Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/77msgWnqT_FcbILIftlVvxJIv90.roa
File: 77msgWnqT_FcbILIftlVvxJIv90.roa (raw, json)
Hash identifier: akJPBx/HCbNcvXebVGfdkRnepNtjmR/n2XDrRuQOAOw=
Subject key identifier: EF:B9:AC:81:69:EA:4F:F1:5C:6C:82:C8:7E:D9:55:BF:12:48:BF:DD
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0183FA40C4C0835A4CFE647824460D6FD55F
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/77msgWnqT_FcbILIftlVvxJIv90.roa
Signing time: Fri 21 Oct 2022 11:14:52 +0000
ROA not before: Fri 21 Oct 2022 11:14:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15723
IP address blocks: 5.178.3.0/24 maxlen: 24
5.178.1.0/24 maxlen: 24
5.178.2.0/24 maxlen: 24
5.178.0.0/24 maxlen: 24
5.10.240.0/20 maxlen: 20
185.81.216.0/22 maxlen: 22
46.23.103.0/24 maxlen: 24
46.23.101.0/24 maxlen: 24
46.23.102.0/24 maxlen: 24
46.23.100.0/24 maxlen: 24
37.128.203.0/24 maxlen: 24
37.128.202.0/24 maxlen: 24
37.128.200.0/24 maxlen: 24
37.128.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:40:c4:c0:83:5a:4c:fe:64:78:24:46:0d:6f:d5:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Oct 21 11:14:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efb9ac8169ea4ff15c6c82c87ed955bf1248bfdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4a:ee:86:25:61:99:df:82:27:f3:fb:90:0b:
ba:ec:48:c4:32:db:bc:15:d8:a1:b1:dd:51:1e:9c:
8a:ea:28:6b:8f:04:73:b1:d5:85:f4:00:82:8b:bd:
e3:92:27:ff:ee:34:5b:99:d6:23:a3:3d:c0:7a:78:
65:ab:49:06:f3:45:ee:61:44:3b:cf:37:7e:72:ca:
34:6b:83:a1:44:96:74:9e:bf:28:1e:9d:3e:b9:14:
82:40:bb:e2:61:4e:f9:66:81:9a:93:16:09:2e:a0:
89:6d:a1:e3:0f:50:12:28:6d:fb:10:87:be:88:3a:
5a:ab:14:c0:32:a8:49:32:a5:c6:81:bf:f8:68:d7:
6f:9f:8d:3a:3a:da:90:fa:e7:d1:39:b7:88:ad:f6:
5d:e3:a2:42:d0:f2:22:a9:a0:75:b5:2d:0b:fb:ee:
02:2e:89:44:92:56:7f:ec:d6:1b:5d:42:a6:ab:7e:
13:a9:cb:9f:12:eb:17:1b:a0:56:4a:b5:eb:f2:f0:
40:b0:f0:69:c9:33:53:e8:f0:07:fa:10:00:3d:b5:
97:c1:e0:73:02:da:f0:33:a4:7d:f1:c7:71:41:48:
29:26:70:8b:88:da:c8:f1:c7:0f:e5:7c:ad:a1:3a:
79:56:88:56:fd:47:48:2f:16:a0:53:ff:71:49:76:
56:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B9:AC:81:69:EA:4F:F1:5C:6C:82:C8:7E:D9:55:BF:12:48:BF:DD
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/77msgWnqT_FcbILIftlVvxJIv90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.240.0/20
5.178.0.0/22
37.128.200.0/22
46.23.100.0/22
185.81.216.0/22
Signature Algorithm: sha256WithRSAEncryption
64:59:7f:7b:97:71:1b:52:79:ef:1b:36:35:f2:99:67:01:c8:
6c:6e:63:50:6f:56:eb:47:92:f1:c9:d5:a5:a4:fd:ee:ea:bc:
84:f1:c2:e5:c1:7d:a5:9c:8d:4d:cf:dc:bb:71:c4:28:aa:ef:
e1:a8:60:94:2b:03:ab:63:aa:09:df:cd:e8:da:d4:f0:38:30:
9a:8b:1f:35:65:eb:b6:d1:de:f1:ae:21:61:6f:43:56:63:33:
88:a7:d6:96:c5:96:74:1f:5e:95:0b:ce:13:98:c2:33:63:9a:
5f:42:49:43:c1:87:d1:a6:77:aa:6d:34:df:03:1e:7f:8d:10:
c9:0b:13:6a:8f:f2:e2:0f:1e:c4:d7:aa:62:af:5c:32:9c:b1:
cd:10:69:bc:10:85:2e:df:54:ea:b7:1f:fc:67:fc:ab:34:58:
53:ae:b7:86:c9:94:cf:e8:13:5b:19:be:36:74:d1:e1:bd:17:
53:e1:44:0b:5d:bb:f7:80:06:22:0a:ba:98:e7:22:ff:05:89:
58:e6:91:62:12:fc:b1:4f:37:31:6c:b0:75:dd:a0:ec:8a:f6:
8a:3b:dd:e1:35:26:c4:5e:da:f9:2b:d8:88:ea:c4:6f:f3:76:
6e:38:b2:a8:1d:a3:b1:2d:9a:bb:cd:1f:52:8c:19:c6:17:03:
df:df:21:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org