Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/X3U5EiUiMJNky5Bb0Y3qd4kZR4o.roa
File: X3U5EiUiMJNky5Bb0Y3qd4kZR4o.roa (raw, json)
Hash identifier: WTtf8iayovDIrfg/Izt1SNhW7k8od7ohesEcpQUuF4g=
Subject key identifier: 5F:75:39:12:25:22:30:93:64:CB:90:5B:D1:8D:EA:77:89:19:47:8A
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: 723DE1
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/X3U5EiUiMJNky5Bb0Y3qd4kZR4o.roa
Signing time: Wed 23 Mar 2022 19:00:49 +0000
ROA not before: Wed 23 Mar 2022 19:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28761
IP address blocks: 195.26.81.0/24 maxlen: 24
195.26.82.0/23 maxlen: 23
195.26.80.0/24 maxlen: 24
188.191.16.0/22 maxlen: 22
188.191.16.0/24 maxlen: 24
188.191.17.0/24 maxlen: 24
188.191.18.0/24 maxlen: 24
188.191.19.0/24 maxlen: 24
188.191.24.0/24 maxlen: 24
188.191.25.0/24 maxlen: 24
188.191.26.0/24 maxlen: 24
188.191.27.0/24 maxlen: 24
185.76.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7486945 (0x723de1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Mar 23 19:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f7539122522309364cb905bd18dea778919478a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:05:51:30:fb:79:a5:71:27:af:e4:a1:5f:14:
f1:a1:c4:5e:1a:00:c4:b5:da:69:90:57:a9:5e:59:
21:d0:77:12:ae:0c:52:9c:9b:4d:7d:e1:b8:96:75:
f0:f6:85:dd:99:bc:a2:67:84:90:56:d0:54:54:87:
3e:0d:f1:7f:00:de:8f:52:c1:e2:4e:5c:c6:6d:70:
f5:69:56:bd:89:02:61:49:ef:e8:ed:5e:db:72:d1:
a6:73:ea:28:c5:83:6a:b1:3e:1b:33:d2:b2:0a:d8:
54:24:b8:8c:08:34:0d:de:5e:27:1b:01:9d:46:35:
e7:73:41:1d:f8:09:5a:3a:b5:bc:ef:94:d6:c7:4c:
77:f1:aa:ac:2c:73:c4:c1:98:83:27:1f:ed:e6:7a:
52:ad:57:ba:a1:41:ee:4e:26:00:52:a8:bf:0d:7a:
33:e2:47:0f:53:59:95:dd:60:26:3e:a1:a1:c1:39:
ee:00:ae:d4:e8:95:de:b0:05:be:34:ea:54:2c:7d:
07:0e:1f:5a:9a:d9:91:ec:e3:65:68:1e:56:45:24:
a1:49:18:59:a0:cd:1f:d8:0e:48:73:8b:8b:0f:e5:
ff:ac:f7:e2:a0:99:f5:2e:de:9f:ad:a1:e4:a6:fc:
99:38:be:f8:3d:8b:09:3c:7f:c7:94:11:e0:c7:a5:
fb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:75:39:12:25:22:30:93:64:CB:90:5B:D1:8D:EA:77:89:19:47:8A
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/X3U5EiUiMJNky5Bb0Y3qd4kZR4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.80.0/24
188.191.16.0/22
188.191.24.0/22
195.26.80.0/22
Signature Algorithm: sha256WithRSAEncryption
29:c1:cd:1c:8e:53:63:7d:f7:52:a9:b4:91:b0:3a:32:c4:f6:
d6:b2:e5:12:c6:12:0e:57:91:f7:f9:f6:da:7b:d5:41:d4:a1:
e8:39:95:e3:99:2d:c3:45:02:70:89:5e:f9:46:a4:90:58:74:
fa:d8:c1:e5:ca:5d:a6:9b:e1:7a:fb:07:a6:02:75:d4:18:af:
38:4f:04:e2:a7:43:7d:2b:63:86:63:ab:a8:11:13:03:83:30:
de:28:e4:71:57:2a:59:5e:0a:44:da:6c:ba:5d:19:0e:48:9d:
bb:2d:c0:91:13:06:0c:d1:7b:ba:ad:65:d6:95:27:e8:b1:b4:
ec:6b:70:0c:59:41:48:68:e1:06:92:54:7c:82:e1:93:46:e0:
0a:de:86:21:66:6d:c4:73:51:ab:d6:d9:9a:d0:2b:bb:98:16:
6e:b5:d6:d6:2d:cd:22:15:d9:3f:50:c4:88:60:a6:95:f5:36:
f9:6a:93:78:06:65:ba:3f:c0:5c:bc:ec:06:94:7b:26:de:fd:
45:91:d3:bd:39:62:6e:bc:9f:b7:25:bd:63:01:e2:fb:40:60:
45:c3:ad:77:a1:f0:73:00:6f:b3:96:b9:2b:55:cb:cc:c4:20:
90:3c:1f:5f:a4:f4:56:1a:aa:f4:b2:73:d2:f1:53:29:dd:eb:
dd:b2:ed:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:06 2023 by rpki-client on console-fra.rpki-client.org