Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/5PwGSEyoYCjd5Nngu0iKpfGDnDM.roa
File: 5PwGSEyoYCjd5Nngu0iKpfGDnDM.roa (raw, json)
Hash identifier: skp32qYhSUCwqIMkIDB2q5sK79aX3g0bvUOHy3vHyUc=
Subject key identifier: E4:FC:06:48:4C:A8:60:28:DD:E4:D9:E0:BB:48:8A:A5:F1:83:9C:33
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 1749995D
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/5PwGSEyoYCjd5Nngu0iKpfGDnDM.roa
Signing time: Sat 01 Jan 2022 16:03:50 +0000
ROA not before: Sat 01 Jan 2022 16:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44277
IP address blocks: 93.118.39.0/24 maxlen: 24
89.43.61.0/24 maxlen: 24
85.204.23.0/24 maxlen: 24
86.106.99.0/24 maxlen: 24
188.240.198.0/23 maxlen: 23
89.35.115.0/24 maxlen: 24
188.214.226.0/24 maxlen: 24
188.241.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390699357 (0x1749995d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4fc06484ca86028dde4d9e0bb488aa5f1839c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:76:89:88:e1:39:33:1d:c3:0a:c8:98:33:78:
49:20:73:4e:20:3f:41:c5:1e:47:77:84:e9:84:2c:
33:4c:6b:91:ca:84:c7:88:14:ce:61:f4:6c:e8:69:
9e:66:ec:cd:ed:c8:f4:b1:10:51:11:d5:05:51:f8:
43:86:3f:74:a9:ca:d1:56:14:27:88:22:be:0c:1e:
85:e7:0d:08:ea:8e:8d:eb:da:43:32:22:01:0d:ab:
3e:2d:25:d9:8a:60:0e:66:74:af:4a:01:0c:bf:b9:
58:11:cc:cb:eb:79:eb:5d:d6:e4:78:b7:4f:4b:3d:
e1:f7:6d:98:78:60:f3:38:4a:e6:0f:e8:3e:97:c5:
3a:8f:75:05:c4:33:0d:08:57:62:f2:00:ec:e2:2f:
09:99:db:9b:61:07:e1:c4:fd:5b:73:76:4a:8a:3d:
7d:74:7e:2b:1d:ba:9c:df:09:53:fa:a2:79:db:87:
20:36:85:a0:2d:06:e7:ec:75:f0:b9:4c:78:c4:fa:
e7:47:a6:49:7b:12:ce:cc:3b:15:75:bf:54:1b:33:
5f:0e:98:ed:ab:3b:02:7f:56:f5:48:aa:ed:ca:6a:
e0:13:9b:df:18:eb:d3:6c:a8:49:49:85:1a:5d:d4:
fe:f0:4a:50:2b:20:35:f7:73:07:1d:32:6e:0f:67:
19:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FC:06:48:4C:A8:60:28:DD:E4:D9:E0:BB:48:8A:A5:F1:83:9C:33
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/5PwGSEyoYCjd5Nngu0iKpfGDnDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.23.0/24
86.106.99.0/24
89.35.115.0/24
89.43.61.0/24
93.118.39.0/24
188.214.226.0/24
188.240.198.0/23
188.241.108.0/24
Signature Algorithm: sha256WithRSAEncryption
04:36:43:08:4a:86:2d:ab:bb:ff:41:7a:cb:9f:7f:18:dc:76:
d1:a1:d7:f9:81:55:ee:86:b6:5e:3f:46:f7:6f:39:ce:c6:26:
cf:93:a2:89:0f:8d:61:0e:07:42:42:b3:9d:c2:11:7f:50:93:
bf:63:c5:5b:48:d1:b6:84:37:b7:2d:59:76:c9:43:31:29:b7:
5f:42:82:bc:ac:96:51:7d:37:ad:35:b7:9f:89:e3:1a:8b:d6:
a6:30:e5:1f:c0:c3:55:c9:c0:8e:d8:39:a4:92:c1:72:9e:28:
59:65:fe:54:c9:22:ec:cb:b4:99:67:8d:24:b3:23:91:92:a5:
c8:f8:d9:c1:05:93:21:75:49:e4:8e:fb:9a:e4:81:b1:01:5b:
da:14:29:a8:9a:49:65:7c:e1:c6:df:e0:68:40:2d:8c:d9:97:
96:e0:30:ee:a1:7d:b5:19:1c:44:8b:e6:c3:a3:fa:93:fe:88:
78:0d:73:1b:45:7c:0a:7c:c5:10:f0:f3:3a:6b:a5:be:6f:72:
f7:7d:47:32:34:92:7e:7a:81:18:55:ee:cf:c3:53:44:05:1b:
97:f4:21:7d:e2:dd:82:3e:b8:ae:3c:60:36:03:72:f4:ba:3d:
ae:83:6a:a8:68:3f:02:32:fc:6b:61:73:9e:10:f5:0b:ee:bf:
0e:02:3f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:06 2024 by rpki-client on console-fra.rpki-client.org