Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/XEim5u2v_CyDsUW0CtQlIySUjJk.roa
File: XEim5u2v_CyDsUW0CtQlIySUjJk.roa (raw, json)
Hash identifier: iIFUe12g2yo4r2TY9gFuRfj1mZiIYoc2fRF+ExkK3B4=
Subject key identifier: 5C:48:A6:E6:ED:AF:FC:2C:83:B1:45:B4:0A:D4:25:23:24:94:8C:99
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 0906076D
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/XEim5u2v_CyDsUW0CtQlIySUjJk.roa
Signing time: Sat 01 Jan 2022 12:59:55 +0000
ROA not before: Sat 01 Jan 2022 12:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13193
IP address blocks: 62.212.112.0/24 maxlen: 24
213.41.128.0/17 maxlen: 17
213.215.0.0/18 maxlen: 18
185.33.40.0/22 maxlen: 22
185.43.68.0/22 maxlen: 22
194.79.128.0/18 maxlen: 18
194.146.224.0/22 maxlen: 22
80.248.208.0/20 maxlen: 20
62.212.96.0/19 maxlen: 19
80.65.224.0/20 maxlen: 20
178.132.16.0/20 maxlen: 20
79.170.216.0/21 maxlen: 21
194.242.112.0/22 maxlen: 22
5.23.40.0/21 maxlen: 21
171.25.208.0/22 maxlen: 22
93.184.32.0/20 maxlen: 20
78.40.48.0/21 maxlen: 21
2001:7a8::/32 maxlen: 32
2a01:68::/32 maxlen: 32
2001:7a8:3440::/44 maxlen: 44
2a01:6460::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151390061 (0x906076d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jan 1 12:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c48a6e6edaffc2c83b145b40ad4252324948c99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:80:73:25:6a:87:0f:5e:37:34:a4:1c:43:7f:
e2:a9:77:89:c7:62:cd:96:e8:c1:79:c6:5a:e7:10:
8d:d0:af:6f:b8:dc:f4:b1:07:60:d6:ca:b0:f3:d3:
da:e7:b6:1f:49:47:ce:da:19:12:fc:38:1a:ad:da:
83:26:e1:a9:0b:d6:44:06:b3:60:79:e7:54:98:a1:
6d:e2:ac:ba:ae:2b:78:61:da:ec:b2:a4:6a:21:e3:
c8:b9:75:ab:8f:5d:3f:c7:e1:26:64:14:54:b2:36:
5f:a4:40:62:7e:57:bd:c8:1c:27:47:14:18:d1:50:
0c:3b:1d:fe:b1:5b:b4:22:b7:42:af:f5:74:df:dd:
f5:2b:5a:fc:8d:dc:27:6a:48:bb:1f:3d:14:75:15:
93:56:83:5d:fc:69:02:0a:41:f9:bb:2f:57:72:4b:
6e:f6:2e:34:59:e8:96:7e:02:27:ae:9f:a9:a6:86:
99:9d:35:81:5f:77:d2:d1:64:b7:9c:6f:6a:d1:a7:
24:be:30:6e:67:3a:61:8d:64:dd:b7:e7:9a:80:ea:
cd:f9:fb:79:ba:37:d6:38:3e:ca:ef:0b:b6:07:81:
3d:d8:3e:be:5b:c2:0f:bf:b7:72:c1:e0:24:d3:0a:
9e:e8:a6:fe:2a:d5:0a:79:0a:ee:fc:c5:27:e2:20:
ab:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:48:A6:E6:ED:AF:FC:2C:83:B1:45:B4:0A:D4:25:23:24:94:8C:99
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/XEim5u2v_CyDsUW0CtQlIySUjJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.40.0/21
62.212.96.0/19
78.40.48.0/21
79.170.216.0/21
80.65.224.0/20
80.248.208.0/20
93.184.32.0/20
171.25.208.0/22
178.132.16.0/20
185.33.40.0/22
185.43.68.0/22
194.79.128.0/18
194.146.224.0/22
194.242.112.0/22
213.41.128.0/17
213.215.0.0/18
IPv6:
2001:7a8::/32
2a01:68::/32
2a01:6460::/32
Signature Algorithm: sha256WithRSAEncryption
0a:96:e1:10:09:45:6a:1a:6d:45:87:e5:ea:5a:92:f8:9e:e6:
1a:ef:f3:71:96:2f:1d:8a:0b:ab:59:6c:38:0d:ae:a2:b6:27:
ea:49:36:ab:80:50:21:3d:93:ea:8a:eb:f4:2f:b4:f7:9e:5c:
40:b4:09:83:3b:a2:47:ac:2a:e2:97:b0:f8:f2:c7:fc:d4:c7:
1b:fe:4c:b9:47:df:a4:73:5e:e1:75:37:07:b9:50:5c:d3:0d:
6c:e1:51:7c:f0:ab:be:cd:6c:57:8b:54:9f:58:17:87:14:10:
ae:dc:68:1b:8c:50:4c:04:90:03:d6:14:f7:14:33:38:f5:51:
00:5a:e3:5b:74:9b:17:a2:69:d2:2b:3c:88:67:b8:bf:22:67:
7e:7f:1e:80:e0:69:71:7e:79:12:b0:07:35:d6:f7:0a:8d:b0:
06:89:4f:15:9b:37:63:44:6c:fa:e0:99:40:ef:82:c5:2e:67:
4c:73:2b:17:59:50:1a:b2:63:5f:29:35:70:39:0b:4d:67:04:
ef:da:b3:46:28:08:7c:cf:c9:d3:2d:b5:46:a3:e8:87:13:4d:
7e:e2:84:10:3e:cd:ac:77:1a:e9:f1:19:4f:32:2a:9b:73:57:
19:81:ab:e9:dd:8c:04:03:ab:f4:dc:79:ce:89:22:18:b0:ec:
41:c3:15:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:23 2024 by rpki-client on console-ams.rpki-client.org