Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/cf24bd-c15b-484c-9732-04b3813f3b3d/1/PhrKk9a6e7eBNIPsNk-9Rdhg04Y.roa
File: PhrKk9a6e7eBNIPsNk-9Rdhg04Y.roa (raw, json)
Hash identifier: /xXjGlmDsAh1qWptRjTvVBQLR6s56ybjcdD+rLWoXHI=
Subject key identifier: 3E:1A:CA:93:D6:BA:7B:B7:81:34:83:EC:36:4F:BD:45:D8:60:D3:86
Certificate issuer: /CN=7a05ea59805f94be185282039bbae2fa8a9253f5
Certificate serial: 380426EE
Authority key identifier: 7A:05:EA:59:80:5F:94:BE:18:52:82:03:9B:BA:E2:FA:8A:92:53:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egXqWYBflL4YUoIDm7ri-oqSU_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/cf24bd-c15b-484c-9732-04b3813f3b3d/1/PhrKk9a6e7eBNIPsNk-9Rdhg04Y.roa
Signing time: Tue 25 Jan 2022 07:36:42 +0000
ROA not before: Tue 25 Jan 2022 07:36:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50316
IP address blocks: 185.142.122.0/23 maxlen: 24
185.43.164.0/22 maxlen: 24
185.121.32.0/22 maxlen: 24
46.234.198.240/30 maxlen: 30
185.245.120.0/22 maxlen: 24
45.147.236.0/22 maxlen: 24
193.38.132.0/22 maxlen: 24
185.219.44.0/22 maxlen: 24
185.158.140.0/22 maxlen: 24
185.193.252.0/22 maxlen: 24
45.135.24.0/22 maxlen: 24
185.219.45.64/30 maxlen: 30
185.96.96.0/22 maxlen: 24
193.5.31.0/24 maxlen: 24
213.187.0.0/19 maxlen: 24
193.47.52.0/22 maxlen: 24
193.5.41.0/24 maxlen: 24
193.5.39.0/24 maxlen: 24
185.74.188.0/22 maxlen: 24
185.10.188.0/22 maxlen: 24
46.234.192.0/19 maxlen: 24
195.184.74.0/24 maxlen: 24
193.5.120.0/24 maxlen: 24
185.157.24.0/22 maxlen: 24
2a01:6d60::/29 maxlen: 56
2a06:9c80::/29 maxlen: 56
2a0a:c180::/29 maxlen: 56
2a05:4a00::/29 maxlen: 56
2a0b:e040::/29 maxlen: 56
2a0a:41c0::/29 maxlen: 56
2a0d:5780::/29 maxlen: 56
2a07:a2c0::/29 maxlen: 56
2a07:adc0::/29 maxlen: 56
2a00:1f48::/29 maxlen: 56
2a0d:e540::/29 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939796206 (0x380426ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a05ea59805f94be185282039bbae2fa8a9253f5
Validity
Not Before: Jan 25 07:36:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e1aca93d6ba7bb7813483ec364fbd45d860d386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fe:d7:cf:18:1e:d2:4a:9b:65:8c:ea:d4:ee:
54:fa:db:9b:cd:5f:19:f9:ed:fa:6f:49:20:9b:58:
f9:a2:47:11:86:0e:e7:68:b1:89:be:97:f2:49:51:
92:fc:00:b0:83:63:2e:dc:61:17:05:69:03:3a:ab:
f4:2c:1d:58:ed:80:9f:68:fe:e2:cc:ee:72:01:0f:
4d:84:be:48:e0:ce:83:e2:b5:33:de:d0:2b:aa:3c:
01:be:24:05:89:e3:e3:24:38:06:37:1e:97:8a:b6:
