Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5vsqorX3608KhlkU7JWDOcPScOM.roa
File: 5vsqorX3608KhlkU7JWDOcPScOM.roa (raw, json)
Hash identifier: x29LYAhtBOa+lWQPn1xfSfqZrM6+TEgCHINo/08yuGM=
Subject key identifier: E6:FB:2A:A2:B5:F7:EB:4F:0A:86:59:14:EC:95:83:39:C3:D2:70:E3
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185053F70311221EA61AC66EB7772A6F00F
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5vsqorX3608KhlkU7JWDOcPScOM.roa
Signing time: Mon 12 Dec 2022 07:32:01 +0000
ROA not before: Mon 12 Dec 2022 07:32:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24767
IP address blocks: 212.69.96.0/19 maxlen: 24
212.14.160.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
195.230.64.0/19 maxlen: 24
195.16.96.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
212.119.160.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
195.5.128.0/19 maxlen: 24
212.44.64.0/19 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:3f:70:31:12:21:ea:61:ac:66:eb:77:72:a6:f0:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 07:32:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6fb2aa2b5f7eb4f0a865914ec958339c3d270e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bb:04:b2:97:52:e5:b5:64:6b:30:d8:f5:0c:
30:1a:ce:e0:ce:77:39:41:8b:43:94:8d:a7:2b:7a:
00:d6:9d:49:5d:ea:84:11:70:85:a1:ef:f7:80:44:
d0:bf:b8:01:08:69:4a:f1:2a:5f:03:04:b6:9d:5f:
7b:a9:f8:80:70:cc:77:42:94:b5:58:6b:9a:c9:55:
fd:01:bb:72:de:58:c3:b3:06:e0:d7:12:43:9e:8d:
2d:18:d2:f6:43:f4:44:b4:38:2c:0a:8c:43:cf:78:
20:ba:eb:02:f0:87:2b:70:b8:3c:23:ef:36:b6:8a:
79:44:ae:58:2f:82:b8:ba:55:29:ea:83:6d:51:56:
54:a9:dd:68:57:28:a3:46:64:ff:dd:09:23:65:74:
eb:20:f0:63:45:18:e3:1d:d6:ad:7e:3c:ff:c1:d3:
e5:64:e2:ff:e3:66:7e:1a:4e:36:d9:8d:3e:7d:12:
d5:cf:3c:af:43:86:46:44:24:16:ca:b9:97:95:ad:
22:5d:45:4c:f4:ce:b3:b4:4f:52:4b:9f:3f:a7:e3:
6b:81:33:28:b5:b8:25:ec:ea:a5:3e:dd:d1:9d:d9:
0c:46:6b:36:e8:02:2f:3a:55:07:7f:0d:02:04:d6:
94:58:9a:c6:fd:2f:b3:d0:73:f7:90:3a:2b:75:8c:
aa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FB:2A:A2:B5:F7:EB:4F:0A:86:59:14:EC:95:83:39:C3:D2:70:E3
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/5vsqorX3608KhlkU7JWDOcPScOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3c:dc:21:ad:02:34:93:bc:cb:ae:0c:b3:b1:71:4e:78:ee:d2:
07:d2:1f:2c:9d:10:01:31:1c:c6:67:86:dd:b1:f0:db:fa:41:
88:1c:23:43:55:2c:6f:a2:e1:96:de:01:f3:6c:c4:7e:d4:8a:
a4:a9:99:d9:dc:8e:dc:63:db:b5:86:7a:87:53:4f:63:de:62:
66:4c:26:76:86:be:94:20:5e:08:fa:2b:f1:ea:1c:ed:c5:97:
31:5f:de:26:ef:45:08:02:de:7c:d3:05:d5:90:bb:03:95:4b:
f0:31:ff:60:50:f5:c2:50:26:86:ac:1a:c8:8c:ce:af:fe:93:
2d:df:2b:ed:f8:16:ba:f1:41:09:bb:cd:ae:41:b1:96:56:95:
45:c2:6e:e0:55:62:dd:71:67:a7:8e:d2:04:f8:34:3e:5c:69:
cc:f1:73:1d:b5:dd:24:31:6a:1f:33:51:dc:c4:18:6d:58:d6:
a2:4d:94:7a:e7:b8:c3:91:5f:02:81:6a:0f:df:e8:99:fb:93:
8d:c8:00:e1:8c:e2:f3:7f:17:a4:5d:5f:01:46:d8:8f:79:09:
67:69:1c:19:ee:25:b7:22:38:d2:c7:ba:b7:16:d7:1a:a4:eb:
9c:fb:6c:ec:46:21:44:fa:a4:98:c6:6e:a4:79:ae:10:d5:d9:
29:24:bf:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org