A:87:F2:AA:2A:6E:98:E7:0F:EF:89
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/vEnAHI7pwP5HeofyqipumOcP74k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.20.0/23
37.10.1.0/24
37.10.24.0/21
37.10.40.0-37.10.46.255
91.195.236.0/24
IPv6:
2a01:5041::/32
2a01:5042:1::/48
2a01:5042:b::/48
2a01:5042:e::/48
2a01:5042:efd::/48
2a01:5042:eff::/48
2a01:5042:2001::/48
2a01:5042:200b::/48
2a01:5042:200e::/48
2a01:5042:2efd::/48
2a01:5042:2eff::/48
2a01:5043::/48
2a01:5043:b::/48
2a01:5043:e::/48
2a01:5043:efd::/48
2a01:5043:eff::/48
2a01:5043:2000::/48
2a01:5043:2efd::/48
2a01:5043:2eff::/48
Signature Algorithm: sha256WithRSAEncryption
67:5f:cb:20:61:93:c2:31:92:f5:e2:d7:87:c8:81:5c:75:2c:
3c:47:da:5a:4f:64:ac:3e:f8:9b:79:a5:c8:8f:0f:38:f1:f2:
56:cf:2d:bc:ba:f5:a9:c0:23:32:fb:ac:78:bb:0d:ca:14:5b:
f0:31:3f:26:5c:46:83:43:3e:5b:70:b4:25:a0:0d:32:00:e0:
07:6a:4a:0e:42:de:b6:5c:3e:b7:d3:76:67:13:d6:c7:68:cc:
cb:42:9d:a7:fd:19:42:1d:2d:9f:c0:d2:9d:9c:fd:1c:f5:ac:
08:9d:f7:d9:25:8a:48:16:02:43:2c:80:78:d8:e9:0d:9b:15:
57:ce:d0:c3:c9:8c:4a:8f:69:e3:46:03:14:c4:ef:e0:fa:04:
72:24:6f:e7:e5:35:35:20:af:87:83:43:16:05:74:c6:2a:23:
6a:3f:35:d8:2f:97:33:ce:82:e8:6e:30:f6:eb:01:9b:df:fe:
00:f3:f5:66:2f:b3:26:6d:2c:b7:83:fd:15:44:76:15:93:2b:
74:0c:5e:36:78:62:8b:5a:23:ea:a3:24:ba:b8:77:2c:39:4e:
91:d5:92:e6:ce:ae:2d:e0:9e:92:f7:05:0a:60:8e:10:d5:33:
ec:c3:c9:e1:cd:7f:b2:89:81:23:11:a7:f4:37:b0:41:b1:3b:
6c:27:7e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-fra.rpki-client.org