Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/0_YwVCpjq0U9vJqtzhbUzTGRsAs.roa
File: 0_YwVCpjq0U9vJqtzhbUzTGRsAs.roa (raw, json)
Hash identifier: xXWuPvd0emQ3NENk2tMy6n9IyjkWTrQ+qNu2y0m/vn4=
Subject key identifier: D3:F6:30:54:2A:63:AB:45:3D:BC:9A:AD:CE:16:D4:CD:31:91:B0:0B
Certificate issuer: /CN=59919584033c3911a009bdde3183f6c60b2afcca
Certificate serial: 7C96
Authority key identifier: 59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/0_YwVCpjq0U9vJqtzhbUzTGRsAs.roa
Signing time: Mon 23 May 2022 06:57:28 +0000
ROA not before: Mon 23 May 2022 06:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31115
IP address blocks: 178.19.152.0/21 maxlen: 21
178.19.156.0/24 maxlen: 24
62.97.32.0/19 maxlen: 19
62.97.32.0/20 maxlen: 20
62.97.45.0/24 maxlen: 24
62.97.48.0/20 maxlen: 20
130.255.144.0/21 maxlen: 21
130.255.144.0/22 maxlen: 22
130.255.144.0/24 maxlen: 24
91.187.201.0/24 maxlen: 24
91.187.208.0/20 maxlen: 20
91.187.217.0/24 maxlen: 24
178.19.144.0/20 maxlen: 20
178.19.144.0/21 maxlen: 21
94.126.56.0/21 maxlen: 21
94.126.56.0/22 maxlen: 22
94.126.60.0/22 maxlen: 22
185.11.192.0/22 maxlen: 22
195.134.176.0/22 maxlen: 22
195.134.176.0/21 maxlen: 21
195.134.182.0/24 maxlen: 24
195.134.180.0/22 maxlen: 22
130.255.150.0/24 maxlen: 24
130.255.148.0/22 maxlen: 22
130.255.149.0/24 maxlen: 24
31.171.136.0/21 maxlen: 21
31.171.136.0/22 maxlen: 22
31.171.140.0/24 maxlen: 24
31.171.140.0/22 maxlen: 22
91.187.192.0/20 maxlen: 20
91.187.192.0/19 maxlen: 19
91.187.199.0/24 maxlen: 24
5.172.64.0/19 maxlen: 19
2a01:9840::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31894 (0x7c96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59919584033c3911a009bdde3183f6c60b2afcca
Validity
Not Before: May 23 06:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f630542a63ab453dbc9aadce16d4cd3191b00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d5:cc:5d:ff:96:c9:b0:53:a5:7d:03:46:5d:
73:e3:e6:1d:8d:82:eb:8a:51:cc:3e:71:76:7e:5a:
b3:e1:f5:f4:a2:cd:4b:6e:3c:f8:7e:38:3c:ec:c5:
3d:95:b4:8b:f7:80:e2:b7:d0:88:27:41:14:89:be:
b4:9a:14:15:07:57:e9:07:58:e1:ff:47:ea:23:a6:
ec:95:f7:0b:e9:b3:35:a2:34:23:f6:02:12:1f:09:
e1:a3:7c:c6:09:a8:7f:bb:f4:88:85:b4:f3:0f:6f:
55:78:06:e6:3c:70:2f:3b:50:9f:a4:f5:d5:5c:6e:
b5:11:95:25:af:ae:f6:39:7b:35:88:f8:92:ff:79:
7b:b3:43:2f:d9:6e:24:6e:e0:01:48:40:21:2f:74:
a3:14:70:11:52:53:ce:e1:7c:b1:ea:cd:e0:3b:8a:
57:ce:c9:e4:b0:7b:7c:6e:60:cb:33:db:75:49:5b:
10:ec:7b:1c:25:35:0d:d5:52:ae:66:4e:68:e7:ef:
ff:2a:2a:cc:7c:6d:99:03:0e:e8:ff:38:3e:82:a7:
04:a5:3f:47:ca:a7:3c:a6:28:c7:7d:18:29:8b:aa:
61:05:d8:37:00:71:a8:11:16:42:bb:ac:2b:3f:ec:
b9:16:52:36:62:9c:a6:8a:4f:a4:2f:52:d6:93:cd:
df:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F6:30:54:2A:63:AB:45:3D:BC:9A:AD:CE:16:D4:CD:31:91:B0:0B
X509v3 Authority Key Identifier:
keyid:59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/0_YwVCpjq0U9vJqtzhbUzTGRsAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.64.0/19
31.171.136.0/21
62.97.32.0/19
91.187.192.0/19
94.126.56.0/21
130.255.144.0/21
178.19.144.0/20
185.11.192.0/22
195.134.176.0/21
IPv6:
2a01:9840::/32
Signature Algorithm: sha256WithRSAEncryption
65:6a:c3:5a:bd:58:11:3c:73:97:b1:df:df:3c:6d:e5:ce:c1:
e2:0f:94:28:c2:d1:62:fa:43:1d:43:ef:ba:61:af:04:85:34:
d1:f7:e7:56:89:48:9c:27:e1:75:28:da:b8:f5:e7:ea:ef:f3:
62:74:c5:ed:9d:57:5f:20:8b:02:84:7e:c3:a2:65:f4:2b:2f:
80:35:bc:f2:be:68:dc:c6:3f:5f:1a:98:e1:f2:8f:d3:b8:81:
4e:0f:61:fc:f4:59:fb:fa:fa:f2:e1:34:60:4b:e4:88:51:b7:
1d:eb:67:db:2c:34:80:bd:be:54:21:a5:0b:6c:5a:df:04:fa:
1a:e1:20:72:f1:bd:ba:c3:c4:81:32:90:ff:47:5c:c0:71:b6:
3e:09:1f:5b:5c:23:67:e2:79:dd:ca:19:b3:bb:8c:7d:fd:e9:
f5:20:9b:bc:c6:59:e0:a8:9d:fc:29:7b:48:fb:fa:01:93:fb:
8a:9c:df:02:64:f1:ff:f9:b0:64:50:ab:ab:44:37:66:4f:bf:
4b:3f:51:6e:ec:01:76:46:02:36:c1:91:a4:5e:cc:10:b9:eb:
69:52:9a:d8:c2:f9:dc:6b:82:dc:aa:67:fa:78:3c:08:26:e9:
85:a7:20:37:c1:8b:cf:08:8e:da:78:44:a4:8b:51:d9:fa:f1:
d6:ed:3b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:13 2024 by rpki-client on console-ams.rpki-client.org