Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/M5MHy4qYZ4_RI4Aa7Oaonq3qsc4.roa
File: M5MHy4qYZ4_RI4Aa7Oaonq3qsc4.roa (raw, json)
Hash identifier: La0K7syIUjVMlKx4eB9qFEr5U3mbytsSLFYslMzmtEg=
Subject key identifier: 33:93:07:CB:8A:98:67:8F:D1:23:80:1A:EC:E6:A8:9E:AD:EA:B1:CE
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0A854B63
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/M5MHy4qYZ4_RI4Aa7Oaonq3qsc4.roa
Signing time: Sat 05 Mar 2022 10:43:14 +0000
ROA not before: Sat 05 Mar 2022 10:43:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 85.133.194.0/24 maxlen: 24
85.133.234.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176507747 (0xa854b63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Mar 5 10:43:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=339307cb8a98678fd123801aece6a89eadeab1ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1e:9f:21:cf:ec:78:be:b7:6d:92:d9:c2:48:
1d:5e:45:10:99:7e:01:66:69:02:5d:b0:15:99:91:
50:16:85:7b:ba:10:d1:d2:66:fc:67:64:1c:66:3b:
97:c3:de:3e:f9:af:b7:2f:01:b6:99:4b:76:b7:c5:
eb:b6:2b:c8:26:6d:db:4e:09:05:fb:28:ed:76:95:
ec:c3:b8:a2:84:8a:03:fa:f7:5a:b1:c3:c6:46:6e:
9a:e5:fa:14:1f:0b:44:9f:6b:fe:1b:2e:93:2e:79:
cb:1d:f7:69:fb:a6:b1:62:58:0e:1b:f6:59:c6:a8:
0f:aa:3e:2d:37:c3:5b:7b:e9:44:33:0a:3b:4e:47:
48:49:61:3c:d8:e4:40:e3:17:73:4b:b0:0e:1d:b2:
80:73:c4:4e:22:b2:82:fb:da:c1:96:d5:6c:ee:89:
26:ad:36:3d:da:f6:1a:74:d4:46:55:06:cd:9e:ec:
7e:b7:99:4d:8d:96:b1:ed:0a:cf:12:a7:54:e3:2d:
8d:fa:39:f0:48:bc:2d:3c:19:c3:5a:ec:64:a3:87:
be:52:cc:84:3f:62:e8:68:30:3d:a1:f3:1d:3f:12:
a5:54:d2:1a:06:ab:c7:a5:f4:18:9f:14:cc:ed:ea:
7a:dc:e0:e7:0f:21:7f:ee:62:74:9b:10:b8:3c:76:
0b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:93:07:CB:8A:98:67:8F:D1:23:80:1A:EC:E6:A8:9E:AD:EA:B1:CE
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/M5MHy4qYZ4_RI4Aa7Oaonq3qsc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.137.0/24
85.133.194.0/24
85.133.234.0/24
Signature Algorithm: sha256WithRSAEncryption
60:72:61:a7:7c:54:0d:2d:8e:fd:b4:a8:95:bb:ee:cb:6f:67:
0b:39:15:5d:f7:70:91:2d:c4:18:6f:5b:01:6b:65:aa:cc:67:
80:cb:be:76:5f:3e:48:e8:94:d2:1d:29:f4:61:64:c4:05:5a:
98:81:2b:80:97:39:31:9c:d0:7d:09:4f:70:1a:c7:99:b2:fa:
0f:39:a9:5a:62:fb:a7:1c:ee:e4:6c:f7:1a:42:9a:81:49:b9:
49:5b:c7:82:29:19:d5:04:07:59:02:81:7a:6a:e7:b4:80:aa:
fd:d9:51:9a:40:ff:12:8d:04:d6:a8:c9:41:01:9d:fd:df:48:
13:1a:55:0a:a7:d1:81:8f:b6:d4:7b:a7:e9:7b:24:92:40:9e:
cb:2c:9d:62:12:c6:ad:b1:d9:09:15:16:07:2c:1b:7a:72:ea:
a6:43:79:95:6b:4a:77:58:1a:4e:8c:24:af:a3:25:b8:74:e3:
01:51:d0:4e:27:d2:0d:3f:54:55:a5:d0:20:4c:29:ee:ef:9a:
a2:12:21:48:45:21:6b:2f:f2:4f:fd:7c:3b:61:38:53:1b:41:
ad:1b:b8:a0:d5:f0:0b:8e:6d:a7:43:42:a3:41:13:89:b4:35:
20:82:4a:f5:1e:6d:4c:7a:5e:83:d4:f6:e0:a5:4a:95:ad:f1:
6d:e1:e4:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:05 2023 by rpki-client on console-ams.rpki-client.org