Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/5TTshA2ZBdwRaxlB_AOZx8fSOsk.roa
File: 5TTshA2ZBdwRaxlB_AOZx8fSOsk.roa (raw, json)
Hash identifier: 5c96Vp7oK4q7MmoFdxhB+efxgrJbXEwy2/9XeSiXows=
Subject key identifier: E5:34:EC:84:0D:99:05:DC:11:6B:19:41:FC:03:99:C7:C7:D2:3A:C9
Certificate issuer: /CN=33320e2f3c5adadf153a0758bc600b6ea14f4eed
Certificate serial: 06C05152
Authority key identifier: 33:32:0E:2F:3C:5A:DA:DF:15:3A:07:58:BC:60:0B:6E:A1:4F:4E:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzIOLzxa2t8VOgdYvGALbqFPTu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/5TTshA2ZBdwRaxlB_AOZx8fSOsk.roa
Signing time: Sat 01 Jan 2022 06:52:25 +0000
ROA not before: Sat 01 Jan 2022 06:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60368
IP address blocks: 185.16.76.0/24 maxlen: 24
185.16.77.0/24 maxlen: 24
94.136.112.0/23 maxlen: 23
94.136.114.0/23 maxlen: 23
94.136.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113267026 (0x6c05152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33320e2f3c5adadf153a0758bc600b6ea14f4eed
Validity
Not Before: Jan 1 06:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e534ec840d9905dc116b1941fc0399c7c7d23ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:96:0d:bc:7e:d2:a3:9f:f8:7a:9e:bf:e3:b2:
4c:06:48:aa:3c:f1:e6:ae:69:7a:b7:b1:2c:2e:f9:
c7:cf:84:47:d4:ec:00:44:63:e5:cb:1f:64:c8:cf:
52:d9:2c:6f:3f:c0:f5:83:fc:cb:69:24:5e:3e:b9:
3f:39:ef:2c:d2:d0:9e:fb:7f:60:e8:fe:15:cc:81:
8b:7c:6c:d7:18:41:17:ca:b8:05:5c:56:73:f8:af:
1f:43:97:80:d3:56:3f:63:f1:6c:6f:76:71:ce:8f:
25:bd:08:c5:2b:75:f2:ab:4e:bd:58:1f:33:b3:0f:
10:68:3c:54:03:62:5a:0d:c2:d1:5d:a6:cc:ce:d4:
ef:27:8b:d2:62:0a:96:bb:89:8c:59:c6:f8:aa:30:
5c:c3:6a:c8:25:2c:23:e6:21:aa:c9:4c:8c:cc:18:
13:7f:43:53:3b:c7:81:19:e8:39:94:aa:8e:fc:b1:
47:65:81:40:81:fa:ce:37:b3:1e:bc:11:19:5e:87:
95:04:4e:4a:9f:f2:2f:54:c5:5b:b0:df:0a:89:01:
73:8c:b0:0b:ea:ba:94:45:c4:e5:bd:7f:79:3d:86:
b2:c2:bd:53:8f:b9:73:ac:b9:79:e2:28:a8:03:e5:
e8:93:7a:c0:f5:02:e0:fb:24:c6:48:26:b2:63:6b:
78:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:34:EC:84:0D:99:05:DC:11:6B:19:41:FC:03:99:C7:C7:D2:3A:C9
X509v3 Authority Key Identifier:
keyid:33:32:0E:2F:3C:5A:DA:DF:15:3A:07:58:BC:60:0B:6E:A1:4F:4E:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzIOLzxa2t8VOgdYvGALbqFPTu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/5TTshA2ZBdwRaxlB_AOZx8fSOsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/244901-ae2d-4418-9d93-e1544c57e38b/1/MzIOLzxa2t8VOgdYvGALbqFPTu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.136.112.0-94.136.116.255
185.16.76.0/23
Signature Algorithm: sha256WithRSAEncryption
81:12:ef:3f:ad:f7:7b:27:de:11:27:a2:df:8f:22:4c:b7:90:
5a:87:d0:52:76:c8:7c:a1:84:3b:b4:37:f3:90:f8:18:37:3a:
cf:37:2f:cb:41:b0:25:1f:41:f7:38:1c:4d:1b:63:a3:60:22:
d2:ef:ab:2c:2f:bc:5d:86:c7:2a:16:82:6b:8a:e5:ef:db:e1:
92:ae:84:76:43:0f:ee:cb:8b:35:80:66:e9:ac:d4:a5:ba:10:
1a:57:c2:59:b6:b3:5e:be:cf:b2:f6:09:7d:df:73:dc:5d:7f:
15:c1:2c:37:8a:da:0c:fb:a3:2d:1c:da:77:2b:bd:71:9f:02:
ef:d4:35:0e:06:0a:bd:d6:eb:d6:57:57:2d:3d:50:7a:15:07:
a7:ab:94:60:90:14:c1:64:64:fd:33:c8:37:2c:71:6d:31:70:
4a:bd:f5:4f:43:a0:a4:57:01:36:c0:d2:73:8e:14:b1:6a:a8:
df:ac:7f:72:d3:75:35:a4:59:16:27:64:f0:a9:79:95:39:7e:
b4:be:73:d4:3a:4b:d8:e5:23:b2:37:fe:a4:87:4e:3a:c9:c5:
b0:bf:d5:e0:f1:c6:85:aa:fa:65:80:fa:09:bb:b2:ef:d7:a1:
f6:87:95:cb:2a:b0:3b:f4:19:c5:90:2e:c9:e1:86:5d:4e:97:
59:22:6d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:47 2024 by rpki-client on console-fra.rpki-client.org