Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/mQMDIFa7iNvzLJM85YfMSwZbWKM.roa
File: mQMDIFa7iNvzLJM85YfMSwZbWKM.roa (raw, json)
Hash identifier: UqQwQE1yuO5Bx6h3dlijsw1LDzGxopDgO7t/6Dc74Bg=
Subject key identifier: 99:03:03:20:56:BB:88:DB:F3:2C:93:3C:E5:87:CC:4B:06:5B:58:A3
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 0C82EEF4
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/mQMDIFa7iNvzLJM85YfMSwZbWKM.roa
Signing time: Mon 07 Mar 2022 14:23:00 +0000
ROA not before: Mon 07 Mar 2022 14:23:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202468
IP address blocks: 37.152.176.0/20 maxlen: 24
37.152.184.0/24 maxlen: 24
185.206.92.0/22 maxlen: 22
185.231.180.0/22 maxlen: 22
185.228.236.0/24 maxlen: 24
185.228.236.0/22 maxlen: 22
185.228.237.0/24 maxlen: 24
185.97.116.0/22 maxlen: 22
188.121.120.0/21 maxlen: 24
185.239.104.0/24 maxlen: 24
185.239.105.0/24 maxlen: 24
185.220.224.0/24 maxlen: 24
185.220.224.0/22 maxlen: 22
185.220.225.0/24 maxlen: 24
185.220.226.0/24 maxlen: 24
185.239.106.0/23 maxlen: 23
185.220.227.0/24 maxlen: 24
193.176.240.0/22 maxlen: 24
193.176.242.0/23 maxlen: 23
188.121.96.0/19 maxlen: 24
94.101.176.0/20 maxlen: 24
94.101.184.0/21 maxlen: 24
94.101.182.0/24 maxlen: 24
185.143.232.0/22 maxlen: 24
185.226.116.0/22 maxlen: 22
2a0c:a7c0:1::/48 maxlen: 48
2a0c:a7c0:3::/48 maxlen: 48
2a0c:a7c0::/48 maxlen: 48
2a07:3900::/29 maxlen: 29
2a0c:a7c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209907444 (0xc82eef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Mar 7 14:23:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9903032056bb88dbf32c933ce587cc4b065b58a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:41:42:3b:cf:2a:0a:9c:4f:0a:5b:55:2a:9a:
ca:cd:a3:5e:2f:f0:b8:35:b5:4d:28:60:84:16:ee:
d2:b2:37:27:a2:2e:02:bb:ad:9a:08:b7:6b:81:bc:
8d:7c:49:2d:e9:e6:f4:94:bd:c2:f6:a7:85:68:95:
4f:ce:2e:a1:5c:c6:90:d2:3d:d0:f0:44:df:0f:d5:
1f:5b:a5:ce:fb:4a:96:3b:a3:06:93:e6:9b:b2:28:
f2:3a:ff:64:ae:6a:71:62:77:81:ce:99:37:14:59:
6f:b9:46:9d:99:df:bf:50:98:04:4c:75:25:ff:b9:
66:06:b7:99:19:34:7f:d2:d7:b8:61:83:44:28:1a:
d3:9b:1f:b4:c6:ca:a3:90:ef:d9:30:9e:ab:15:51:
7c:1c:2a:eb:46:dc:95:77:cf:5d:92:f2:d7:87:90:
dc:32:ed:a8:1b:ee:2c:3a:17:65:fb:0b:d6:3a:a1:
1d:e5:2d:a3:19:0a:ed:51:74:1b:e8:d3:6f:40:70:
c5:f2:d4:f1:cf:00:95:d6:13:e9:a5:18:47:f7:3b:
b6:50:a4:2f:6e:09:09:7f:55:6c:78:9f:18:b6:b1:
83:dc:40:ba:bc:92:be:8f:70:68:97:46:fd:ad:fa:
bd:83:39:47:55:4d:47:18:eb:c9:24:17:22:8d:15:
9d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:03:03:20:56:BB:88:DB:F3:2C:93:3C:E5:87:CC:4B:06:5B:58:A3
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/mQMDIFa7iNvzLJM85YfMSwZbWKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.176.0/20
94.101.176.0/20
185.97.116.0/22
185.143.232.0/22
185.206.92.0/22
185.220.224.0/22
185.226.116.0/22
185.228.236.0/22
185.231.180.0/22
185.239.104.0/22
188.121.96.0/19
193.176.240.0/22
IPv6:
2a07:3900::/29
2a0c:a7c0::/46
Signature Algorithm: sha256WithRSAEncryption
87:75:c9:05:da:e9:5d:51:7a:c4:a1:c7:23:85:6f:f9:67:b9:
f6:73:bf:50:c7:69:67:65:fb:b1:cc:06:ff:d7:80:30:7a:25:
cc:6d:44:8c:e1:12:34:15:20:de:93:a5:e7:6a:c3:d8:fa:cd:
89:77:65:19:3b:1f:97:a1:9c:6f:1f:e3:b5:18:a5:69:87:ba:
81:ea:fb:ba:e9:35:8a:b4:c1:1f:98:a7:81:7c:58:a2:86:0a:
a4:36:d7:67:ca:29:18:18:43:b0:64:39:8b:40:a0:54:21:48:
c2:96:23:1e:a3:db:39:52:12:fb:f2:30:4c:59:88:36:ab:6b:
6a:f2:55:fa:5a:3e:c2:99:ff:33:93:58:12:ac:43:4b:e1:0b:
6d:9d:49:f7:c6:63:d9:88:3f:94:3f:11:d8:b3:04:9c:02:46:
44:0f:bd:36:21:f0:fc:8a:59:58:11:d0:26:5a:2f:05:79:ca:
e2:9b:6b:27:4f:e9:47:d7:3d:63:16:8c:3a:12:19:cc:e4:d5:
5e:b2:83:a1:6b:da:5b:2f:21:60:02:fc:40:e0:ff:21:59:37:
c3:a8:af:2c:38:3e:0d:f5:aa:4b:3a:34:1e:99:86:5e:48:b6:
b4:13:9d:c9:5a:f1:b7:ec:47:4c:15:b6:4a:ae:8a:bb:31:1b:
aa:5c:d5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:32 2023 by rpki-client on console-fra.rpki-client.org