Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/oL0gI3IUxQhfYoJ_wJDp_zY4cd0.roa
File: oL0gI3IUxQhfYoJ_wJDp_zY4cd0.roa (raw, json)
Hash identifier: r2RwG0DSqA+9iBO6RQmFXRDnh9jyYszL2SbJFK/f/Ns=
Subject key identifier: A0:BD:20:23:72:14:C5:08:5F:62:82:7F:C0:90:E9:FF:36:38:71:DD
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 03495FD7
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/oL0gI3IUxQhfYoJ_wJDp_zY4cd0.roa
Signing time: Fri 15 Apr 2022 07:42:24 +0000
ROA not before: Fri 15 Apr 2022 07:42:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 85.158.145.0/24 maxlen: 24
5.178.4.0/24 maxlen: 24
109.205.212.0/24 maxlen: 24
109.205.211.0/24 maxlen: 24
5.178.6.0/24 maxlen: 24
5.178.7.0/24 maxlen: 24
5.178.5.0/24 maxlen: 24
5.10.243.0/24 maxlen: 24
5.10.246.0/24 maxlen: 24
5.10.249.0/24 maxlen: 24
5.10.252.0/24 maxlen: 24
5.10.255.0/24 maxlen: 24
88.151.197.0/24 maxlen: 24
88.151.198.0/24 maxlen: 24
88.151.195.0/24 maxlen: 24
88.151.199.0/24 maxlen: 24
164.215.96.0/24 maxlen: 24
164.215.97.0/24 maxlen: 24
164.215.98.0/24 maxlen: 24
164.215.99.0/24 maxlen: 24
5.10.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55140311 (0x3495fd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 15 07:42:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0bd20237214c5085f62827fc090e9ff363871dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8e:17:d0:16:fd:41:c7:80:15:b3:4a:ae:c9:
46:c0:90:de:34:f6:92:42:7c:f4:28:0c:b0:f7:dd:
39:4c:9a:72:13:2f:ab:1d:c6:aa:c9:c8:54:1d:68:
07:97:5b:bf:f8:bf:c2:0d:d4:78:15:c6:0b:76:ff:
be:3e:09:6d:10:99:0a:b7:a4:a5:19:47:5c:32:78:
d6:73:ac:02:f3:1c:ba:49:f6:b9:56:d0:77:76:b2:
36:e7:64:21:3c:24:1a:7f:a4:3e:d7:d8:da:4d:cf:
b7:bd:cb:39:aa:b3:b9:b4:f1:9b:6d:5a:42:c8:40:
44:ab:ff:ac:78:5d:e8:eb:ce:f9:26:4e:4b:e4:7b:
23:7d:47:3f:e7:d0:a9:68:b4:03:dc:17:03:38:33:
a2:64:ea:50:70:ae:55:39:ca:4d:8b:2f:74:17:cf:
b8:21:2d:70:d9:3f:0b:e7:82:d4:7c:83:7a:0a:5b:
a1:fe:29:7a:f6:a3:d1:6e:a8:c5:4e:59:b5:b6:2b:
88:de:86:94:47:af:41:52:64:be:69:e0:d3:27:b0:
a4:3f:19:0e:f8:76:00:50:e5:dc:3d:6b:a5:c3:10:
ee:b7:0a:5c:82:f2:da:3f:3a:70:d7:c3:1e:09:6a:
0b:d9:86:27:36:6d:63:25:12:76:79:6a:ac:c7:46:
b4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:BD:20:23:72:14:C5:08:5F:62:82:7F:C0:90:E9:FF:36:38:71:DD
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/oL0gI3IUxQhfYoJ_wJDp_zY4cd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.240.0/24
5.10.243.0/24
5.10.246.0/24
5.10.249.0/24
5.10.252.0/24
5.10.255.0/24
5.178.4.0/22
85.158.145.0/24
88.151.195.0/24
88.151.197.0-88.151.199.255
109.205.211.0-109.205.212.255
164.215.96.0/22
Signature Algorithm: sha256WithRSAEncryption
69:83:74:48:48:bc:45:eb:ba:5b:a5:66:68:7a:d1:6f:b6:98:
23:d7:dd:62:ab:e1:44:1d:54:6f:af:d5:c8:f2:ef:1a:fd:98:
f5:a6:fb:30:d3:ce:19:56:0f:51:ce:43:b4:6b:3b:01:06:2d:
63:28:12:72:ad:f1:42:e5:e0:a3:f2:3b:78:94:88:32:41:1e:
b2:50:bd:76:bb:60:f8:ce:3d:b7:2b:d5:6c:d8:28:28:59:34:
37:c1:82:d4:f6:12:78:3a:8a:41:ca:1a:be:4e:4d:15:87:5c:
9d:f5:7d:c8:96:d8:8d:5d:d5:ae:2e:ae:22:ef:c5:4e:d6:05:
eb:01:a6:e1:2f:5a:e2:2e:33:85:09:a3:f8:3b:1a:36:57:0d:
be:62:ee:7b:6b:bd:18:59:e6:02:43:e4:cf:f9:69:5b:7f:7d:
74:97:a1:0e:5f:20:10:49:1b:e8:a5:41:67:0a:08:73:c7:1c:
dd:3d:32:88:71:5d:af:5b:57:0b:7d:a6:8b:f3:28:84:a9:55:
60:c8:14:20:eb:15:fd:fc:a8:3d:d2:d6:ea:ec:76:01:e9:23:
22:5b:d6:3b:57:a2:87:3a:96:6a:44:24:9c:cc:aa:73:0f:98:
6d:23:72:d2:fc:74:7d:5f:c8:e1:43:cb:41:42:65:71:e2:ed:
31:66:14:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org