Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Xwh81DUc5KbNDT1mhfXnSQMQTOI.roa
File: Xwh81DUc5KbNDT1mhfXnSQMQTOI.roa (raw, json)
Hash identifier: 8GA+d/6F8130oPCqrFG8iXW/wANsaRwuXre9zIxdVwc=
Subject key identifier: 5F:08:7C:D4:35:1C:E4:A6:CD:0D:3D:66:85:F5:E7:49:03:10:4C:E2
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19ADE86B
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Xwh81DUc5KbNDT1mhfXnSQMQTOI.roa
Signing time: Tue 12 Apr 2022 08:43:04 +0000
ROA not before: Tue 12 Apr 2022 08:43:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 5.183.204.0/23 maxlen: 32
193.187.153.0/24 maxlen: 32
45.12.232.0/24 maxlen: 32
2.59.174.0/24 maxlen: 32
213.232.104.0/24 maxlen: 32
92.119.150.0/24 maxlen: 32
91.188.203.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430827627 (0x19ade86b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 12 08:43:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f087cd4351ce4a6cd0d3d6685f5e74903104ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0d:4d:bd:21:cd:0d:13:d1:b7:fe:12:ab:05:
c3:63:cb:a6:09:08:46:53:91:72:9d:23:1b:2c:40:
ad:2c:69:ec:ee:76:b1:e4:83:06:96:6f:2b:3c:2c:
6d:73:31:8e:da:b6:39:d2:78:37:61:58:f8:9b:59:
ef:2e:15:f2:b0:8e:bf:04:04:de:f3:82:a7:32:a5:
03:be:5f:9a:74:63:5d:59:a1:62:bc:23:bc:e1:d3:
67:ff:9a:44:3c:03:85:b8:00:63:00:32:97:7e:49:
9e:3a:c4:ed:3d:c7:12:6d:64:81:16:17:7d:51:6b:
c0:e1:2a:4c:d0:e1:8d:a5:19:96:74:a0:83:05:0d:
1d:63:aa:ae:04:ec:69:48:c9:70:3e:9e:83:38:ae:
5e:6d:ea:c3:90:df:37:49:6d:b1:b7:23:d7:96:a2:
e3:dc:ae:59:53:7c:cb:47:a9:46:32:54:cf:b3:62:
de:ac:e0:19:fc:b2:64:71:d8:98:be:08:c0:f9:2a:
a6:93:36:9b:a6:ca:c7:0d:77:e2:73:61:3c:82:34:
bc:a0:2a:1a:ff:1b:8f:42:b7:3d:31:c7:2d:de:eb:
8a:fa:4f:ec:17:a1:fe:3c:f3:8a:c5:3a:62:04:b3:
c8:a0:22:8e:93:b8:41:88:18:8b:aa:df:2b:c2:2c:
3f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:08:7C:D4:35:1C:E4:A6:CD:0D:3D:66:85:F5:E7:49:03:10:4C:E2
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Xwh81DUc5KbNDT1mhfXnSQMQTOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.174.0/24
5.183.204.0/23
45.12.232.0/24
91.188.203.0/24
92.119.150.0/24
193.187.153.0/24
213.232.104.0/24
Signature Algorithm: sha256WithRSAEncryption
27:08:9b:08:62:7b:13:2c:86:9b:8a:78:21:11:81:c5:72:cf:
28:73:af:c5:1f:5f:5d:94:a5:21:4a:4b:f7:95:af:2d:f6:d4:
7d:7b:da:98:41:31:9a:08:ec:7f:a3:04:28:41:2c:33:0a:45:
b0:8d:d1:12:02:58:5c:89:60:b3:df:b0:9d:c2:62:57:f8:f8:
17:7b:1a:2f:d7:87:ec:68:95:c5:f7:72:be:95:39:61:03:d0:
19:a5:99:8b:99:c4:40:64:4b:e7:33:60:26:f9:e5:a2:d7:c9:
0f:96:bc:04:57:a3:1e:26:f2:a7:f8:1d:97:14:f0:fd:ba:cb:
ff:78:8a:25:c9:4c:5a:43:bb:1a:ab:71:69:5d:41:7e:a9:38:
db:bb:84:d6:02:77:de:10:6f:dc:61:a6:ec:c5:6e:36:4c:c5:
ce:88:91:96:c6:f7:d7:be:6d:a9:4c:26:6e:46:78:3c:ba:45:
4b:5d:f9:e1:33:d4:0f:80:8d:d2:98:1f:03:ef:5e:61:12:fd:
23:b5:55:0a:61:66:bc:2e:71:a2:1f:76:bc:eb:33:0b:d1:f2:
b8:53:50:4b:56:e7:0c:c3:97:86:ba:81:53:47:d7:92:c8:41:
c5:1b:b4:a3:56:87:61:71:34:86:f1:af:b1:5a:a7:b9:51:6f:
8c:dc:0a:8c
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIEGa3oazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDQx
MjA4NDMwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWYwODdjZDQzNTFj
ZTRhNmNkMGQzZDY2ODVmNWU3NDkwMzEwNGNlMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANQNTb0hzQ0T0bf+EqsFw2PLpgkIRlORcp0jGyxArSxp7O52
seSDBpZvKzwsbXMxjtq2OdJ4N2FY+JtZ7y4V8rCOvwQE3vOCpzKlA75fmnRjXVmh
YrwjvOHTZ/+aRDwDhbgAYwAyl35JnjrE7T3HEm1kgRYXfVFrwOEqTNDhjaUZlnSg
gwUNHWOqrgTsaUjJcD6egziuXm3qw5DfN0ltsbcj15ai49yuWVN8y0epRjJUz7Ni
3qzgGfyyZHHYmL4IwPkqppM2m6bKxw134nNhPII0vKAqGv8bj0K3PTHHLd7rivpP
7Beh/jzzisU6YgSzyKAijpO4QYgYi6rfK8IsPwMCAwEAAaOCAi0wggIpMB0GA1Ud
DgQWBBRfCHzUNRzkps0NPWaF9edJAxBM4jAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L1h3aDgxRFVjNUtiTkRUMW1oZlhuU1FNUVRPSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBD
BggrBgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEAAI7rgMEAQW3zAMEAC0M6AMEAFu8
ywMEAFx3lgMEAMG7mQMEANXoaDANBgkqhkiG9w0BAQsFAAOCAQEAJwibCGJ7EyyG
m4p4IRGBxXLPKHOvxR9fXZSlIUpL95WvLfbUfXvamEExmgjsf6MEKEEsMwpFsI3R
EgJYXIlgs9+wncJiV/j4F3saL9eH7GiVxfdyvpU5YQPQGaWZi5nEQGRL5zNgJvnl
otfJD5a8BFejHibyp/gdlxTw/brL/3iKJclMWkO7GqtxaV1Bfqk427uE1gJ33hBv
3GGm7MVuNkzFzoiRlsb3175tqUwmbkZ4PLpFS1354TPUD4CN0pgfA+9eYRL9I7VV
CmFmvC5xoh92vOszC9HyuFNQS1bnDMOXhrqBU0fXkshBxRu0o1aHYXE0hvGvsVqn
uVFvjNwKjA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org