Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/5odRy0c7ucGES8PWtJgz_ygzhIE.roa
File: 5odRy0c7ucGES8PWtJgz_ygzhIE.roa (raw, json)
Hash identifier: ILcSn/lqPjbDBPuNtO2cUdqQsaUy3J9RMIsoZyR3D/U=
Subject key identifier: E6:87:51:CB:47:3B:B9:C1:84:4B:C3:D6:B4:98:33:FF:28:33:84:81
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01852A5D775846A093456D19C60798EB97FD
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/5odRy0c7ucGES8PWtJgz_ygzhIE.roa
Signing time: Mon 19 Dec 2022 12:30:46 +0000
ROA not before: Mon 19 Dec 2022 12:30:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201337
IP address blocks: 185.75.200.0/22 maxlen: 24
185.77.168.0/22 maxlen: 24
86.105.31.0/24 maxlen: 24
86.105.28.0/24 maxlen: 24
89.47.4.0/22 maxlen: 24
86.105.28.0/22 maxlen: 24
89.47.6.0/23 maxlen: 24
188.240.204.0/24 maxlen: 24
188.240.205.0/24 maxlen: 24
188.240.206.0/24 maxlen: 24
195.82.122.0/24 maxlen: 24
195.82.120.0/24 maxlen: 24
195.82.121.0/24 maxlen: 24
188.240.206.0/23 maxlen: 24
86.106.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:5d:77:58:46:a0:93:45:6d:19:c6:07:98:eb:97:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 19 12:30:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e68751cb473bb9c1844bc3d6b49833ff28338481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d0:16:6d:da:20:9f:58:19:3b:1d:ac:cf:51:
97:99:43:62:32:e7:37:04:9d:a6:f3:e7:be:5b:0f:
17:55:7e:ec:27:53:c9:dc:f9:ac:45:ce:96:54:bb:
f3:bf:fb:b8:f2:2d:f4:c0:4f:9b:df:1b:c6:14:33:
80:64:5b:da:37:5c:7a:03:20:3f:79:78:dd:5f:3a:
d1:a8:c7:e0:ea:b0:4a:61:ea:29:54:a2:c9:38:da:
80:d6:dd:d9:7a:de:55:c6:3a:6b:ed:a5:a2:dc:bf:
03:bb:49:e1:53:53:c2:79:46:b6:11:ff:03:11:c7:
0c:e3:9b:d2:55:ae:e7:92:06:fe:ff:ff:df:a6:54:
0a:65:31:84:ee:58:39:9a:11:50:5c:5f:8c:b9:e2:
f9:00:f2:b1:83:af:1d:d2:01:69:5a:51:27:40:6f:
e1:13:91:5b:3a:68:84:b3:86:07:ad:b1:59:bf:40:
52:3c:cc:34:ff:ec:85:d0:f8:ae:fb:0f:e0:17:c5:
e5:01:24:1a:83:ce:5b:44:8d:fe:b2:da:58:29:a1:
25:df:32:aa:01:9e:03:b9:2d:7b:e3:00:1c:27:96:
c7:e4:4a:e0:e0:3d:32:2f:20:a7:12:41:ed:05:a0:
e2:24:d9:73:78:fc:a3:c8:07:9a:1b:39:10:d8:be:
0e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:87:51:CB:47:3B:B9:C1:84:4B:C3:D6:B4:98:33:FF:28:33:84:81
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/5odRy0c7ucGES8PWtJgz_ygzhIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.28.0/22
86.106.184.0/22
89.47.4.0/22
185.75.200.0/22
185.77.168.0/22
188.240.204.0/22
195.82.120.0-195.82.122.255
Signature Algorithm: sha256WithRSAEncryption
75:9d:71:e4:4f:42:1b:67:8a:15:18:03:3c:1a:5a:2c:91:bf:
c4:e9:1f:f8:8b:40:71:9f:9c:86:37:f6:c4:db:0b:e8:df:e7:
88:30:fc:d7:34:97:ad:17:19:d2:86:7b:cf:f3:70:58:61:c6:
84:bd:9f:34:f5:1b:3b:4c:5c:e6:7c:54:f2:ba:c0:e5:27:5e:
05:9f:3c:a7:72:82:51:a5:1e:86:29:cf:15:cd:47:85:0d:87:
cd:16:d9:d3:80:60:e1:8c:67:2f:a4:34:b8:0b:aa:28:df:fc:
e3:fa:20:b2:e3:74:5c:89:ee:74:a0:fd:c9:3c:a1:c3:76:f6:
ec:40:80:e8:04:15:ba:1c:62:07:47:a5:84:15:7f:38:d1:5c:
7c:51:8c:49:53:b2:c4:42:35:a9:60:55:2f:1e:0d:23:9d:3d:
4e:71:ef:a2:68:df:fb:8c:be:fd:28:1b:12:93:f0:52:f4:66:
db:f7:dc:fb:05:7c:1b:db:0a:1e:e6:5c:01:1c:26:94:23:75:
b0:9c:98:11:e6:44:6d:46:90:01:99:36:e5:7b:10:71:52:4c:
3f:9c:32:54:bd:55:bd:37:24:3f:db:e9:34:e7:89:26:3f:96:
ca:09:14:0c:e0:8c:a9:39:2b:6f:3f:ab:aa:12:4a:bb:de:83:
0e:f7:b2:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org