Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/Wdt5N9jEvHME_JglvFnyPW1-GlU.roa
File: Wdt5N9jEvHME_JglvFnyPW1-GlU.roa (raw, json)
Hash identifier: tjKkTKMP5HTKC+Nk16Ch1tA5F5oSJq8WWhmSw+wchnU=
Subject key identifier: 59:DB:79:37:D8:C4:BC:73:04:FC:98:25:BC:59:F2:3D:6D:7E:1A:55
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 0386145E
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/Wdt5N9jEvHME_JglvFnyPW1-GlU.roa
Signing time: Sat 01 Jan 2022 01:59:22 +0000
ROA not before: Sat 01 Jan 2022 01:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62442
IP address blocks: 89.221.84.0/22 maxlen: 22
89.221.88.0/21 maxlen: 21
78.157.37.0/24 maxlen: 24
78.157.35.0/24 maxlen: 24
78.157.36.0/24 maxlen: 24
78.157.34.0/24 maxlen: 24
78.157.32.0/19 maxlen: 19
78.157.32.0/24 maxlen: 24
78.157.38.0/24 maxlen: 24
78.157.44.0/24 maxlen: 24
78.157.42.0/24 maxlen: 24
78.157.43.0/24 maxlen: 24
78.157.40.0/24 maxlen: 24
78.157.41.0/24 maxlen: 24
78.157.39.0/24 maxlen: 24
78.157.51.0/24 maxlen: 24
78.157.49.0/24 maxlen: 24
78.157.50.0/24 maxlen: 24
78.157.47.0/24 maxlen: 24
78.157.48.0/24 maxlen: 24
78.157.48.0/21 maxlen: 21
78.157.45.0/24 maxlen: 24
78.157.46.0/24 maxlen: 24
78.157.56.0/21 maxlen: 21
78.157.58.0/24 maxlen: 24
78.157.56.0/24 maxlen: 24
78.157.57.0/24 maxlen: 24
78.157.54.0/24 maxlen: 24
78.157.55.0/24 maxlen: 24
78.157.52.0/24 maxlen: 24
78.157.53.0/24 maxlen: 24
78.157.63.0/24 maxlen: 24
78.157.61.0/24 maxlen: 24
78.157.62.0/24 maxlen: 24
78.157.59.0/24 maxlen: 24
78.157.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59118686 (0x386145e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Jan 1 01:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59db7937d8c4bc7304fc9825bc59f23d6d7e1a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fc:ab:ab:e3:a0:3f:e0:53:74:b0:99:a7:3d:
36:1f:99:17:71:c3:e8:ab:2d:43:13:60:b5:48:10:
e8:32:d3:bf:5a:57:a9:04:a3:c9:60:24:53:ab:c2:
70:8c:8e:d9:48:1e:6b:f3:f3:67:6b:78:ea:05:3e:
33:91:1b:5a:ba:f6:6d:a1:1b:d3:1a:86:3b:07:0e:
a6:de:5a:db:18:5c:0a:88:79:b5:92:82:b9:d1:25:
a7:04:4e:8f:d9:48:2d:37:dc:36:54:3a:2d:5e:68:
b6:4b:3a:7f:c3:f0:6c:35:18:15:b0:8e:db:3e:9d:
d1:65:db:4f:7f:d0:2a:f5:3f:a0:b0:17:b9:17:51:
95:98:87:28:d1:cd:e5:6d:b6:c2:a1:55:c9:6b:bd:
5e:7a:14:93:6a:7b:16:15:a4:eb:77:ac:06:8b:d0:
d0:3f:35:b1:05:26:cf:a8:9c:f1:b3:e8:26:89:cd:
4c:88:02:82:cf:ea:4c:c0:84:68:5f:cc:0f:32:2d:
97:c4:c9:d4:76:83:b5:1d:00:a5:12:e9:4b:dd:05:
70:f1:92:42:b0:da:db:30:38:d3:77:0e:9e:df:db:
37:93:f2:d5:12:d6:01:fa:e3:8b:80:9d:ba:4b:13:
7e:a5:06:1e:13:c7:34:a7:60:30:b8:71:51:c4:e6:
e2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DB:79:37:D8:C4:BC:73:04:FC:98:25:BC:59:F2:3D:6D:7E:1A:55
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/Wdt5N9jEvHME_JglvFnyPW1-GlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.157.32.0/19
89.221.84.0-89.221.95.255
Signature Algorithm: sha256WithRSAEncryption
bc:e3:c3:8c:c0:1b:ea:e8:dd:98:a2:3f:1e:c8:57:7b:00:9f:
05:35:9e:81:35:04:ae:95:69:54:dc:e9:85:c6:e5:cb:48:b8:
7e:84:46:69:e0:f1:ad:69:ca:78:e0:22:43:47:4c:f4:d7:e5:
20:62:88:74:bd:2c:a1:02:f4:bd:69:57:16:96:bf:79:0a:a5:
98:a5:e4:f4:80:85:0b:1e:03:ca:fd:80:94:e6:ab:6e:12:d1:
57:22:ab:f9:7b:20:33:db:69:ca:2f:c3:20:5c:e7:07:70:32:
db:a4:fe:e7:85:07:ce:c1:88:a8:e3:b9:af:5b:ad:e6:00:3b:
f9:bc:60:f1:85:63:ba:7f:0e:0a:58:f4:4c:e1:2f:d0:16:d3:
4c:3b:2b:ac:aa:b7:29:0c:11:00:9e:0e:12:7f:37:25:18:43:
94:5b:ae:37:7b:9d:99:94:84:77:4e:d4:73:be:96:fe:f7:ad:
5a:b0:b3:fb:a4:c2:c0:48:88:96:ec:59:f8:cc:4f:4a:9f:95:
7d:6d:bc:a6:f2:3e:21:3a:25:72:c4:ac:b1:68:3b:79:b6:fe:
97:15:ce:07:37:bb:54:8c:07:e3:b4:44:87:c9:56:ee:79:24:
75:5b:f9:91:cc:b5:10:8b:61:b0:c0:c2:8c:e7:ec:23:1f:05:
45:29:d0:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:07 2024 by rpki-client on console-fra.rpki-client.org