43:2a:34:2a:25:21:d3:0d:af:b6:17:b2:ac:f7:e2:
97:1d:2e:b6:46:5b:81:25:ab:6e:6f:20:c4:1d:25:
da:7d:0d:1d:b8:9b:dd:77:ac:96:17:e2:b1:03:69:
37:3e:6e:dd:2e:33:a8:00:00:6a:5c:d8:96:0d:6a:
4a:9f:31:84:d9:9d:d9:f8:ae:70:5c:c4:4a:35:93:
42:4c:07:a4:3a:75:1f:aa:fc:0b:34:6d:5c:28:d8:
b0:af:0c:00:0f:71:45:63:9d:ab:b8:3c:a6:aa:e5:
60:b9:e5:ca:7e:56:b1:49:c2:f5:de:0c:78:34:df:
98:43:0e:2c:25:6a:31:e6:16:c8:1c:28:cf:50:62:
61:e3:dd:e7:bd:5c:86:9d:d0:29:fe:32:4e:7b:93:
22:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1A:CA:93:D6:BA:7B:B7:81:34:83:EC:36:4F:BD:45:D8:60:D3:86
X509v3 Authority Key Identifier:
keyid:7A:05:EA:59:80:5F:94:BE:18:52:82:03:9B:BA:E2:FA:8A:92:53:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egXqWYBflL4YUoIDm7ri-oqSU_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cf24bd-c15b-484c-9732-04b3813f3b3d/1/PhrKk9a6e7eBNIPsNk-9Rdhg04Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cf24bd-c15b-484c-9732-04b3813f3b3d/1/egXqWYBflL4YUoIDm7ri-oqSU_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.24.0/22
45.147.236.0/22
46.234.192.0/19
185.10.188.0/22
185.43.164.0/22
185.74.188.0/22
185.96.96.0/22
185.121.32.0/22
185.142.122.0/23
185.157.24.0/22
185.158.140.0/22
185.193.252.0/22
185.219.44.0/22
185.245.120.0/22
193.5.31.0/24
193.5.39.0/24
193.5.41.0/24
193.5.120.0/24
193.38.132.0/22
193.47.52.0/22
195.184.74.0/24
213.187.0.0/19
IPv6:
2a00:1f48::/29
2a01:6d60::/29
2a05:4a00::/29
2a06:9c80::/29
2a07:a2c0::/29
2a07:adc0::/29
2a0a:41c0::/29
2a0a:c180::/29
2a0b:e040::/29
2a0d:5780::/29
2a0d:e540::/29
Signature Algorithm: sha256WithRSAEncryption
90:e0:04:8f:8b:47:2c:8e:6a:3e:7e:e9:69:8d:04:ae:58:71:
b0:96:21:36:ff:d2:49:98:76:17:df:a5:61:91:c4:d1:3e:f1:
6f:28:10:33:4b:37:23:40:72:94:92:25:51:b0:1c:c1:d1:b1:
43:19:45:c1:b9:98:42:20:45:27:ec:14:4f:14:1d:3f:9d:b9:
2d:95:7c:30:29:cc:72:f6:66:1d:7f:5d:e1:0f:a8:7f:4d:17:
7b:aa:0b:43:e8:ec:1b:37:a9:73:ff:33:b5:44:df:e0:d9:b8:
9e:f8:6a:b8:fe:94:4b:9b:5a:dd:e8:e2:f6:2a:2c:e4:62:55:
a9:d6:4e:34:44:88:5c:a3:0e:a5:39:2a:19:05:03:88:ac:67:
ca:e1:5a:ad:10:9d:a6:d7:d5:1d:6f:c3:36:05:72:58:36:82:
93:cf:d2:71:f3:e6:f3:71:25:4a:1f:90:d7:17:9f:6b:61:1a:
18:37:c1:ff:84:d8:06:74:fa:ca:c8:4d:9b:c0:3d:bf:eb:cc:
8e:d0:d8:0f:16:63:98:c6:63:a2:a9:1a:85:e4:c3:a2:b9:fd:
cb:26:90:ac:34:51:8b:9a:3f:05:80:11:41:2a:78:d4:0e:d5:
2a:4a:52:af:36:c0:1b:dc:7e:d2:f0:16:eb:c9:4a:1a:d3:dd:
08:6a:ad:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:20 2024 by rpki-client on console-fra.rpki-client.org