Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/F5iqmdhoR5KGgaglX43kG8BU4LQ.roa
File: F5iqmdhoR5KGgaglX43kG8BU4LQ.roa (raw, json)
Hash identifier: t9/GVWl3vTMRaT9JIJYXxw8P3RneMasN7UXT6v8NAkA=
Subject key identifier: 17:98:AA:99:D8:68:47:92:86:81:A8:25:5F:8D:E4:1B:C0:54:E0:B4
Certificate issuer: /CN=f5daf0ba21e90202597ee47e09f6877fe23c2a9f
Certificate serial: 0C93B971
Authority key identifier: F5:DA:F0:BA:21:E9:02:02:59:7E:E4:7E:09:F6:87:7F:E2:3C:2A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9drwuiHpAgJZfuR-CfaHf-I8Kp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/F5iqmdhoR5KGgaglX43kG8BU4LQ.roa
Signing time: Tue 29 Mar 2022 12:47:35 +0000
ROA not before: Tue 29 Mar 2022 12:47:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206262
IP address blocks: 185.171.60.0/24 maxlen: 24
185.171.60.0/22 maxlen: 22
185.171.62.0/24 maxlen: 24
185.171.61.0/24 maxlen: 24
185.171.63.0/24 maxlen: 24
37.26.64.0/21 maxlen: 21
37.26.70.0/24 maxlen: 24
37.26.66.0/24 maxlen: 24
37.26.65.0/24 maxlen: 24
37.26.69.0/24 maxlen: 24
185.191.164.0/24 maxlen: 24
185.191.164.0/22 maxlen: 22
185.191.166.0/24 maxlen: 24
185.191.165.0/24 maxlen: 24
87.238.208.0/24 maxlen: 24
185.174.208.0/24 maxlen: 24
87.238.208.0/21 maxlen: 21
185.174.208.0/22 maxlen: 22
185.191.167.0/24 maxlen: 24
87.238.210.0/24 maxlen: 24
185.174.210.0/24 maxlen: 24
185.174.211.0/24 maxlen: 24
87.238.209.0/24 maxlen: 24
185.174.209.0/24 maxlen: 24
87.238.212.0/24 maxlen: 24
87.238.213.0/24 maxlen: 24
87.238.211.0/24 maxlen: 24
87.238.215.0/24 maxlen: 24
87.238.214.0/24 maxlen: 24
185.186.81.0/24 maxlen: 24
185.186.80.0/22 maxlen: 22
185.186.80.0/24 maxlen: 24
185.186.83.0/24 maxlen: 24
185.186.82.0/24 maxlen: 24
5.206.232.0/21 maxlen: 21
5.206.232.0/24 maxlen: 24
5.206.233.0/24 maxlen: 24
5.206.234.0/24 maxlen: 24
5.206.236.0/24 maxlen: 24
5.206.235.0/24 maxlen: 24
5.206.238.0/24 maxlen: 24
5.206.237.0/24 maxlen: 24
5.206.239.0/24 maxlen: 24
185.179.28.0/22 maxlen: 22
185.179.29.0/24 maxlen: 24
185.179.28.0/24 maxlen: 24
185.179.30.0/24 maxlen: 24
185.179.31.0/24 maxlen: 24
2a0c:b340::/32 maxlen: 32
2a0c:b342::/32 maxlen: 32
2a0c:b343::/32 maxlen: 32
2a0c:b344::/32 maxlen: 32
2a0c:b340::/29 maxlen: 29
2a0c:b341::/32 maxlen: 32
2a0c:b340::/48 maxlen: 48
2a0c:b340:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211007857 (0xc93b971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5daf0ba21e90202597ee47e09f6877fe23c2a9f
Validity
