Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/5secadji5xSVfosAfpnUtGw5obA.roa
File: 5secadji5xSVfosAfpnUtGw5obA.roa (raw, json)
Hash identifier: S/dCjOMpHSnFuoEIUVqi/6247dW67+x5iftTjtVZsjs=
Subject key identifier: E6:C7:9C:69:D8:E2:E7:14:95:7E:8B:00:7E:99:D4:B4:6C:39:A1:B0
Certificate issuer: /CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Certificate serial: 06FEE378
Authority key identifier: F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/5secadji5xSVfosAfpnUtGw5obA.roa
Signing time: Sat 05 Feb 2022 09:55:59 +0000
ROA not before: Sat 05 Feb 2022 09:55:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206825
IP address blocks: 185.36.112.0/22 maxlen: 22
185.186.116.0/22 maxlen: 22
195.181.254.0/24 maxlen: 24
185.11.16.0/22 maxlen: 22
185.11.16.0/23 maxlen: 23
185.11.18.0/23 maxlen: 23
195.192.252.0/24 maxlen: 24
80.208.255.0/24 maxlen: 24
31.14.30.0/24 maxlen: 24
31.14.29.0/24 maxlen: 24
94.177.133.0/24 maxlen: 24
178.157.95.0/24 maxlen: 24
185.207.240.0/22 maxlen: 22
103.197.8.0/22 maxlen: 22
212.103.52.0/22 maxlen: 22
46.102.102.0/24 maxlen: 24
217.61.255.0/24 maxlen: 24
212.237.254.0/24 maxlen: 24
2a03:4f40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117367672 (0x6fee378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Validity
Not Before: Feb 5 09:55:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6c79c69d8e2e714957e8b007e99d4b46c39a1b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:eb:26:df:c3:ab:de:39:ac:2a:63:d5:54:29:
7e:64:9e:5f:71:08:c2:d7:01:c4:58:2c:31:3d:a7:
3e:a4:cd:f1:67:8c:3c:ca:10:25:17:af:16:8d:5e:
cd:07:5c:a8:3c:a5:25:aa:53:a6:50:fa:64:38:05:
88:67:50:0d:91:b6:be:80:ba:73:ee:62:93:eb:81:
3f:38:ab:46:4a:48:ce:00:ae:30:5c:59:60:42:f3:
1a:bc:18:ba:a4:04:9e:66:53:bc:fa:16:0f:02:2e:
b7:71:47:dd:c7:51:65:32:0d:e4:61:2d:b5:18:5a:
99:4a:41:16:b4:4d:f3:76:81:bb:cc:ce:69:1e:3d:
3a:05:94:2f:5c:bc:c6:5d:00:b5:76:ef:ef:57:65:
2c:50:e3:f3:e0:77:8f:24:25:19:19:f1:91:cd:0b:
bf:af:6e:85:37:63:18:4d:0e:f0:59:58:81:ec:73:
f2:9f:c7:ea:8f:7f:da:d7:98:8d:fb:9a:80:56:a9:
a6:8f:bc:41:dd:d8:40:2b:13:fe:92:8e:28:ad:67:
8a:ce:16:c2:aa:b5:02:11:cc:f9:54:17:f9:e2:89:
58:c8:8c:b5:dd:b9:c8:0c:b4:b9:0f:ae:f3:51:32:
e0:1f:48:48:0f:b5:a2:c7:16:5e:2e:ef:ad:41:fc:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C7:9C:69:D8:E2:E7:14:95:7E:8B:00:7E:99:D4:B4:6C:39:A1:B0
X509v3 Authority Key Identifier:
keyid:F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/5secadji5xSVfosAfpnUtGw5obA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/8PFO0ST5ovPeqxAG8YTPT7gKOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.29.0-31.14.30.255
46.102.102.0/24
80.208.255.0/24
94.177.133.0/24
103.197.8.0/22
178.157.95.0/24
185.11.16.0/22
185.36.112.0/22
185.186.116.0/22
185.207.240.0/22
195.181.254.0/24
195.192.252.0/24
212.103.52.0/22
212.237.254.0/24
217.61.255.0/24
IPv6:
2a03:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
b7:60:00:73:c6:03:ce:d2:cd:e5:ea:46:89:1a:a6:85:b7:bb:
27:ee:ad:9b:87:59:95:1b:50:db:37:af:f1:5c:a4:d0:b6:12:
5d:c0:47:26:6a:01:1e:ab:39:97:56:5d:f4:b1:15:6b:48:8d:
69:78:a0:eb:3f:5c:4a:cc:b5:2c:09:10:51:14:7c:92:74:a4:
d5:d0:a6:54:17:1a:eb:b6:a6:e8:13:9f:a7:3d:a0:53:18:a8:
59:29:88:f4:3f:99:ce:22:67:03:c1:8a:66:fb:8d:21:47:2a:
20:05:e5:97:b2:79:7d:0f:37:72:f4:1c:22:3d:ff:9b:7e:a2:
00:c6:49:db:42:7a:3b:ac:34:c5:af:3a:58:a4:71:d6:a1:30:
c6:ea:3e:b8:1b:a3:f6:67:98:16:76:d6:37:4e:6b:9e:19:ba:
db:8c:fa:c4:ea:eb:ea:71:3d:90:64:db:22:c3:6e:d6:83:a8:
0b:25:2f:95:cd:2f:54:fb:4e:81:fa:7d:0a:c3:2d:b0:cd:72:
cf:df:1f:9b:00:f1:f8:9f:4f:ee:cf:cc:f2:48:12:db:87:5c:
45:bb:3b:a2:4d:46:5a:ac:76:ae:e0:97:98:a9:bc:de:52:cd:
2b:2f:33:68:bd:89:ef:9d:ba:57:94:87:45:c9:81:a0:18:13:
c1:a3:0d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:49 2023 by rpki-client on console-ams.rpki-client.org