Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ccKYHecRtFNgfGjz7N7Dw642XGk.roa
File: ccKYHecRtFNgfGjz7N7Dw642XGk.roa (raw, json)
Hash identifier: R8FiM7m9QVoQ5DIhvWZCIUN1IFOTCaW7+yloWFtmz3k=
Subject key identifier: 71:C2:98:1D:E7:11:B4:53:60:7C:68:F3:EC:DE:C3:C3:AE:36:5C:69
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 048449F3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ccKYHecRtFNgfGjz7N7Dw642XGk.roa
Signing time: Thu 07 Apr 2022 12:32:37 +0000
ROA not before: Thu 07 Apr 2022 12:32:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207569
IP address blocks: 139.28.221.0/24 maxlen: 24
5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.180.138.0/24 maxlen: 24
5.180.139.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
2a0a:9300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75778547 (0x48449f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Apr 7 12:32:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71c2981de711b453607c68f3ecdec3c3ae365c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2c:fc:66:99:ee:f7:03:4d:76:b8:43:06:d0:
b0:a6:a1:b1:b3:d5:f2:bb:b6:04:b6:58:6d:17:71:
be:bc:46:94:2f:78:3b:a9:0d:10:2b:d1:31:31:a2:
22:8a:29:dc:22:56:45:e7:9c:93:a4:24:0c:c6:b7:
6d:48:29:40:71:10:16:e8:16:49:75:f6:a7:e3:33:
85:40:65:eb:4b:5a:48:1d:28:35:79:9f:03:83:50:
1b:1c:89:0f:57:3d:eb:63:69:98:e0:78:3a:bd:e6:
cd:c7:57:e2:b9:23:76:18:4a:f0:d0:0b:c0:ec:42:
33:37:f8:79:81:bb:9f:98:97:4e:71:f7:ea:22:72:
2e:0e:15:c6:28:c9:96:ca:ca:56:5c:da:39:73:7d:
96:49:7c:13:19:30:2e:48:dc:45:77:7b:42:40:17:
9c:70:2d:03:2f:b1:81:ce:a3:2a:47:cf:a4:ea:78:
1b:8e:2c:0a:ef:08:53:6f:91:79:0e:99:97:3b:77:
d6:c5:4e:ba:c4:54:a5:aa:a6:8c:48:37:59:ce:5c:
19:1c:63:de:94:79:17:7c:ff:e7:01:39:a6:bf:52:
2a:4e:50:b5:24:28:81:ae:8e:45:0c:b3:db:51:96:
84:21:ce:ae:04:03:9d:d4:4e:f8:7a:f4:24:44:16:
0f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C2:98:1D:E7:11:B4:53:60:7C:68:F3:EC:DE:C3:C3:AE:36:5C:69
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/ccKYHecRtFNgfGjz7N7Dw642XGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/22
5.252.116.0/24
45.89.64.0/24
45.133.245.0/24
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.221.0/24
185.17.2.0/24
185.94.167.0/24
185.104.250.0/24
185.188.181.0/24
193.109.84.0/24
194.53.54.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
2b:46:b5:b5:96:18:ee:c7:db:ce:3d:d3:67:ca:be:05:5c:6d:
8d:da:52:a4:ac:be:c9:5d:ca:50:f8:e2:0b:16:1f:b0:99:53:
ee:a9:80:ca:f3:94:f5:18:79:0a:fd:0d:b6:0c:3a:91:b6:b7:
db:08:a0:ed:43:0c:eb:0d:0f:cd:74:63:1a:8e:81:2e:a9:83:
81:83:a6:84:b5:ef:f9:c9:18:a8:41:cb:d9:a7:06:46:8f:58:
81:39:a3:f1:76:98:05:0c:54:06:08:1e:cc:8a:9c:ce:17:e2:
f3:7a:82:f1:e3:8c:c9:ae:2a:06:6d:e7:ab:2d:46:e0:d1:26:
cd:f1:94:dd:5b:b7:d8:15:8d:df:a3:3b:3b:28:1b:2a:01:78:
5f:0b:90:ad:a6:c1:09:cd:b9:23:c1:88:40:52:e7:3b:a2:55:
80:d2:7d:0c:17:0b:4b:aa:32:6b:de:3d:79:37:ab:ea:58:2d:
6d:d2:8b:1c:89:3e:34:e6:6e:bd:d6:2f:bd:9b:0d:d0:c9:9a:
25:1a:c2:ca:36:e6:eb:2c:28:19:14:96:ac:29:88:5f:94:c8:
d7:6c:ec:0f:8c:57:f5:d7:23:55:3e:65:db:21:bd:6b:c2:89:
03:c0:57:36:d3:c7:d1:8d:29:d1:9d:c0:72:3a:0b:2e:c2:de:
91:f3:66:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org