Not Before: Mar 29 12:47:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1798aa99d86847928681a8255f8de41bc054e0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f2:fe:fc:03:59:56:62:bd:a0:87:07:5e:ac:
98:2d:ee:69:5a:9d:ab:57:80:51:df:dc:e4:b9:98:
30:54:11:e6:7c:4e:f8:91:2a:2d:7c:66:17:81:80:
b5:2e:fb:77:0d:f6:16:6e:8b:95:a5:d8:37:17:cb:
52:7c:b2:8a:98:13:10:f9:e9:36:b8:52:09:a5:81:
f5:b7:9b:f8:32:1f:0a:eb:15:61:82:b6:ed:b6:95:
87:87:0b:f9:fd:92:bf:bd:87:01:16:61:97:3b:d9:
5c:70:38:0d:dd:8d:de:71:c4:b4:40:e4:72:5c:43:
bb:8b:1e:b9:eb:9f:81:c4:36:47:07:18:ee:b6:68:
72:68:f5:d0:dd:de:68:f4:e6:7c:15:04:81:81:2b:
18:d9:ce:d5:c5:e1:64:f9:69:0f:fc:34:96:56:8d:
fe:06:6f:a4:97:20:fb:0d:dc:36:58:d3:bd:31:5b:
00:72:a4:d9:19:20:ac:eb:2a:94:b4:c9:51:33:6b:
30:d4:db:53:09:61:70:e8:9e:5f:b8:aa:41:d1:42:
02:1d:1f:24:d8:6e:68:4d:5a:a0:b9:0e:2b:cd:63:
a9:17:31:40:0b:3d:b4:2b:2c:13:8c:2b:3d:e1:a9:
26:e9:fd:15:6f:57:f5:28:27:f2:d7:35:5d:81:4e:
76:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:98:AA:99:D8:68:47:92:86:81:A8:25:5F:8D:E4:1B:C0:54:E0:B4
X509v3 Authority Key Identifier:
keyid:F5:DA:F0:BA:21:E9:02:02:59:7E:E4:7E:09:F6:87:7F:E2:3C:2A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9drwuiHpAgJZfuR-CfaHf-I8Kp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/F5iqmdhoR5KGgaglX43kG8BU4LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/9drwuiHpAgJZfuR-CfaHf-I8Kp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.206.232.0/21
37.26.64.0/21
87.238.208.0/21
185.171.60.0/22
185.174.208.0/22
185.179.28.0/22
185.186.80.0/22
185.191.164.0/22
IPv6:
2a0c:b340::/29
Signature Algorithm: sha256WithRSAEncryption
6d:96:0a:4b:ce:e7:e3:55:25:8f:59:36:49:e4:72:fb:17:6d:
ad:6d:03:86:6f:3f:57:3d:c9:86:62:8e:cc:89:1a:41:00:28:
73:cd:ff:a2:8d:71:46:40:0a:d6:7c:96:a2:64:f9:fd:c8:fd:
fe:e5:83:57:15:e2:d6:11:c5:12:42:5c:ff:2d:e6:23:f6:70:
df:01:3c:9d:33:7b:50:b9:96:b2:12:7a:24:60:fb:65:75:15:
15:b0:e6:a4:69:1b:93:29:1c:9c:8d:3c:e2:ba:93:61:63:7f:
02:a2:25:c6:8f:c3:96:48:d6:b4:0e:a7:d0:31:db:30:a8:14:
d2:94:6a:ae:b6:58:87:79:33:ca:ac:a8:e1:08:56:72:3e:b8:
1b:43:61:c5:b4:1c:3e:22:e6:94:ab:d5:35:7f:8d:e7:e7:82:
7d:26:de:a1:a7:58:ba:45:a4:e2:6d:fb:d6:e8:cd:d2:4f:3d:
c2:bf:ba:c8:d4:fc:40:b6:7f:c2:d5:73:2f:fc:37:99:a7:31:
4f:6d:94:36:e9:09:bf:bb:ff:22:86:a2:fb:5c:ee:8c:52:bb:
55:7c:3e:66:68:ec:f6:04:c5:f0:22:ad:c2:40:93:bf:4b:f8:
d0:28:f1:d4:ba:0d:d9:d8:93:95:85:dc:68:d0:e2:8b:9c:bc:
74:41:47:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:11 2023 by rpki-client on console-ams.rpki-client.org