Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/oq52dHarxA9yZkCBTr-M2p-_jGg.roa
File: oq52dHarxA9yZkCBTr-M2p-_jGg.roa (raw, json)
Hash identifier: 4soZtBi8zoOOveZbg2FaIFkm0iFqyGOkueyHoPNJVwU=
Subject key identifier: A2:AE:76:74:76:AB:C4:0F:72:66:40:81:4E:BF:8C:DA:9F:BF:8C:68
Certificate issuer: /CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Certificate serial: 0BEA1B45
Authority key identifier: F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/oq52dHarxA9yZkCBTr-M2p-_jGg.roa
Signing time: Sat 01 Jan 2022 07:58:40 +0000
ROA not before: Sat 01 Jan 2022 07:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208006
IP address blocks: 37.152.177.0/24 maxlen: 24
37.152.179.0/24 maxlen: 24
37.152.178.0/24 maxlen: 24
37.152.176.0/24 maxlen: 24
37.152.186.0/24 maxlen: 24
37.152.185.0/24 maxlen: 24
37.152.181.0/24 maxlen: 24
37.152.180.0/24 maxlen: 24
37.152.183.0/24 maxlen: 24
37.152.182.0/24 maxlen: 24
37.152.191.0/24 maxlen: 24
37.152.190.0/24 maxlen: 24
37.152.188.0/24 maxlen: 24
37.152.187.0/24 maxlen: 24
37.152.189.0/24 maxlen: 24
193.176.240.0/24 maxlen: 24
193.176.243.0/24 maxlen: 24
193.176.242.0/24 maxlen: 24
193.176.241.0/24 maxlen: 24
185.143.232.0/24 maxlen: 24
185.143.235.0/24 maxlen: 24
185.97.116.0/22 maxlen: 22
2a0c:a7c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199891781 (0xbea1b45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5c371f3a34abf1957d1895df8063f4d6207ec02
Validity
Not Before: Jan 1 07:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2ae767476abc40f726640814ebf8cda9fbf8c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:09:71:ac:b4:0f:5e:d6:df:ee:55:cf:b2:e0:
67:be:3d:1d:8c:91:75:ff:71:d7:ce:5f:31:3f:d5:
dc:b8:3a:82:bf:b4:43:54:38:18:0b:9a:fe:03:0f:
cf:d6:b7:a8:8e:fa:8a:58:76:a1:e4:bb:59:75:87:
82:02:16:50:7f:90:2d:7a:0e:e6:77:27:4a:92:25:
3b:8f:ae:f8:ac:f7:1c:81:2c:84:fc:77:ef:33:3a:
b5:93:60:30:c1:fa:aa:d2:49:ba:e1:83:f9:5d:f5:
0a:b8:06:bd:8a:f1:3b:a3:e3:49:46:83:79:2d:49:
6d:ba:ab:47:ff:43:2f:7a:e6:d0:d0:27:3f:fe:16:
5c:3c:91:50:a6:9d:9a:05:9c:c9:29:7f:15:42:49:
ff:3d:74:65:72:b9:01:66:0b:bf:b6:1b:ec:f7:9c:
2b:f6:11:38:2c:ad:8e:04:61:2a:48:08:77:63:69:
76:ab:e8:17:bc:61:ee:93:55:41:cb:a8:38:3b:03:
1d:51:5a:e3:2b:92:16:a7:9a:bf:dc:d1:62:3d:18:
62:32:76:56:c0:8c:9f:93:fe:f1:9c:37:01:c6:ed:
63:a4:21:19:16:b0:70:58:45:27:ea:c3:88:89:3f:
10:5c:f6:60:00:55:57:cf:f8:71:ae:bf:26:ca:a9:
47:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AE:76:74:76:AB:C4:0F:72:66:40:81:4E:BF:8C:DA:9F:BF:8C:68
X509v3 Authority Key Identifier:
keyid:F5:C3:71:F3:A3:4A:BF:19:57:D1:89:5D:F8:06:3F:4D:62:07:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9cNx86NKvxlX0Yld-AY_TWIH7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/oq52dHarxA9yZkCBTr-M2p-_jGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5b0cd9-e279-46aa-81da-1bb17a8b26fe/1/9cNx86NKvxlX0Yld-AY_TWIH7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.176.0/21
37.152.185.0-37.152.191.255
185.97.116.0/22
185.143.232.0/24
185.143.235.0/24
193.176.240.0/22
IPv6:
2a0c:a7c0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:d9:d9:81:8d:da:a2:71:10:2e:d2:f8:01:14:32:17:6b:40:
a2:1e:a6:11:68:d1:ed:dd:4a:54:c0:7e:49:38:4c:57:c0:60:
76:1d:3f:dd:a6:6b:2b:ba:7b:45:59:32:3c:fc:7c:c0:3e:64:
94:4d:03:8f:65:6d:0a:ca:c4:da:b8:be:b3:f4:b0:61:5f:4c:
6a:63:46:7c:4d:27:8d:cb:52:c4:8c:48:b7:09:85:8f:de:50:
d1:cd:08:86:f1:7b:3c:96:36:e7:a1:fc:5b:54:41:33:6e:8e:
88:d4:0d:fe:f7:5c:0a:5b:4a:66:02:5b:d7:7e:f8:45:28:71:
50:a7:64:33:8a:cd:4d:b4:70:4c:40:6e:92:bd:cb:f4:ee:8b:
11:bf:81:c3:7c:2d:03:53:1c:7f:6d:3e:f9:68:89:9c:0e:0c:
58:cc:21:6e:fd:a1:c1:22:06:87:8f:99:86:6c:73:29:6a:b4:
a6:03:26:e9:f9:a1:d3:28:20:1a:6c:d8:eb:93:1c:08:da:ab:
91:77:77:5b:7e:1f:b9:22:58:ca:0d:1e:6c:db:90:4b:e8:b8:
83:9f:15:e2:2d:85:76:14:73:4e:0c:8b:95:03:42:b9:a4:40:
ea:70:c6:d1:f8:fc:f8:5d:a1:50:2d:a2:20:b0:ec:21:76:4c:
b0:66:14:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:32 2023 by rpki-client on console-fra.rpki-client.org