Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4e87a6-6536-454a-a59e-d5ad996a1ac8/1/fCppr6Xv6IH5PJtLou3HjHjYK8Y.roa
File: fCppr6Xv6IH5PJtLou3HjHjYK8Y.roa (raw, json)
Hash identifier: RF3fOGjIWNyBP0ebp08Wn3QVJ/YpRbZVDErT0hKvN3M=
Subject key identifier: 7C:2A:69:AF:A5:EF:E8:81:F9:3C:9B:4B:A2:ED:C7:8C:78:D8:2B:C6
Certificate issuer: /CN=543e20bf5f252b1bdbd21dc99d94cd97ea7f0fe6
Certificate serial: 02A2E99F
Authority key identifier: 54:3E:20:BF:5F:25:2B:1B:DB:D2:1D:C9:9D:94:CD:97:EA:7F:0F:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VD4gv18lKxvb0h3JnZTNl-p_D-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4e87a6-6536-454a-a59e-d5ad996a1ac8/1/fCppr6Xv6IH5PJtLou3HjHjYK8Y.roa
Signing time: Thu 24 Mar 2022 08:07:17 +0000
ROA not before: Thu 24 Mar 2022 08:07:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43872
IP address blocks: 185.253.176.0/22 maxlen: 22
193.247.94.0/24 maxlen: 24
193.247.103.0/24 maxlen: 24
193.247.101.0/24 maxlen: 24
185.187.61.0/24 maxlen: 24
185.183.20.0/22 maxlen: 22
193.105.189.0/24 maxlen: 24
193.247.165.0/24 maxlen: 24
5.253.252.0/22 maxlen: 22
92.118.111.0/24 maxlen: 24
2a10:cac0::/29 maxlen: 29
2a0b:180::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44231071 (0x2a2e99f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543e20bf5f252b1bdbd21dc99d94cd97ea7f0fe6
Validity
Not Before: Mar 24 08:07:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c2a69afa5efe881f93c9b4ba2edc78c78d82bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:ca:8b:b6:85:0f:2b:2b:30:a5:26:d4:6e:
5a:c9:45:cd:e6:d1:1f:32:63:a7:26:fe:4d:00:3e:
24:21:2c:a5:60:a0:b4:51:c0:d4:23:25:89:f1:1c:
37:03:06:e2:65:f9:82:71:af:af:ff:cf:46:44:5a:
78:0b:40:8c:ef:34:cb:50:cc:e0:14:8e:be:49:a9:
0b:3a:7e:76:74:df:a5:e4:ce:da:6c:2a:71:20:7e:
02:8b:6b:6b:ed:86:a9:eb:c2:65:b1:ef:cc:54:02:
08:a6:33:62:3e:6c:1f:73:83:46:c0:db:cd:64:fc:
a6:1b:86:1f:74:bf:13:6f:3f:1f:39:f5:af:c4:ec:
d0:00:3a:6b:20:55:8e:0c:9c:f3:e2:02:4d:e2:2f:
e7:7e:9e:3e:d6:37:64:49:b6:78:8a:ac:9b:c9:eb:
de:12:3c:18:65:29:e2:57:de:15:01:53:96:42:1a:
89:82:e6:d4:fb:55:b1:ae:67:ee:e2:86:50:d4:0c:
b6:35:53:2c:62:f7:3d:96:40:ff:87:16:82:1c:30:
b6:29:6e:58:75:ee:33:92:35:ea:7a:97:b4:73:30:
6d:eb:17:62:97:fd:cd:92:5d:48:2b:19:40:ae:3c:
27:b8:24:2d:e7:e8:a9:c0:4f:36:c9:dc:93:cc:a4:
97:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:2A:69:AF:A5:EF:E8:81:F9:3C:9B:4B:A2:ED:C7:8C:78:D8:2B:C6
X509v3 Authority Key Identifier:
keyid:54:3E:20:BF:5F:25:2B:1B:DB:D2:1D:C9:9D:94:CD:97:EA:7F:0F:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VD4gv18lKxvb0h3JnZTNl-p_D-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4e87a6-6536-454a-a59e-d5ad996a1ac8/1/fCppr6Xv6IH5PJtLou3HjHjYK8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4e87a6-6536-454a-a59e-d5ad996a1ac8/1/VD4gv18lKxvb0h3JnZTNl-p_D-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.252.0/22
92.118.111.0/24
185.183.20.0/22
185.187.61.0/24
185.253.176.0/22
193.105.189.0/24
193.247.94.0/24
193.247.101.0/24
193.247.103.0/24
193.247.165.0/24
IPv6:
2a0b:180::/29
2a10:cac0::/29
Signature Algorithm: sha256WithRSAEncryption
33:2d:2e:75:65:a1:8e:57:c7:2e:1d:fa:0e:2c:a2:5c:f9:22:
03:5e:51:7a:5f:f3:b0:18:da:ab:2c:c3:44:d5:8f:fb:b9:c3:
4b:d9:a0:85:d5:f9:de:d0:7c:a6:03:10:18:2f:29:6b:b6:b4:
55:56:b6:2c:08:ef:bc:25:48:f7:79:5a:84:26:e2:35:39:bd:
e8:3e:97:e2:cb:ed:1d:6f:86:11:b2:e8:44:5f:2d:84:2d:e6:
65:4e:5d:78:33:d3:f2:d3:21:fc:0f:4e:87:14:ce:59:10:15:
37:52:c1:23:10:38:e8:33:ee:a7:80:03:dc:b6:9b:04:2e:4d:
de:cc:9b:0f:f9:99:bc:e2:ee:26:ac:17:63:f8:65:ba:1d:1a:
bf:a5:d8:84:47:6d:1c:ee:67:21:69:bc:9a:82:ee:e2:5b:88:
d4:04:31:d9:a5:bc:d2:46:63:be:03:7f:13:2a:c1:5c:1f:16:
9a:1d:97:bc:62:1b:70:4d:4b:95:1a:a0:07:4e:4f:d4:c7:74:
98:65:e9:23:59:6f:a1:e2:c2:77:02:21:c7:8b:6a:07:7b:c3:
98:2e:80:f7:09:bb:48:75:14:e8:3d:dd:3a:9c:75:2d:98:21:
b9:1b:30:0d:90:1d:72:67:ab:79:e7:0e:48:93:2b:83:44:be:
2b:8a:03:85
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:06 2024 by rpki-client on console-fra.rpki-client.org