Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/N5-KOu86ESgBxb7pi1rI8ECyszk.roa
File: N5-KOu86ESgBxb7pi1rI8ECyszk.roa (raw, json)
Hash identifier: ByWq9NEPmDO8eeC+rK8uSAkrSegA8zBhbUrCRhIs+d4=
Subject key identifier: 37:9F:8A:3A:EF:3A:11:28:01:C5:BE:E9:8B:5A:C8:F0:40:B2:B3:39
Certificate issuer: /CN=59919584033c3911a009bdde3183f6c60b2afcca
Certificate serial: 01848A34F07C0F1BD779A44831C83F053C67
Authority key identifier: 59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/N5-KOu86ESgBxb7pi1rI8ECyszk.roa
Signing time: Fri 18 Nov 2022 10:07:15 +0000
ROA not before: Fri 18 Nov 2022 10:07:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41497
IP address blocks: 5.252.240.0/22 maxlen: 22
5.252.240.0/23 maxlen: 23
5.252.242.0/23 maxlen: 23
212.183.160.0/20 maxlen: 20
212.183.162.0/24 maxlen: 24
212.183.160.0/19 maxlen: 19
212.165.32.0/19 maxlen: 19
212.165.32.0/20 maxlen: 20
212.165.32.0/21 maxlen: 21
212.165.40.0/21 maxlen: 21
212.183.176.0/20 maxlen: 20
212.183.176.0/21 maxlen: 21
193.43.24.0/24 maxlen: 24
212.165.48.0/20 maxlen: 20
212.165.48.0/21 maxlen: 21
212.183.191.0/24 maxlen: 24
212.165.56.0/21 maxlen: 21
83.137.232.0/22 maxlen: 22
83.137.232.0/21 maxlen: 21
83.137.236.0/22 maxlen: 22
80.76.80.0/21 maxlen: 21
80.76.80.0/20 maxlen: 20
80.76.88.0/21 maxlen: 21
2001:4bb0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:34:f0:7c:0f:1b:d7:79:a4:48:31:c8:3f:05:3c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59919584033c3911a009bdde3183f6c60b2afcca
Validity
Not Before: Nov 18 10:07:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=379f8a3aef3a112801c5bee98b5ac8f040b2b339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ae:80:67:3b:4b:38:4c:f4:fa:81:28:c9:42:
2d:c1:5c:32:91:a2:64:9d:e9:b9:be:45:5a:fc:a0:
59:c8:4d:9a:85:6e:63:3d:d5:9f:6e:8e:d9:36:11:
ef:dd:9a:6e:42:c1:4e:03:66:a1:6b:16:d2:5a:67:
d0:b4:8a:ea:34:a0:f1:54:ed:82:ef:2d:50:80:76:
d2:21:a9:21:29:1a:ef:20:42:1f:db:35:fc:9c:36:
08:c4:5a:39:d2:b8:de:f8:c0:0c:29:de:05:7a:6c:
8e:30:d7:a7:a3:cb:db:17:b5:3b:f5:ab:7f:95:fe:
90:b3:5e:1d:4a:52:36:8d:40:04:df:c7:3a:bc:35:
77:ce:08:37:5b:99:fa:1d:f3:a4:a3:54:c4:44:38:
23:a2:ec:ff:5e:af:b5:a4:7e:09:24:ee:a9:11:5d:
ec:c3:03:28:2f:b6:0d:e4:59:ac:91:06:ae:9d:9a:
4f:5d:01:4c:49:67:76:c0:ee:05:0a:ee:af:08:03:
dc:c6:fb:ec:a1:1b:6b:a3:0e:57:9a:a7:58:30:05:
18:23:cc:f7:0c:f4:c3:a4:dc:7f:59:bf:1e:c3:d4:
f0:cf:27:4f:c9:f5:d5:d9:4c:04:ff:b8:60:fc:db:
2e:e7:72:7b:e7:09:a1:a8:e4:64:d2:04:29:5c:ff:
71:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:9F:8A:3A:EF:3A:11:28:01:C5:BE:E9:8B:5A:C8:F0:40:B2:B3:39
X509v3 Authority Key Identifier:
keyid:59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/N5-KOu86ESgBxb7pi1rI8ECyszk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.240.0/22
80.76.80.0/20
83.137.232.0/21
193.43.24.0/24
212.165.32.0/19
212.183.160.0/19
IPv6:
2001:4bb0::/32
Signature Algorithm: sha256WithRSAEncryption
2a:77:a9:a3:44:12:43:d8:10:f3:7f:ea:35:71:2b:70:c6:48:
d4:48:0b:c5:84:52:41:d5:c5:1e:5e:d6:93:d4:9d:61:dc:9d:
cd:e6:0f:32:9c:4a:a1:83:de:4c:26:4f:32:b1:d9:a1:ef:b7:
49:2f:bc:02:84:65:01:13:ee:69:d9:e2:78:b6:83:c2:02:19:
b0:c4:c5:88:19:0b:d7:5b:6a:4e:42:56:05:b4:7b:41:35:bb:
2a:a2:f4:16:cf:60:d6:41:e9:40:48:60:56:ac:a3:7c:f3:db:
bc:21:f9:59:11:59:d1:93:8b:3e:91:a1:44:a5:4b:83:bf:0b:
5d:c3:c0:c9:e6:26:07:98:4c:9c:42:de:c0:01:44:01:db:83:
06:c7:41:5f:bb:d1:8d:30:70:f3:ef:74:34:9a:66:58:33:c3:
06:d2:5d:9c:de:16:1b:53:8f:dc:06:6a:39:84:c2:5b:17:62:
5f:9f:53:5d:42:d3:a8:6f:47:03:90:53:4a:c8:30:f4:ed:96:
1a:5e:71:ee:92:80:3d:f7:4d:8c:09:6d:ae:16:f0:22:2b:80:
48:c5:d5:6c:02:65:22:8b:33:fe:4e:eb:13:31:ce:24:b4:a6:
af:cb:3d:94:47:c6:ae:98:b8:c3:ca:ad:30:33:10:d3:62:fc:
16:5d:76:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:13 2024 by rpki-client on console-ams.rpki-client.org