Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/1-3sharC_4sv58nn83a09DJWNHO8.roa
File: 1-3sharC_4sv58nn83a09DJWNHO8.roa (raw, json)
Hash identifier: G8RVwKMCIieAiQx1vp/o4U+/hUSplfiWjk4AtE7Ayvo=
Subject key identifier: FB:7B:21:6A:B0:BF:E2:CB:F9:F2:79:FC:DD:AD:3D:0C:95:8D:1C:EF
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 0BE8B532
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/1-3sharC_4sv58nn83a09DJWNHO8.roa
Signing time: Sat 01 Jan 2022 07:58:40 +0000
ROA not before: Sat 01 Jan 2022 07:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202468
IP address blocks: 37.152.176.0/20 maxlen: 24
37.152.184.0/24 maxlen: 24
185.206.92.0/22 maxlen: 22
185.231.180.0/22 maxlen: 22
185.228.236.0/22 maxlen: 22
185.97.116.0/22 maxlen: 22
188.121.120.0/21 maxlen: 24
185.239.104.0/24 maxlen: 24
185.239.105.0/24 maxlen: 24
185.220.224.0/24 maxlen: 24
185.220.224.0/22 maxlen: 22
185.220.225.0/24 maxlen: 24
185.220.226.0/24 maxlen: 24
185.239.106.0/23 maxlen: 23
185.220.227.0/24 maxlen: 24
193.176.240.0/22 maxlen: 24
193.176.242.0/23 maxlen: 23
188.121.96.0/19 maxlen: 24
94.101.176.0/20 maxlen: 24
94.101.184.0/21 maxlen: 24
185.143.232.0/22 maxlen: 24
185.226.116.0/22 maxlen: 22
2a0c:a7c0:1::/48 maxlen: 48
2a0c:a7c0:3::/48 maxlen: 48
2a0c:a7c0::/48 maxlen: 48
2a07:3900::/29 maxlen: 29
2a0c:a7c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199800114 (0xbe8b532)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Jan 1 07:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb7b216ab0bfe2cbf9f279fcddad3d0c958d1cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:df:60:6d:bd:61:5c:d1:62:4d:c7:24:93:47:
d1:0a:bb:a6:3b:21:90:81:21:7b:f4:dd:b5:d0:60:
67:f1:90:68:e3:e8:c4:46:25:13:02:87:65:2e:a5:
4e:ee:ca:7e:bb:5a:39:f3:d9:70:3f:b9:e5:f8:c6:
84:f4:2b:15:36:f6:91:3f:a4:ea:c6:18:ed:bc:93:
a3:0c:4c:4d:fe:66:f3:ea:a1:96:cc:ae:6a:fc:03:
9d:ca:fc:be:73:9e:06:0e:e9:bd:02:76:ce:70:38:
0f:5f:bc:cf:4f:6f:03:d1:40:aa:d6:f7:58:9d:2c:
a7:a7:d3:41:55:65:54:39:04:14:2e:92:33:00:71:
19:7f:07:c3:70:44:a5:8e:94:8e:7e:71:37:47:ce:
92:de:f3:9d:91:38:ca:11:68:98:30:53:10:87:4c:
56:e3:1d:2b:4d:56:fd:64:12:43:24:ae:97:20:1f:
bd:4a:31:48:3f:84:f8:0c:de:45:d5:db:e1:61:5d:
b6:a7:8d:7b:33:f4:5d:88:37:f6:b1:e5:9c:07:a4:
ea:87:d5:e6:a2:bb:7c:b5:63:19:d2:ec:51:e6:7c:
02:b0:d0:94:17:0c:09:9b:85:69:c1:2f:d6:55:f1:
bc:ea:21:5a:a7:d9:a7:ab:04:bd:f3:b8:da:17:37:
a0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7B:21:6A:B0:BF:E2:CB:F9:F2:79:FC:DD:AD:3D:0C:95:8D:1C:EF
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/1-3sharC_4sv58nn83a09DJWNHO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.176.0/20
94.101.176.0/20
185.97.116.0/22
185.143.232.0/22
185.206.92.0/22
185.220.224.0/22
185.226.116.0/22
185.228.236.0/22
185.231.180.0/22
185.239.104.0/22
188.121.96.0/19
193.176.240.0/22
IPv6:
2a07:3900::/29
2a0c:a7c0::/46
Signature Algorithm: sha256WithRSAEncryption
a4:b4:a3:42:68:9d:98:56:31:35:b4:92:66:4b:89:66:1b:2a:
33:56:de:92:3e:62:0a:ba:32:37:98:15:76:15:c5:19:e8:7c:
43:39:1a:41:59:f5:3c:3e:5b:6a:81:a1:ec:61:00:72:eb:57:
d5:ce:43:8a:5e:24:ab:8e:2b:38:a4:20:1b:d1:f4:5d:d5:3f:
a8:dd:5b:5e:d8:4a:57:63:70:25:44:61:bd:bb:96:bd:52:af:
d3:2d:0e:fc:11:18:0e:6b:c9:bb:1d:ae:b3:67:e5:d4:52:d1:
92:95:3c:f2:90:ae:03:03:f8:da:b7:51:15:da:d1:9c:58:ca:
2a:b7:85:bb:70:7b:b9:4c:fe:09:66:4c:00:d6:fc:c9:7f:bf:
8e:06:07:e7:7d:8c:64:c4:dc:f2:7f:66:e8:8b:95:3f:c8:c9:
d7:3e:89:4c:1e:71:b5:b6:e8:5a:dd:61:a6:09:3c:7d:ab:cf:
c9:f4:0f:6c:6f:90:ff:fe:b2:a7:e4:c3:36:dc:27:96:38:73:
73:1a:a8:d5:a7:18:5d:4f:b2:af:51:36:77:b9:25:4e:3a:9f:
78:77:91:f0:74:4c:19:4e:6a:d6:67:62:9c:57:30:f7:0a:e4:
4c:d6:7d:9f:cb:69:a8:ac:bb:7a:f1:18:e3:e5:5f:e4:af:84:
9d:2e:06:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:25 2023 by rpki-client on console-ams.rpki-client.org