Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/5WxsOtxyxx0IaHTTDN7mJwwAiEw.roa
File: 5WxsOtxyxx0IaHTTDN7mJwwAiEw.roa (raw, json)
Hash identifier: 1n/CW0lIVxH8N9+bTqu5wTU1YC8sTp+omKPoU9qtcX8=
Subject key identifier: E5:6C:6C:3A:DC:72:C7:1D:08:68:74:D3:0C:DE:E6:27:0C:00:88:4C
Certificate issuer: /CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Certificate serial: 0183180F5D819BF9F686A2F9284E71243F63
Authority key identifier: 9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/5WxsOtxyxx0IaHTTDN7mJwwAiEw.roa
Signing time: Wed 07 Sep 2022 13:06:43 +0000
ROA not before: Wed 07 Sep 2022 13:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43915
IP address blocks: 193.35.146.0/23 maxlen: 23
87.117.68.0/23 maxlen: 23
195.206.172.0/22 maxlen: 24
185.147.184.0/22 maxlen: 22
217.14.184.0/21 maxlen: 21
109.224.226.0/23 maxlen: 24
109.224.234.0/23 maxlen: 24
194.146.160.0/22 maxlen: 24
147.189.156.0/22 maxlen: 24
185.161.4.0/22 maxlen: 22
87.117.64.0/22 maxlen: 22
213.225.224.0/22 maxlen: 24
217.20.244.0/22 maxlen: 24
185.23.254.0/23 maxlen: 24
45.66.36.0/22 maxlen: 22
2a07:5940::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:18:0f:5d:81:9b:f9:f6:86:a2:f9:28:4e:71:24:3f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Validity
Not Before: Sep 7 13:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e56c6c3adc72c71d086874d30cdee6270c00884c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:21:51:a8:dc:df:e9:30:8b:50:e9:9d:b9:05:
96:96:18:85:a3:b2:e5:54:e6:bc:a3:6e:62:37:1b:
a5:c1:e0:45:91:1a:f4:de:d8:50:c4:80:0a:37:bf:
62:5b:89:67:53:c8:c4:3d:3a:46:21:a9:fb:2d:2a:
25:80:9f:71:c3:e5:a1:77:71:5e:99:8a:89:26:da:
fc:99:92:85:68:8c:03:8e:5e:50:ac:a9:f2:6b:29:
70:c3:28:f3:36:98:a3:0a:5c:76:1f:e7:ff:65:84:
a6:6d:2e:00:28:cb:aa:d5:4f:e6:24:5a:60:6b:72:
52:27:a5:a5:3b:ba:03:2e:2a:cd:82:84:b6:79:49:
b5:15:05:e5:32:59:24:d7:d0:5c:58:b5:5e:26:08:
4d:fe:ed:b9:a6:f6:e0:ec:b3:f7:79:42:c8:fb:d4:
d0:19:f8:e4:c0:cc:d6:31:22:5f:c5:2e:5e:6d:c8:
90:f5:3a:28:da:49:14:65:91:b0:65:2e:19:55:66:
72:0b:09:2e:b4:d6:b2:e6:d1:73:33:1d:cc:0a:4a:
a1:38:28:cf:d4:67:10:c3:b6:76:10:72:6c:8a:6c:
15:6a:10:63:e9:3f:4e:f9:37:d4:91:84:76:06:fe:
60:ec:02:82:66:df:ad:76:a3:8e:93:63:d7:1e:8e:
7b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6C:6C:3A:DC:72:C7:1D:08:68:74:D3:0C:DE:E6:27:0C:00:88:4C
X509v3 Authority Key Identifier:
keyid:9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/5WxsOtxyxx0IaHTTDN7mJwwAiEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/nyasnus6LPovbKP0E--5zf_pck4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.36.0/22
87.117.64.0-87.117.69.255
109.224.226.0/23
109.224.234.0/23
147.189.156.0/22
185.23.254.0/23
185.147.184.0/22
185.161.4.0/22
193.35.146.0/23
194.146.160.0/22
195.206.172.0/22
213.225.224.0/22
217.14.184.0/21
217.20.244.0/22
IPv6:
2a07:5940::/32
Signature Algorithm: sha256WithRSAEncryption
45:5c:8a:da:2f:ab:12:b6:e3:23:8c:eb:8e:d6:fe:bd:40:42:
42:09:97:8d:2a:d9:60:7d:cc:e3:b6:55:97:a3:38:c6:2a:c4:
ea:d2:78:ff:2f:22:44:5b:b5:28:82:40:14:86:5d:28:8c:39:
38:29:bd:fa:6c:3c:97:12:9a:e9:d0:ca:f0:89:cf:66:70:9d:
c0:e5:36:0f:e7:36:90:00:46:7f:d9:b7:cb:14:73:54:af:3d:
4a:e0:e4:cf:d4:52:d1:3e:49:ff:01:d4:c0:00:6e:01:78:76:
c0:99:6b:1c:7b:8f:f7:c6:d2:02:69:90:37:a7:b2:3a:bd:06:
6a:41:28:8b:9c:48:04:94:f0:4c:ab:52:de:6a:3d:53:d2:b6:
53:68:7f:64:b1:5c:48:df:4b:3c:85:1e:a4:73:2b:80:08:07:
3e:e8:01:59:e5:e8:61:27:5e:23:9f:66:be:7f:8f:d9:d2:de:
4f:3a:55:30:a5:bd:dc:c4:1d:85:95:48:6f:f5:c4:0b:4c:6c:
52:e8:de:91:03:84:7e:15:b0:1b:06:d4:02:ea:e9:27:c7:d6:
17:c6:2d:0d:92:31:72:59:87:80:7c:ec:6d:ca:82:f7:64:ec:
9e:cb:f9:1a:43:66:c6:fa:40:5d:43:21:1f:da:6b:59:c3:86:
da:c2:1f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:28 2024 by rpki-client on console-fra.rpki-client.org