Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/5GFIRyzVshNt5m6rJ1OrYUbsxOY.roa
File: 5GFIRyzVshNt5m6rJ1OrYUbsxOY.roa (raw, json)
Hash identifier: gAOG2WJ6DfW+csvXAPyh9EzHmm6yWslH4j4fx6dc3Co=
Subject key identifier: E4:61:48:47:2C:D5:B2:13:6D:E6:6E:AB:27:53:AB:61:46:EC:C4:E6
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 045AEF9C
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/5GFIRyzVshNt5m6rJ1OrYUbsxOY.roa
Signing time: Fri 25 Mar 2022 14:17:05 +0000
ROA not before: Fri 25 Mar 2022 14:17:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207569
IP address blocks: 139.28.221.0/24 maxlen: 24
5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.180.138.0/24 maxlen: 24
5.180.139.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
2a0a:9300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73068444 (0x45aef9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 25 14:17:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e46148472cd5b2136de66eab2753ab6146ecc4e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ef:0b:13:34:f2:17:38:f2:85:0f:ff:d5:00:
71:d7:2d:2c:ea:5f:97:90:60:ef:48:7c:5b:51:52:
ab:b5:09:7a:2f:87:85:1b:21:37:fd:b8:3a:ba:0b:
a5:cb:f0:b3:10:b4:60:f2:73:f1:e7:76:b3:24:91:
04:08:49:3e:6d:0a:03:35:a8:3e:93:21:53:21:22:
c5:23:6a:db:ff:eb:e6:62:c4:0d:63:ec:f5:c0:c4:
0e:ff:4d:a2:7a:2d:5e:c2:72:44:eb:83:53:9f:3b:
b2:f3:c4:dc:d2:eb:99:5a:2b:c7:fe:1d:cd:b7:ca:
7e:e3:4a:fc:13:5e:2a:a0:68:67:0f:2f:92:dd:33:
07:ea:d2:38:dc:fd:9e:c6:f9:9c:0f:2f:b2:48:2c:
c3:b8:97:51:2d:a4:33:20:69:5f:8e:40:48:a6:74:
c8:da:40:00:12:95:e2:f5:c6:67:f2:eb:a9:d2:8a:
dc:53:8d:25:60:db:8a:a2:6f:ae:48:6a:ba:2c:68:
02:e0:5a:3a:e7:2e:42:4f:8b:15:4b:09:59:b8:3a:
30:2c:3a:29:c5:eb:f6:7f:08:51:13:98:fb:3f:4b:
8e:ce:bd:3e:66:07:32:95:d3:69:33:17:a3:72:7a:
63:fc:c5:35:9e:65:6e:b9:a7:b7:f8:44:99:08:05:
82:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:61:48:47:2C:D5:B2:13:6D:E6:6E:AB:27:53:AB:61:46:EC:C4:E6
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/5GFIRyzVshNt5m6rJ1OrYUbsxOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/22
5.252.116.0/24
45.89.64.0/24
45.133.245.0/24
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.221.0/24
185.17.2.0/24
185.94.167.0/24
185.104.250.0/24
185.188.181.0/24
194.53.54.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
85:0f:49:5a:e1:42:ed:ea:66:16:ef:4a:18:c7:89:44:e7:e1:
5b:1e:1a:f2:aa:96:90:26:1d:ff:a1:48:75:17:1b:1c:1a:e6:
ea:c5:ff:e7:ca:5e:0b:21:7b:23:0d:aa:33:16:24:89:21:25:
7e:da:33:84:ab:25:4f:b5:87:d8:a9:aa:93:17:2f:2b:90:2e:
e2:ad:a3:af:1e:72:7c:10:a9:bb:01:8b:20:3a:8e:b2:e9:3c:
99:72:f4:0c:99:7f:36:2a:de:b0:83:d0:97:55:53:0a:da:ba:
a3:cd:a9:26:0f:78:2f:32:be:3b:ec:91:5c:ea:79:b1:50:80:
a5:1b:98:3d:54:43:a6:b3:15:84:51:74:91:a1:2a:4d:11:1a:
84:d0:f8:b1:0c:8e:e3:c2:32:36:8e:20:9e:c2:35:92:0d:f1:
56:53:36:68:75:b9:1b:f8:28:25:da:bd:dd:ee:d6:07:db:9b:
c9:7a:ea:0e:fa:3f:93:b6:e9:2b:ac:11:b3:50:82:c4:a9:24:
38:1a:fb:ab:7d:a5:4d:87:53:64:9d:5b:bb:d0:a5:4f:ad:1b:
c1:a2:c9:86:9e:9a:b1:81:27:7f:f6:31:13:da:88:de:12:c1:
a0:bb:50:f7:c7:8e:4b:c3:a2:3e:2c:d1:ca:a1:b4:41:3c:70:
b1:d5:0b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-fra.rpki-client.org