Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ET26KcVylGkfGvrKUPi94QqLMnc.roa
File: ET26KcVylGkfGvrKUPi94QqLMnc.roa (raw, json)
Hash identifier: iibK4N4NCR2WOg/8tVHMYx92PE0VtZ+i3ABD6cE2KbE=
Subject key identifier: 11:3D:BA:29:C5:72:94:69:1F:1A:FA:CA:50:F8:BD:E1:0A:8B:32:77
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0187A2BF59664BECA72B28E8BCD1886F4669
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ET26KcVylGkfGvrKUPi94QqLMnc.roa
Signing time: Fri 21 Apr 2023 07:37:41 +0000
ROA not before: Fri 21 Apr 2023 07:37:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210329
IP address blocks: 81.28.4.0/24 maxlen: 24
83.229.68.0/24 maxlen: 24
83.229.69.0/24 maxlen: 24
83.229.75.0/24 maxlen: 24
81.28.5.0/24 maxlen: 24
194.146.24.0/24 maxlen: 24
103.241.64.0/24 maxlen: 24
63.250.58.0/24 maxlen: 24
195.238.123.0/24 maxlen: 24
45.91.170.0/24 maxlen: 24
185.127.17.0/24 maxlen: 24
185.127.16.0/24 maxlen: 24
185.237.98.0/24 maxlen: 24
185.127.18.0/24 maxlen: 24
185.127.19.0/24 maxlen: 24
91.223.236.0/24 maxlen: 24
185.237.99.0/24 maxlen: 24
185.237.12.0/24 maxlen: 24
185.237.13.0/24 maxlen: 24
194.146.25.0/24 maxlen: 24
103.241.65.0/24 maxlen: 24
212.86.104.0/24 maxlen: 24
212.86.105.0/24 maxlen: 24
2a06:c5c0:600::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a2:bf:59:66:4b:ec:a7:2b:28:e8:bc:d1:88:6f:46:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Apr 21 07:37:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=113dba29c57294691f1afaca50f8bde10a8b3277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:dc:27:92:f2:17:f1:ab:d6:07:07:5a:d2:bd:
96:1e:4a:02:9c:99:bb:1b:b2:30:8c:fb:8b:45:13:
ac:b8:3e:4f:ce:5e:ee:6d:7a:eb:ef:c4:d4:e7:6a:
6e:aa:3d:f4:28:c4:28:9a:79:98:5a:e6:97:32:5e:
72:34:c8:99:9f:e6:11:77:ec:94:34:26:87:c4:3e:
c5:ae:e8:62:ab:9c:bc:a4:06:b5:7e:ce:7e:3a:e0:
25:be:a1:88:9e:f4:09:ca:ba:a1:89:a6:bb:18:85:
a2:d7:eb:fe:b3:cd:b2:0e:0b:57:ac:56:4d:57:9e:
fe:3f:18:05:db:8c:4b:c7:ae:eb:8b:fa:b7:59:90:
15:b4:c6:99:0a:2e:c2:e5:2c:6f:ca:b2:ec:b8:f8:
72:dc:d8:f6:c9:4b:48:00:69:43:b1:cb:e0:48:c8:
88:21:64:82:d2:90:94:1b:85:fd:ad:47:52:2e:5f:
42:bf:e1:8d:e5:7d:81:4d:15:40:d6:26:16:8c:c4:
d3:7e:c0:47:a6:f0:37:59:8f:f9:9d:0e:00:61:6f:
9f:e0:ae:28:a0:f1:29:91:88:09:f6:0e:00:3c:a6:
e5:c8:a3:cc:f6:04:28:cc:c3:b7:79:c4:f1:07:14:
02:a0:cc:00:0c:b4:84:d3:b2:6f:bd:b4:28:f8:6f:
55:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3D:BA:29:C5:72:94:69:1F:1A:FA:CA:50:F8:BD:E1:0A:8B:32:77
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ET26KcVylGkfGvrKUPi94QqLMnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.170.0/24
63.250.58.0/24
81.28.4.0/23
83.229.68.0/23
83.229.75.0/24
91.223.236.0/24
103.241.64.0/23
185.127.16.0/22
185.237.12.0/23
185.237.98.0/23
194.146.24.0/23
195.238.123.0/24
212.86.104.0/23
IPv6:
2a06:c5c0:600::/48
Signature Algorithm: sha256WithRSAEncryption
41:fb:80:03:17:71:28:1b:a3:9f:af:08:ca:21:4e:ef:84:f4:
6f:5f:85:d3:af:07:57:c6:e3:b7:2b:01:90:a5:10:74:8b:77:
46:01:87:b2:75:4d:59:33:df:07:3a:27:7e:8c:cb:b6:02:07:
c1:63:a7:9c:92:6d:80:27:f6:08:e9:52:fb:4c:95:57:25:a1:
05:51:03:d6:7c:db:2e:d1:48:be:c7:77:29:4d:31:c7:ea:30:
8d:9c:be:b1:34:b0:e2:e9:f8:61:02:60:8e:f9:1e:f4:9f:30:
2a:36:f1:a5:5a:d6:c9:2e:5e:49:61:63:46:6c:af:c7:40:af:
f7:1a:e6:be:07:fd:45:78:f1:98:ad:4c:ea:89:f2:04:75:3e:
d1:a7:2b:3b:68:05:68:14:51:e6:76:0d:54:c7:e7:34:e2:b1:
a4:59:f6:01:e3:f3:8f:8a:6d:1f:e5:5a:59:b1:79:0e:b1:aa:
8f:8c:52:41:3c:d4:84:4e:fa:a6:09:b8:12:f0:c0:74:6d:25:
d5:8a:0a:23:68:f2:06:72:33:35:cf:7e:43:34:b7:86:36:e5:
d7:16:d0:ae:64:26:96:c2:e9:a2:5f:fa:38:40:b4:0e:6e:ea:
bb:63:30:1f:0d:87:c8:8e:d6:bf:c4:96:b9:48:ef:c4:8c:6b:
d4:90:64:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:01 2025 by rpki-client