Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/5VveihSrkKcylmoyAHYz8JrQynM.roa
File: 5VveihSrkKcylmoyAHYz8JrQynM.roa (raw, json)
Hash identifier: mSxEIpei4Sc2S2fhgXL7QyawwrtL1gUXtMBK5OHROLs=
Subject key identifier: E5:5B:DE:8A:14:AB:90:A7:32:96:6A:32:00:76:33:F0:9A:D0:CA:73
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: CC6F96
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/5VveihSrkKcylmoyAHYz8JrQynM.roa
Signing time: Sat 01 Jan 2022 00:54:18 +0000
ROA not before: Sat 01 Jan 2022 00:54:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 5.61.192.0/21 maxlen: 21
95.210.0.0/22 maxlen: 22
95.210.0.0/16 maxlen: 16
88.202.121.0/24 maxlen: 24
95.210.142.0/24 maxlen: 24
5.175.64.0/20 maxlen: 20
176.227.128.0/20 maxlen: 20
84.254.129.0/24 maxlen: 24
84.254.128.0/18 maxlen: 18
95.210.94.0/24 maxlen: 24
95.210.105.0/24 maxlen: 24
88.202.0.0/17 maxlen: 17
95.210.110.0/24 maxlen: 24
213.209.160.0/19 maxlen: 19
95.210.36.0/24 maxlen: 24
95.210.34.0/24 maxlen: 24
95.210.68.0/24 maxlen: 24
2a00:ca0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13397910 (0xcc6f96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: Jan 1 00:54:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e55bde8a14ab90a732966a32007633f09ad0ca73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:15:78:0d:f1:2e:f2:b7:65:25:c2:dc:60:64:
29:cd:a4:2b:1f:74:de:ce:f3:18:49:5c:ea:ff:f0:
1b:59:1d:43:2d:04:64:5b:82:69:1d:50:40:7b:23:
22:89:3e:bf:27:4b:ab:af:cd:3d:8c:d2:fe:9b:06:
ed:28:54:c8:2d:8c:d5:7d:ef:d6:14:25:81:4e:11:
fb:f6:92:81:1c:8f:50:98:2a:c9:55:bb:82:cb:93:
37:5d:0c:3d:4d:74:24:be:50:24:53:2b:e2:80:41:
a6:81:d3:4b:ec:fa:8a:e4:0c:cd:f9:87:ff:f2:46:
2f:28:c7:f2:7d:37:3d:c4:4a:66:ae:ba:64:08:7c:
54:76:29:c7:a8:bd:18:ac:d8:a9:ed:76:3d:e9:6b:
9f:83:d3:7e:02:f0:37:ff:cd:8d:94:2b:91:29:95:
a3:f0:67:c9:1f:0b:a5:b7:63:09:be:a9:06:8f:6e:
10:0a:89:18:1c:c1:1a:d2:91:4b:65:98:eb:86:6f:
b2:17:5c:7a:25:0b:53:7c:56:4d:14:7f:40:38:60:
85:a7:50:48:b4:8a:fc:fa:45:02:aa:83:6b:7f:8a:
ca:0d:bc:a3:31:5a:5a:44:6e:0b:b7:ed:48:8a:64:
87:78:2b:a9:06:84:07:cc:ab:a9:6c:78:71:2d:ed:
13:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5B:DE:8A:14:AB:90:A7:32:96:6A:32:00:76:33:F0:9A:D0:CA:73
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/5VveihSrkKcylmoyAHYz8JrQynM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.192.0/21
5.175.64.0/20
84.254.128.0/18
88.202.0.0/17
95.210.0.0/16
176.227.128.0/20
213.209.160.0/19
IPv6:
2a00:ca0::/32
Signature Algorithm: sha256WithRSAEncryption
27:6a:9f:56:2b:3d:da:60:ff:6d:bc:c2:a0:d5:8a:53:e8:49:
1c:2f:79:7f:68:f2:ed:3c:87:82:35:72:67:7a:37:e2:c3:19:
40:76:85:9d:32:c3:d2:69:f6:f2:09:8c:8e:05:60:09:46:2f:
1e:da:f6:30:ff:81:f1:dd:f2:78:bc:9b:a8:02:f9:e9:16:b8:
e5:ae:b1:bd:e7:ac:71:cd:58:86:51:07:ba:8a:e3:ac:1b:0c:
5b:b8:54:a1:e2:77:6d:7c:34:a4:b5:29:d8:31:d1:1b:5e:d0:
6c:e9:17:03:cb:87:7b:1f:c7:9a:8a:e9:6b:3d:00:52:fd:05:
bd:ab:cd:60:ae:98:76:0e:6f:a1:d6:1c:ff:22:35:30:c4:37:
0a:92:b3:c9:aa:9e:98:77:22:a0:a3:6a:8c:c0:84:51:d9:42:
85:bc:82:c2:95:8d:0e:4a:02:b5:04:bd:96:0a:ff:a2:76:00:
57:a4:2a:6a:9f:a1:c5:e0:9c:6a:b7:18:6f:bc:7e:2a:70:d9:
f7:4e:4d:8e:ef:a5:19:98:86:3c:da:47:eb:e6:66:3a:d8:fc:
db:f9:60:ab:1d:af:7c:30:1e:34:8e:65:4e:29:86:31:7c:1e:
a8:01:da:47:34:59:b8:e8:71:df:26:d8:59:6e:d6:95:83:1c:
60:0f:2d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:17 2025 by rpki-client