Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/EqbcBCXihxqqcPyYhd0JmwKVwsM.roa
File: EqbcBCXihxqqcPyYhd0JmwKVwsM.roa (raw, json)
Hash identifier: lHGq8L9jtGSRXjPNrywteXwUw7SsWU12dzMiRVsJtQQ=
Subject key identifier: 12:A6:DC:04:25:E2:87:1A:AA:70:FC:98:85:DD:09:9B:02:95:C2:C3
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19DC9934
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/EqbcBCXihxqqcPyYhd0JmwKVwsM.roa
Signing time: Mon 25 Apr 2022 09:39:07 +0000
ROA not before: Mon 25 Apr 2022 09:39:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 91.189.184.0/24 maxlen: 24
77.83.158.0/24 maxlen: 32
91.189.185.0/24 maxlen: 24
77.83.156.0/24 maxlen: 32
85.209.253.0/24 maxlen: 24
77.243.95.0/24 maxlen: 32
77.243.93.0/24 maxlen: 32
193.16.9.0/24 maxlen: 32
185.117.20.0/23 maxlen: 32
5.253.138.0/24 maxlen: 32
194.36.101.0/24 maxlen: 24
185.238.241.0/24 maxlen: 24
147.78.221.0/24 maxlen: 32
185.238.240.0/24 maxlen: 24
185.141.205.0/24 maxlen: 24
185.214.70.0/24 maxlen: 24
45.153.168.0/24 maxlen: 32
213.232.107.0/24 maxlen: 32
45.151.172.0/23 maxlen: 32
185.166.237.0/24 maxlen: 24
45.14.44.0/24 maxlen: 32
45.14.45.0/24 maxlen: 32
185.207.178.0/24 maxlen: 24
79.174.23.0/24 maxlen: 32
79.174.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433887540 (0x19dc9934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 25 09:39:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12a6dc0425e2871aaa70fc9885dd099b0295c2c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5f:02:f1:12:1c:f1:89:01:33:9c:f8:ec:ac:
27:c9:ac:40:d1:34:23:b4:c6:78:7d:43:6b:0f:44:
cf:ce:31:81:71:0c:cf:f2:3e:58:63:03:2a:97:89:
be:88:68:a5:23:d1:f1:ef:34:52:3a:50:6d:df:bf:
f6:28:b0:3e:dc:f5:d8:75:d3:ce:74:54:83:87:97:
d5:03:ed:0c:0c:35:1f:24:6e:1c:4e:44:7b:e6:ee:
4d:27:fb:b7:e3:63:4c:14:db:dd:32:3b:21:37:36:
da:af:87:55:f0:2d:31:ae:0a:72:7d:16:60:32:83:
70:ce:c4:85:ce:c8:f8:a6:99:20:f3:9f:d8:47:56:
68:dc:04:38:31:9b:94:54:de:c9:6d:c8:2c:82:5b:
7e:ad:b8:d0:e4:83:f6:69:54:f7:6e:27:4b:34:70:
77:fe:0e:32:f0:56:ab:78:b2:71:d8:5e:c6:a3:e7:
70:b7:2a:cf:9b:c9:97:53:5d:98:7b:c2:a9:08:99:
c4:3d:49:e9:ee:6a:a3:c2:4a:86:60:6e:1f:e5:1a:
2d:27:0d:f2:9e:fa:1a:fc:88:f8:72:93:be:d6:b4:
56:db:f2:2a:b2:f3:c9:ee:44:41:05:16:a2:e9:70:
f4:37:36:cb:c2:13:35:8d:2a:b4:0a:ca:70:50:28:
af:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A6:DC:04:25:E2:87:1A:AA:70:FC:98:85:DD:09:9B:02:95:C2:C3
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/EqbcBCXihxqqcPyYhd0JmwKVwsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.138.0/24
45.14.44.0/23
45.151.172.0/23
45.153.168.0/24
77.83.156.0/24
77.83.158.0/24
77.243.93.0/24
77.243.95.0/24
79.174.21.0/24
79.174.23.0/24
85.209.253.0/24
91.189.184.0/23
147.78.221.0/24
185.117.20.0/23
185.141.205.0/24
185.166.237.0/24
185.207.178.0/24
185.214.70.0/24
185.238.240.0/23
193.16.9.0/24
194.36.101.0/24
213.232.107.0/24
Signature Algorithm: sha256WithRSAEncryption
00:1e:22:c7:8e:d8:e3:6c:e8:62:9a:44:46:a3:3f:44:d2:2c:
19:e8:f0:ec:30:87:86:25:64:1f:a7:67:3b:e7:2d:e4:8f:c9:
16:0a:7d:da:cf:19:8e:21:31:37:00:05:8c:ff:d8:11:2d:ad:
b6:4a:ad:56:cd:91:ac:ab:62:17:2f:04:5b:27:14:96:22:7f:
c0:50:f0:42:67:be:cf:96:e9:fb:f5:60:b2:05:03:6a:78:45:
31:b2:c3:ca:56:d0:6c:50:35:64:99:48:16:b0:21:0a:7f:43:
72:1a:62:88:c2:54:3d:bd:ad:10:6e:9d:ff:ce:66:0c:b2:89:
06:a1:9c:29:1f:f2:5e:8b:c4:54:9a:59:4d:21:ba:d0:b2:74:
96:3c:ad:6c:52:3d:39:ac:8e:8a:46:e9:05:27:b7:90:7d:69:
72:3e:68:59:19:be:31:6a:82:2e:33:47:da:36:dd:eb:82:bf:
b5:e5:6f:4c:a3:90:f6:b9:86:ee:a7:b7:11:c1:da:44:2c:00:
87:fd:72:8d:06:b8:54:6c:8f:33:4a:e3:71:d8:7f:9f:d3:6a:
b7:7c:f6:4b:c3:9d:90:33:04:39:92:fa:81:09:bb:0a:ba:6f:
d1:62:9d:17:c4:ad:a3:6a:a8:0e:81:09:0b:af:b3:b5:53:81:
8f:5a:b6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org