Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/b5a5SVT_DGDYa2kN6ttDnzdZQxA.roa
File: b5a5SVT_DGDYa2kN6ttDnzdZQxA.roa (raw, json)
Hash identifier: WvVZO5JRHwUGm4/JC5oNQKIVzu0VD+B9ZHNwBsbedgQ=
Subject key identifier: 6F:96:B9:49:54:FF:0C:60:D8:6B:69:0D:EA:DB:43:9F:37:59:43:10
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0184CE86CC2646281DEADE235AE9D438A59C
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/b5a5SVT_DGDYa2kN6ttDnzdZQxA.roa
Signing time: Thu 01 Dec 2022 16:30:51 +0000
ROA not before: Thu 01 Dec 2022 16:30:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3301
IP address blocks: 194.68.127.0/24 maxlen: 24
193.183.230.0/23 maxlen: 23
193.183.228.0/23 maxlen: 23
193.183.236.0/23 maxlen: 23
194.103.240.0/20 maxlen: 20
193.182.190.0/24 maxlen: 24
192.165.12.0/24 maxlen: 24
192.165.31.0/24 maxlen: 24
192.36.96.0/24 maxlen: 24
192.121.115.0/24 maxlen: 24
192.165.173.0/24 maxlen: 24
192.121.229.0/24 maxlen: 24
193.180.7.0/24 maxlen: 24
192.165.180.0/24 maxlen: 24
193.182.152.0/23 maxlen: 23
193.182.152.0/24 maxlen: 24
193.182.153.0/24 maxlen: 24
192.121.40.0/24 maxlen: 24
192.121.50.0/23 maxlen: 23
192.121.52.0/24 maxlen: 24
193.180.176.0/24 maxlen: 24
192.176.124.0/24 maxlen: 24
193.180.175.0/24 maxlen: 24
193.182.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:86:cc:26:46:28:1d:ea:de:23:5a:e9:d4:38:a5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Dec 1 16:30:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f96b94954ff0c60d86b690deadb439f37594310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:eb:8e:7a:c2:2b:0b:91:f6:bc:df:97:4b:
71:0f:68:c0:5a:80:76:79:23:e1:cc:cc:3c:ef:b8:
47:61:6f:08:a2:a0:ed:b8:c6:c7:d1:45:d9:58:63:
10:08:cb:00:7c:38:ba:84:fa:c3:ca:f6:56:1f:38:
b1:7f:d4:c9:74:7a:e1:2d:98:27:56:26:9b:52:bf:
39:17:ea:91:b2:5f:ab:33:48:8e:8b:5a:09:8d:c7:
ed:3c:e6:fa:a3:26:3a:ab:cc:b9:b9:78:f8:87:8e:
94:00:bd:bb:23:91:5c:b1:3b:62:5c:b7:5d:b4:a0:
8b:a2:de:fd:05:b0:ab:90:13:0a:31:32:df:45:1c:
07:aa:9f:ff:bc:61:5c:5f:76:11:06:e3:0b:53:ef:
b3:34:dc:8d:64:44:6c:71:3a:d5:63:0b:0f:c4:c7:
fd:14:fd:b1:11:14:c6:b5:e0:df:4d:d1:a6:df:09:
67:02:dd:f7:ae:f9:39:ce:c8:16:42:f4:cc:de:9e:
1d:2f:03:57:93:7b:a2:75:9d:d6:db:ce:72:a9:84:
18:58:c1:9c:03:48:36:02:28:15:68:5a:b2:f7:9a:
24:b5:7f:aa:8d:15:82:af:4f:bc:3a:b6:20:ba:a7:
5e:e3:f8:18:52:4a:14:61:be:1f:02:d2:9e:73:1e:
ed:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:96:B9:49:54:FF:0C:60:D8:6B:69:0D:EA:DB:43:9F:37:59:43:10
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/b5a5SVT_DGDYa2kN6ttDnzdZQxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.96.0/24
192.121.40.0/24
192.121.50.0-192.121.52.255
192.121.115.0/24
192.121.229.0/24
192.165.12.0/24
192.165.31.0/24
192.165.173.0/24
192.165.180.0/24
192.176.124.0/24
193.180.7.0/24
193.180.175.0-193.180.176.255
193.182.107.0/24
193.182.152.0/23
193.182.190.0/24
193.183.228.0/22
193.183.236.0/23
194.68.127.0/24
194.103.240.0/20
Signature Algorithm: sha256WithRSAEncryption
b0:d1:d5:4d:c4:88:57:30:7e:33:1f:32:ba:cd:3c:d7:c6:1c:
7c:90:30:5b:0b:42:e5:94:28:82:2e:11:5b:4d:19:98:84:01:
58:c6:fe:f4:c4:12:fc:d0:e7:60:96:3e:76:c2:a8:44:26:fd:
16:b1:d3:6b:4e:b7:89:46:98:40:ef:3c:ed:70:f8:cb:d7:40:
41:06:f3:2a:f1:f5:05:d2:09:34:d4:17:c0:56:5b:9b:80:43:
ae:78:0e:28:77:70:28:a8:3c:f6:1b:98:ff:0c:62:53:d7:9f:
2b:84:72:61:2e:af:94:f0:0c:d6:db:60:fe:13:33:f4:6b:83:
14:1f:cb:1c:c6:f7:85:6a:35:f8:39:09:62:71:8f:cd:69:a3:
5e:64:a5:b8:b4:ac:5d:e0:a1:54:2e:c9:9c:2f:ea:5f:01:dd:
43:45:cc:ed:f8:80:09:86:c9:e2:23:b4:f3:ad:e9:b5:ba:60:
68:7d:e0:bc:90:cc:58:1e:24:a7:b2:66:ba:cc:96:fb:1c:60:
3c:e8:ce:bf:8b:d7:67:ad:f8:f1:d7:94:1a:a0:2c:ba:9a:a2:
c0:4f:c2:ec:1a:8d:c3:4c:4d:a2:34:02:01:b8:0b:1c:c4:eb:
6a:39:4a:66:44:f1:5a:48:0e:cf:30:68:69:96:81:e1:d2:07:
c4:9f:60:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org