Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/XIIX0i_Uaab_H3Ro7qqcaazCJiM.roa
File: XIIX0i_Uaab_H3Ro7qqcaazCJiM.roa (raw, json)
Hash identifier: X0+6llMAP6tlMQtrZH50FO6zDQy3aOp7fS80DR7Lsv0=
Subject key identifier: 5C:82:17:D2:2F:D4:69:A6:FF:1F:74:68:EE:AA:9C:69:AC:C2:26:23
Certificate issuer: /CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Certificate serial: 1B942AFA
Authority key identifier: 75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/XIIX0i_Uaab_H3Ro7qqcaazCJiM.roa
Signing time: Tue 19 Apr 2022 12:15:46 +0000
ROA not before: Tue 19 Apr 2022 12:15:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12956
IP address blocks: 80.76.8.0/21 maxlen: 24
193.36.134.0/23 maxlen: 24
213.140.32.0/19 maxlen: 24
5.255.144.0/21 maxlen: 24
185.153.168.0/22 maxlen: 24
84.16.0.0/19 maxlen: 24
94.142.96.0/19 maxlen: 24
188.214.148.0/23 maxlen: 24
89.32.176.0/21 maxlen: 21
103.244.236.0/22 maxlen: 24
176.52.248.0/21 maxlen: 24
185.43.180.0/22 maxlen: 24
81.173.104.0/21 maxlen: 24
5.53.0.0/21 maxlen: 24
185.210.28.0/22 maxlen: 24
45.135.52.0/22 maxlen: 24
185.190.8.0/22 maxlen: 24
2001:1498::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 462695162 (0x1b942afa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Validity
Not Before: Apr 19 12:15:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c8217d22fd469a6ff1f7468eeaa9c69acc22623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:80:23:9c:f3:29:b3:ba:99:4c:4e:0a:ff:dd:
54:0d:38:6d:7f:c4:4c:0e:50:28:84:42:cb:fa:15:
0d:12:d7:cd:b5:26:6f:4e:b4:a4:f3:78:b9:aa:de:
c1:e8:28:2b:ce:1e:4b:d2:8e:6e:93:e2:45:24:c0:
89:15:b9:c8:6a:00:f4:a2:cd:ec:b3:65:bb:ae:94:
97:33:e0:17:bb:e6:d6:0a:1d:77:34:02:c6:89:2f:
16:25:97:3a:e0:04:ad:1e:d5:75:86:86:75:e1:3d:
97:0e:ec:68:0f:76:4b:2f:a2:ca:3e:37:94:24:f8:
a5:b6:71:f4:ed:9b:65:98:72:7a:83:63:81:4f:01:
bb:51:03:79:c5:9a:99:a3:9b:44:0c:d1:e3:0d:e7:
31:14:9b:f0:23:21:f1:da:0a:b7:a0:b6:20:e5:ae:
9f:de:1e:1a:f0:48:3f:c2:ea:9e:c1:6f:55:89:f6:
b5:6b:35:7c:55:42:9b:15:a1:d9:db:89:a1:a7:12:
3e:19:38:ed:32:c5:2e:7b:88:b6:9c:9f:4a:cb:b2:
73:e6:f2:72:b3:a9:c9:c4:dc:16:90:18:d2:b9:9c:
c1:91:9b:af:9e:80:37:74:28:cb:19:3d:49:d4:73:
7e:34:f7:7d:ed:7d:04:9b:0d:01:cc:18:19:85:81:
61:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:82:17:D2:2F:D4:69:A6:FF:1F:74:68:EE:AA:9C:69:AC:C2:26:23
X509v3 Authority Key Identifier:
keyid:75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/XIIX0i_Uaab_H3Ro7qqcaazCJiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/deBbwhsqbxAzcR_8pkkcbDDOWko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.0.0/21
5.255.144.0/21
45.135.52.0/22
80.76.8.0/21
81.173.104.0/21
84.16.0.0/19
89.32.176.0/21
94.142.96.0/19
103.244.236.0/22
176.52.248.0/21
185.43.180.0/22
185.153.168.0/22
185.190.8.0/22
185.210.28.0/22
188.214.148.0/23
193.36.134.0/23
213.140.32.0/19
IPv6:
2001:1498::/32
Signature Algorithm: sha256WithRSAEncryption
84:92:cb:44:fe:f6:1c:32:b0:35:17:70:c0:76:78:f0:bd:a4:
44:d1:43:d7:5e:31:2d:5b:97:02:aa:6e:48:79:57:b4:b3:93:
6b:00:2c:3b:4f:c7:e6:cb:e3:63:90:0f:22:ad:06:e7:bc:a5:
70:03:3c:82:ee:6f:d3:ab:23:d2:02:ab:3f:c4:12:68:c4:94:
30:87:28:06:5b:79:fb:53:72:d5:49:fb:ee:eb:ea:04:3c:64:
b4:b4:7e:4c:9f:e5:46:0e:63:df:3d:0e:d2:05:e9:1a:f5:84:
ba:d7:b3:2b:b4:77:7c:b1:98:20:3d:aa:50:11:82:d3:be:d8:
5a:5c:16:f0:00:68:40:34:98:25:5c:b1:2b:fc:62:64:0b:20:
26:39:13:c0:a7:7f:54:9a:24:7c:19:c0:a7:20:52:32:13:e0:
47:5a:32:82:17:24:30:6d:0c:28:6a:48:a4:6f:ba:93:13:94:
57:f5:8a:8a:49:c3:6a:51:89:ed:1c:a2:c9:15:2f:38:b8:c2:
2b:fa:0c:71:c5:7f:8b:1a:e7:26:0a:9f:96:d2:f2:d1:13:02:
63:2a:ec:79:b4:9d:ad:41:fd:6a:48:a0:70:69:38:09:52:29:
84:35:ab:88:d3:a8:83:05:97:60:f3:11:85:22:01:29:7a:18:
91:29:e3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:05 2024 by rpki-client on console-fra.rpki-client.org