Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/i5MjjyCdP5h8KUecj3XLIOuSdVc.roa
File: i5MjjyCdP5h8KUecj3XLIOuSdVc.roa (raw, json)
Hash identifier: 9T6ldXemIRoH/gjKfVL3Y3x5SBPS+4X1WUjCrzH2IJE=
Subject key identifier: 8B:93:23:8F:20:9D:3F:98:7C:29:47:9C:8F:75:CB:20:EB:92:75:57
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185583EB0E687162FD19206534395CBE329
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/i5MjjyCdP5h8KUecj3XLIOuSdVc.roa
Signing time: Wed 28 Dec 2022 10:19:41 +0000
ROA not before: Wed 28 Dec 2022 10:19:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62235
IP address blocks: 92.119.0.0/22 maxlen: 22
92.119.2.0/23 maxlen: 23
92.119.0.0/23 maxlen: 23
89.45.222.0/23 maxlen: 23
89.45.220.0/23 maxlen: 23
89.45.220.0/22 maxlen: 22
89.39.167.0/24 maxlen: 24
94.177.0.0/22 maxlen: 22
94.177.2.0/23 maxlen: 23
94.177.0.0/23 maxlen: 23
89.46.32.0/24 maxlen: 24
89.46.37.0/24 maxlen: 24
89.46.247.0/24 maxlen: 24
89.46.39.0/24 maxlen: 24
87.247.130.0/23 maxlen: 23
87.247.128.0/23 maxlen: 24
87.247.128.0/22 maxlen: 22
89.44.82.0/24 maxlen: 24
89.35.231.0/24 maxlen: 24
139.28.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:58:3e:b0:e6:87:16:2f:d1:92:06:53:43:95:cb:e3:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 28 10:19:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b93238f209d3f987c29479c8f75cb20eb927557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:29:fa:56:d9:19:ba:e2:24:b3:89:0b:0a:f6:
b3:e8:d6:50:30:37:69:44:cf:e8:2d:0e:dc:71:55:
da:2d:93:ab:8f:9e:a6:5d:95:de:66:ae:1f:83:06:
96:38:fc:da:f9:4a:ad:5f:de:e3:3a:d7:44:49:49:
4a:63:fe:8f:6d:24:3b:3f:f8:0d:88:48:6b:a4:72:
47:e5:03:ba:3f:ec:b9:1f:64:61:d3:70:6f:1d:05:
fb:57:3c:46:de:9c:f0:0b:45:53:36:4f:67:54:e7:
7c:8b:b9:91:b7:ae:5b:0f:0e:99:80:04:94:d3:b3:
a1:84:77:ee:ce:b7:48:a5:4d:91:c1:1f:51:9a:1a:
4e:72:14:f5:74:02:02:8a:c2:65:fc:bd:22:07:35:
88:63:f7:22:60:56:a8:e4:2c:53:dd:5f:35:c1:7f:
5d:96:cb:6c:da:76:54:ed:fa:ac:f7:77:f5:8a:83:
61:96:8b:dc:03:1c:b2:30:37:59:41:9a:99:4e:c1:
04:94:9e:d1:aa:7a:ad:ab:73:8b:dc:52:63:00:4a:
22:8a:3d:f2:c7:c1:2b:97:21:67:c1:dc:ef:18:68:
b0:e5:7c:4e:23:fc:e3:25:83:4e:9b:b0:22:c4:00:
06:d7:5f:50:f5:4f:3c:16:aa:fb:af:d0:33:67:dc:
3c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:93:23:8F:20:9D:3F:98:7C:29:47:9C:8F:75:CB:20:EB:92:75:57
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/i5MjjyCdP5h8KUecj3XLIOuSdVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.247.128.0/22
89.35.231.0/24
89.39.167.0/24
89.44.82.0/24
89.45.220.0/22
89.46.32.0/24
89.46.37.0/24
89.46.39.0/24
89.46.247.0/24
92.119.0.0/22
94.177.0.0/22
139.28.88.0/22
Signature Algorithm: sha256WithRSAEncryption
78:b6:46:c8:57:1a:58:b2:34:53:73:49:78:b0:a6:29:f2:d3:
8b:5d:43:11:8a:61:98:0a:68:12:1e:a5:04:64:68:bb:09:a8:
bf:41:10:ef:75:54:7b:7f:c2:30:fd:c5:39:2c:e8:1c:49:d0:
ca:26:38:c3:dc:9d:7e:c5:35:30:cf:43:68:22:ef:e2:1e:2d:
4f:1e:e9:9d:2f:30:9f:85:f2:a4:b4:34:27:e7:61:59:61:40:
56:78:45:da:8f:b6:70:92:7c:e6:d2:3c:4c:18:a4:ca:1f:78:
c1:63:50:64:17:8c:4c:56:4b:e4:8b:a2:65:c3:2c:c2:6c:cf:
fc:d6:1f:71:de:3c:ae:75:1c:77:0c:7a:07:d1:1f:4f:e1:a4:
38:0e:e2:55:d4:b5:74:01:9d:c4:4c:ad:ef:a6:3d:2d:81:1c:
c3:1f:9c:c2:71:89:a4:8e:5d:20:48:62:a3:6c:71:f0:3c:d6:
d2:4a:64:1b:78:f3:6d:c3:4d:28:92:7f:4c:fc:ca:b5:54:d9:
4f:a5:16:e5:93:40:2b:cd:a8:8d:9b:00:43:9e:ee:09:88:2e:
fc:75:c2:0a:2b:db:f2:8e:82:b2:c8:83:44:c0:6f:9b:0f:f7:
9b:b5:33:08:d8:73:2c:b9:d2:d3:e9:77:0b:a3:dc:89:8e:79:
d6:79:10:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org