Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/fSE-X_cHxPpPLWBbS_E0TL36pvA.roa
File: fSE-X_cHxPpPLWBbS_E0TL36pvA.roa (raw, json)
Hash identifier: OI9beBxekxIhmtAF6ICM9BZYnKzbdd9mSXlkLr6FW2s=
Subject key identifier: 7D:21:3E:5F:F7:07:C4:FA:4F:2D:60:5B:4B:F1:34:4C:BD:FA:A6:F0
Certificate issuer: /CN=eee573084100b41d7cc1e447295ba71d019d5192
Certificate serial: 0748E020
Authority key identifier: EE:E5:73:08:41:00:B4:1D:7C:C1:E4:47:29:5B:A7:1D:01:9D:51:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7uVzCEEAtB18weRHKVunHQGdUZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/fSE-X_cHxPpPLWBbS_E0TL36pvA.roa
Signing time: Sat 01 Jan 2022 07:58:43 +0000
ROA not before: Sat 01 Jan 2022 07:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 185.47.108.0/22 maxlen: 24
185.220.244.0/22 maxlen: 24
217.194.0.0/20 maxlen: 24
212.66.224.0/19 maxlen: 24
212.35.192.0/19 maxlen: 24
212.25.160.0/19 maxlen: 24
5.144.160.0/20 maxlen: 24
46.16.168.0/21 maxlen: 24
37.9.239.0/24 maxlen: 24
213.171.160.0/19 maxlen: 24
217.64.192.0/20 maxlen: 24
185.222.68.0/22 maxlen: 24
185.24.104.0/22 maxlen: 24
85.94.192.0/19 maxlen: 24
217.168.224.0/20 maxlen: 24
85.94.208.0/20 maxlen: 24
95.174.0.0/19 maxlen: 24
37.9.224.0/20 maxlen: 24
2001:4b78::/32 maxlen: 48
2a0d:b000::/29 maxlen: 48
2001:4b78::/29 maxlen: 48
2a05:b6c0::/29 maxlen: 48
2a04:2700::/29 maxlen: 48
2a0b:fd40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122216480 (0x748e020)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eee573084100b41d7cc1e447295ba71d019d5192
Validity
Not Before: Jan 1 07:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d213e5ff707c4fa4f2d605b4bf1344cbdfaa6f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:72:17:44:fc:8c:ec:8a:57:9c:dd:1d:9b:0f:
9c:ff:b1:4c:9b:9b:8a:ca:89:10:59:4d:69:a4:8e:
89:34:39:6c:c0:32:3a:6f:68:18:36:7f:87:05:12:
0d:83:09:8f:3b:2f:a5:9f:e9:fd:b7:0d:08:a5:41:
83:6d:62:5d:88:71:70:c6:b5:58:f5:54:44:b7:2e:
7d:ff:5b:d5:92:31:81:e0:0a:ef:51:d2:f2:6c:44:
71:4d:3f:8f:97:5e:12:d5:a9:db:1e:24:03:dc:c2:
86:ed:b6:46:84:96:a3:fd:34:9f:86:4b:fc:29:fd:
9e:dd:5a:7a:82:36:e8:33:3f:0c:d6:5d:7e:2e:98:
5d:ed:88:8e:92:6d:84:48:11:17:7a:d5:f8:36:5a:
a1:60:89:8e:f6:15:9c:1a:5d:e3:54:04:49:03:cb:
04:3f:14:53:74:c6:23:f0:1b:a6:45:15:9a:e5:58:
8c:92:39:90:4d:9e:6a:fb:de:98:cc:ea:86:88:64:
fc:14:7f:a7:cc:c8:21:56:12:29:b8:19:0a:e2:09:
84:1b:06:42:41:b7:f5:0e:40:e4:6f:39:92:5d:7f:
86:36:78:9a:45:77:ef:10:5c:ba:8b:f6:8d:c5:66:
ac:12:a8:88:e4:cb:ce:26:e1:8a:f5:28:61:da:84:
ac:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:21:3E:5F:F7:07:C4:FA:4F:2D:60:5B:4B:F1:34:4C:BD:FA:A6:F0
X509v3 Authority Key Identifier:
keyid:EE:E5:73:08:41:00:B4:1D:7C:C1:E4:47:29:5B:A7:1D:01:9D:51:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7uVzCEEAtB18weRHKVunHQGdUZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/fSE-X_cHxPpPLWBbS_E0TL36pvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/7uVzCEEAtB18weRHKVunHQGdUZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.160.0/20
37.9.224.0/20
46.16.168.0/21
85.94.192.0/19
95.174.0.0/19
185.24.104.0/22
185.47.108.0/22
185.220.244.0/22
185.222.68.0/22
212.25.160.0/19
212.35.192.0/19
212.66.224.0/19
213.171.160.0/19
217.64.192.0/20
217.168.224.0/20
217.194.0.0/20
IPv6:
2001:4b78::/29
2a04:2700::/29
2a05:b6c0::/29
2a0b:fd40::/29
2a0d:b000::/29
Signature Algorithm: sha256WithRSAEncryption
23:96:aa:27:fe:e4:17:73:76:5d:91:b3:99:23:b6:aa:9e:de:
db:d2:28:9c:84:e7:c8:02:b5:33:20:07:98:33:ed:b1:16:0f:
d6:4f:69:26:fa:5f:f2:10:a0:1d:df:fd:83:08:d6:53:b0:a7:
92:d1:a0:43:bf:8f:a2:3c:a0:6c:cb:c3:bf:ff:78:fc:00:52:
6f:54:ae:fd:3d:51:16:ca:cc:91:e4:cb:8e:28:87:b2:22:1e:
16:2b:d3:b9:12:f3:4a:75:fb:5d:bc:a6:c3:75:74:7f:b4:04:
ba:b3:0e:50:0a:2a:69:22:06:78:ef:0e:c7:a5:88:9b:64:33:
d3:c5:43:2d:96:00:11:42:b5:6e:45:ab:1d:58:b0:7f:bf:19:
5b:a6:9e:ef:38:e9:62:2a:f5:51:c4:9a:1c:58:e4:52:d1:af:
ac:68:50:2e:95:74:78:6b:9e:1a:fa:80:fe:95:55:76:1c:1d:
19:8f:6d:60:0e:56:ac:2f:66:8e:e5:7c:17:af:dd:10:65:e1:
26:c7:08:01:4c:db:96:c0:ad:e1:81:f5:00:fb:97:0f:5d:81:
b7:f4:21:6b:0b:31:92:5c:6c:32:47:47:5c:f1:5f:15:f9:0c:
72:4a:01:87:28:be:42:6f:b6:a6:b8:65:61:23:e5:2a:fe:63:
aa:1f:0e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:49 2024 by rpki-client on console-fra.rpki-client.org