Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/pe0fdSZGun4mrkMNjFp3YdzQoPk.roa
File: pe0fdSZGun4mrkMNjFp3YdzQoPk.roa (raw, json)
Hash identifier: tfqFdKIF1sIGWbH5KW8yAI2O8FDVRH2NEkd+GGLnIis=
Subject key identifier: A5:ED:1F:75:26:46:BA:7E:26:AE:43:0D:8C:5A:77:61:DC:D0:A0:F9
Certificate issuer: /CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Certificate serial: 021FEDED
Authority key identifier: A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/pe0fdSZGun4mrkMNjFp3YdzQoPk.roa
Signing time: Sat 01 Jan 2022 03:59:31 +0000
ROA not before: Sat 01 Jan 2022 03:59:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 147.189.175.0/24 maxlen: 24
147.189.174.0/24 maxlen: 24
147.189.173.0/24 maxlen: 24
147.189.171.0/24 maxlen: 24
147.189.172.0/24 maxlen: 24
147.189.168.0/24 maxlen: 24
147.189.170.0/24 maxlen: 24
147.189.169.0/24 maxlen: 24
193.23.127.0/24 maxlen: 24
193.23.126.0/24 maxlen: 24
194.156.88.0/24 maxlen: 24
194.156.90.0/24 maxlen: 24
194.156.91.0/24 maxlen: 24
88.214.58.0/24 maxlen: 24
88.214.57.0/24 maxlen: 24
88.214.56.0/24 maxlen: 24
5.249.161.0/24 maxlen: 24
5.249.160.0/24 maxlen: 24
5.249.163.0/24 maxlen: 24
5.249.162.0/24 maxlen: 24
5.249.164.0/24 maxlen: 24
92.42.44.0/24 maxlen: 24
193.23.160.0/24 maxlen: 24
193.23.161.0/24 maxlen: 24
92.42.46.0/24 maxlen: 24
92.42.45.0/24 maxlen: 24
92.42.47.0/24 maxlen: 24
193.203.238.0/24 maxlen: 24
185.239.239.0/24 maxlen: 24
185.239.236.0/24 maxlen: 24
185.239.238.0/24 maxlen: 24
185.239.237.0/24 maxlen: 24
185.223.28.0/24 maxlen: 24
185.223.30.0/24 maxlen: 24
185.223.29.0/24 maxlen: 24
185.223.31.0/24 maxlen: 24
45.146.253.0/24 maxlen: 24
45.146.252.0/24 maxlen: 24
45.146.254.0/24 maxlen: 24
45.146.255.0/24 maxlen: 24
185.249.197.0/24 maxlen: 24
185.249.199.0/24 maxlen: 24
185.249.198.0/24 maxlen: 24
2a0c:3580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35646957 (0x21feded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Validity
Not Before: Jan 1 03:59:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5ed1f752646ba7e26ae430d8c5a7761dcd0a0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:7b:dd:ac:68:98:d4:aa:88:e1:35:0c:25:
5a:22:29:21:bd:c1:8a:30:98:08:b5:4c:73:39:d9:
d3:f8:ca:ca:ab:7f:73:95:a2:3f:70:ef:64:95:7e:
57:36:0f:91:33:57:90:ec:c2:f3:18:bf:b2:fa:84:
0c:e2:89:6f:4b:0a:a4:35:33:25:29:ab:36:ce:98:
5a:de:0e:f1:e6:58:14:c9:fc:ab:44:26:22:09:74:
f0:85:98:aa:c5:ae:f6:9a:02:61:b0:60:f8:f2:09:
e8:06:e9:45:b1:92:d2:5d:06:39:c9:6c:cd:ec:06:
87:8f:51:b8:f4:ac:2e:27:0e:6f:79:49:18:12:06:
01:05:c9:58:7f:e7:6d:94:6b:1a:37:86:a4:0b:89:
63:90:16:eb:5a:51:6d:11:28:7a:54:80:43:44:fc:
a3:d6:89:68:10:e4:44:9d:fb:a9:8c:88:86:c9:42:
d9:2a:10:40:45:39:91:49:99:ec:19:61:5e:ca:ad:
7c:92:5e:01:80:b8:3a:d7:fc:8a:2f:e5:ad:b5:d9:
25:d8:52:2a:45:18:1e:f7:5a:28:6a:a9:51:44:12:
cf:27:2a:8f:8a:be:2c:27:a6:3f:7c:2d:5b:64:0d:
41:0d:db:8f:ca:d6:b4:1c:0a:b2:de:df:aa:d1:56:
69:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:ED:1F:75:26:46:BA:7E:26:AE:43:0D:8C:5A:77:61:DC:D0:A0:F9
X509v3 Authority Key Identifier:
keyid:A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/pe0fdSZGun4mrkMNjFp3YdzQoPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.160.0-5.249.164.255
45.146.252.0/22
88.214.56.0-88.214.58.255
92.42.44.0/22
147.189.168.0/21
185.223.28.0/22
185.239.236.0/22
185.249.197.0-185.249.199.255
193.23.126.0/23
193.23.160.0/23
193.203.238.0/24
194.156.88.0/24
194.156.90.0/23
IPv6:
2a0c:3580::/29
Signature Algorithm: sha256WithRSAEncryption
91:16:c8:5b:03:69:2b:76:11:6a:cf:cb:97:96:20:15:c0:b2:
fb:e6:ad:ee:a1:d8:6d:9a:4f:77:96:42:b3:8e:b2:14:56:8c:
9d:4a:b0:f5:b5:62:85:ba:8b:d5:b9:dc:39:35:f2:0c:83:b9:
fe:44:ee:3b:b5:b6:63:d5:31:4d:16:97:22:ca:0b:e1:9c:d5:
b2:48:af:fa:e8:1a:d3:e2:25:81:56:a0:74:58:fe:03:0b:59:
17:aa:be:32:75:68:b1:59:19:c0:26:26:29:6e:a2:f7:64:48:
ef:13:54:90:3c:0d:aa:d6:de:c7:ca:06:bf:b1:35:9d:1b:c3:
cc:2f:1b:15:35:8a:dc:ff:5b:c6:39:db:2b:11:d6:fb:de:00:
b4:e3:c7:a7:da:8c:cf:f9:d6:12:95:a0:e5:5b:50:92:d1:48:
c3:cc:94:c0:0d:20:62:dd:25:7b:6a:c6:a4:4e:d3:28:bf:90:
56:38:81:fd:fa:2f:34:4e:8c:3f:1b:8c:7e:2f:35:17:ab:01:
0c:23:35:6e:69:1a:8b:c4:82:7b:eb:93:32:39:30:98:61:08:
00:9f:f6:41:77:05:4e:e1:b6:66:7b:10:da:27:4d:25:90:b8:
6f:fa:73:47:8c:4e:19:a5:cf:b6:2d:c7:39:59:18:d8:10:65:
c4:a9:e0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:27 2024 by rpki-client on console-ams.rpki-client.org