Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/5JzSnJDDNCC1JqNJv83kzDQZ9vY.roa
File: 5JzSnJDDNCC1JqNJv83kzDQZ9vY.roa (raw, json)
Hash identifier: 4YAhwdoA5jmUfcfGZhij4AhCF6ZpWWk3vncqhVxaaAk=
Subject key identifier: E4:9C:D2:9C:90:C3:34:20:B5:26:A3:49:BF:CD:E4:CC:34:19:F6:F6
Certificate issuer: /CN=66d337d330ba44efcfef555355132a6a2c69783c
Certificate serial: 05258EA2
Authority key identifier: 66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/5JzSnJDDNCC1JqNJv83kzDQZ9vY.roa
Signing time: Sat 01 Jan 2022 06:01:35 +0000
ROA not before: Sat 01 Jan 2022 06:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9147
IP address blocks: 185.176.57.0/24 maxlen: 24
185.176.58.0/24 maxlen: 24
185.176.56.0/24 maxlen: 24
185.176.56.0/22 maxlen: 22
185.176.59.0/24 maxlen: 24
78.31.232.0/24 maxlen: 24
78.31.232.0/22 maxlen: 22
78.31.233.0/24 maxlen: 24
78.31.234.0/24 maxlen: 24
78.31.235.0/24 maxlen: 24
185.119.240.0/22 maxlen: 22
212.86.64.0/19 maxlen: 19
185.119.240.0/24 maxlen: 24
212.86.64.0/24 maxlen: 24
212.86.65.0/24 maxlen: 24
212.86.70.0/24 maxlen: 24
212.86.69.0/24 maxlen: 24
212.86.67.0/24 maxlen: 24
212.86.66.0/24 maxlen: 24
185.119.242.0/24 maxlen: 24
212.86.68.0/24 maxlen: 24
185.119.243.0/24 maxlen: 24
212.86.71.0/24 maxlen: 24
185.119.241.0/24 maxlen: 24
212.86.72.0/24 maxlen: 24
212.86.73.0/24 maxlen: 24
212.86.76.0/24 maxlen: 24
212.86.74.0/24 maxlen: 24
212.86.75.0/24 maxlen: 24
212.86.77.0/24 maxlen: 24
212.86.78.0/24 maxlen: 24
212.86.79.0/24 maxlen: 24
212.86.80.0/24 maxlen: 24
212.86.83.0/24 maxlen: 24
212.86.81.0/24 maxlen: 24
212.86.82.0/24 maxlen: 24
212.86.84.0/24 maxlen: 24
212.86.85.0/24 maxlen: 24
212.86.86.0/24 maxlen: 24
212.86.87.0/24 maxlen: 24
212.86.90.0/24 maxlen: 24
212.86.88.0/24 maxlen: 24
212.86.89.0/24 maxlen: 24
212.86.91.0/24 maxlen: 24
212.86.95.0/24 maxlen: 24
212.86.93.0/24 maxlen: 24
212.86.94.0/24 maxlen: 24
212.86.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86347426 (0x5258ea2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d337d330ba44efcfef555355132a6a2c69783c
Validity
Not Before: Jan 1 06:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e49cd29c90c33420b526a349bfcde4cc3419f6f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1d:61:54:7a:b5:4e:2b:8e:f3:e3:c6:57:53:
ad:2f:0f:59:e2:ce:fe:74:9d:99:8b:83:81:b9:5b:
0f:68:63:a0:30:8b:e8:88:4b:45:99:b8:07:3f:46:
ad:22:25:71:71:a4:97:f2:5b:46:df:41:e3:c9:7c:
32:fd:98:11:c9:d0:7e:1b:92:a1:e4:a6:c0:39:1f:
2a:ba:9d:24:6a:49:5b:77:78:42:7b:d5:22:f2:e7:
87:8e:a7:28:d4:a1:bc:70:24:52:36:1e:5c:ae:94:
13:1d:d5:0e:70:f8:a7:0e:57:eb:88:15:a3:76:5f:
7e:fe:28:bf:bd:35:2f:35:65:d0:e0:1b:3f:c6:fa:
c6:d2:40:ce:b7:1b:f1:3f:3d:3b:5c:2b:38:4a:27:
d4:1c:95:1c:e2:a8:f5:27:d6:27:93:79:84:80:34:
44:d9:ce:95:1c:ff:23:e9:0b:7c:2c:33:20:e3:1a:
f6:a1:d0:14:67:ac:1d:c3:07:54:b4:dc:ff:fd:cb:
0b:aa:17:4b:9b:ee:51:93:22:88:b2:aa:3f:bc:fc:
9b:be:64:5b:9f:af:84:8e:b8:6d:73:36:cd:57:05:
8c:ee:10:5c:61:98:95:a0:a8:74:b7:4b:eb:73:ed:
17:3d:e8:5f:52:d1:98:ec:3d:56:10:d6:a6:18:86:
5a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:9C:D2:9C:90:C3:34:20:B5:26:A3:49:BF:CD:E4:CC:34:19:F6:F6
X509v3 Authority Key Identifier:
keyid:66:D3:37:D3:30:BA:44:EF:CF:EF:55:53:55:13:2A:6A:2C:69:78:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtM30zC6RO_P71VTVRMqaixpeDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/5JzSnJDDNCC1JqNJv83kzDQZ9vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/2b5e7c-67b1-477d-895f-8f5fc92125db/1/ZtM30zC6RO_P71VTVRMqaixpeDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.31.232.0/22
185.119.240.0/22
185.176.56.0/22
212.86.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b4:52:f0:a3:1a:47:6a:de:46:b4:fc:84:23:59:0a:4d:b9:f8:
06:c7:6a:c4:2c:60:f1:a4:84:c7:00:39:01:72:35:3d:ca:17:
81:b7:4e:bf:e2:99:ef:41:26:00:58:64:8b:f4:59:ab:1d:80:
c1:e9:66:24:2f:d9:fd:a2:97:7d:8b:9d:fc:61:0b:c6:de:26:
58:f8:64:43:27:93:d6:2d:39:1b:8c:6d:c0:31:c0:ba:ec:fe:
7d:68:77:c2:14:ce:5e:f4:e4:49:71:3e:70:6b:d4:91:d4:c6:
a8:02:bb:18:40:50:cd:e7:2d:db:34:d5:65:69:8e:31:a9:5c:
c6:55:04:90:f2:52:08:d0:b7:6a:da:14:c7:8c:b5:07:d8:bf:
0c:2c:4e:03:2f:8f:d6:17:cc:1e:15:41:60:f7:0c:d0:99:bc:
3b:eb:bb:58:13:04:47:c2:6e:ff:ef:c6:83:c2:e9:53:9c:83:
f6:b2:26:93:90:49:9c:41:55:aa:1f:9a:f4:10:35:7a:d5:88:
a2:79:04:df:f9:a1:50:ee:6b:d0:65:3f:e9:5b:4f:47:0e:30:
61:fd:18:1d:96:3a:a5:56:2f:76:30:26:cf:83:8b:d9:ee:36:
03:32:1a:8f:50:17:ad:47:8c:4c:d1:0b:85:01:5c:f0:be:39:
21:53:7c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:08 2024 by rpki-client on console-fra.rpki-client.org