Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/b5hHqwQiDSTPQscSd96rqUrr9nE.roa
File: b5hHqwQiDSTPQscSd96rqUrr9nE.roa (raw, json)
Hash identifier: qgzkqSw0MyDcDF5twpZ8nYb/exUO506dLMZGCyIksII=
Subject key identifier: 6F:98:47:AB:04:22:0D:24:CF:42:C7:12:77:DE:AB:A9:4A:EB:F6:71
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018C910840A56773D0E148564F1BCAFDD7D5
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/b5hHqwQiDSTPQscSd96rqUrr9nE.roa
Signing time: Fri 22 Dec 2023 10:18:06 +0000
ROA not before: Fri 22 Dec 2023 10:18:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 212.16.78.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
109.94.164.0/23 maxlen: 23
212.16.85.0/24 maxlen: 24
212.16.80.0/24 maxlen: 24
212.16.94.0/24 maxlen: 24
185.29.222.0/23 maxlen: 23
185.29.220.0/23 maxlen: 23
212.80.0.0/24 maxlen: 24
212.80.7.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.23.0/24 maxlen: 24
212.80.21.0/24 maxlen: 24
212.80.22.0/24 maxlen: 24
212.80.20.0/24 maxlen: 24
185.143.74.0/23 maxlen: 23
185.143.72.0/23 maxlen: 23
185.24.150.0/23 maxlen: 23
185.24.148.0/23 maxlen: 23
46.38.136.0/22 maxlen: 22
46.38.132.0/22 maxlen: 22
46.38.130.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:08:40:a5:67:73:d0:e1:48:56:4f:1b:ca:fd:d7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Dec 22 10:18:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f9847ab04220d24cf42c71277deaba94aebf671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f6:de:11:aa:a9:f1:e1:49:5a:e0:34:a3:e9:
8a:4d:34:e8:04:c1:a6:27:a9:8b:a9:1e:e0:fe:aa:
bf:e2:c6:53:f5:57:02:ae:aa:27:fd:50:1d:88:ca:
38:61:52:27:92:d0:0d:c1:a9:26:58:51:b8:db:31:
ef:05:53:e8:9d:30:62:0a:0a:6d:f3:3f:10:b9:44:
24:2f:a7:13:b9:4c:ab:0b:cb:b7:a9:75:72:73:d2:
82:31:70:a8:2d:c2:c4:d9:14:32:90:4b:b4:9a:7b:
d9:2d:b6:3c:96:df:f2:80:8e:a6:2e:12:a4:9e:32:
de:05:22:f1:ef:5d:2d:e0:82:35:84:68:14:af:e2:
44:f0:c9:2c:60:63:d8:39:ab:fc:0f:dd:80:9b:9f:
17:e4:e4:bd:8d:68:ac:60:7e:13:03:3b:cc:23:e7:
fe:fb:2e:77:90:0a:45:9a:04:70:ee:a9:1b:6d:cb:
55:fc:f6:12:ad:ea:9b:f8:2e:c5:fb:48:fa:54:eb:
45:b3:3e:05:d7:33:3b:b1:7a:0e:89:e1:b5:a2:03:
e3:a6:f7:c4:d6:86:d3:dd:00:0e:14:9a:ae:c1:05:
38:7f:4e:61:96:42:a6:2b:77:3a:b3:5c:72:34:5e:
75:96:97:33:ca:75:2e:cf:8e:3c:40:3f:b3:96:e6:
bb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:98:47:AB:04:22:0D:24:CF:42:C7:12:77:DE:AB:A9:4A:EB:F6:71
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/b5hHqwQiDSTPQscSd96rqUrr9nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0/24
46.38.130.0/24
46.38.132.0-46.38.139.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.72.0/22
212.16.78.0-212.16.80.255
212.16.85.0/24
212.16.94.0/24
212.80.0.0/24
212.80.6.0/23
212.80.20.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:fc:7b:0c:03:bd:da:fc:c1:a0:05:4d:44:88:b7:e5:49:c2:
fd:00:d6:8d:87:da:6d:17:aa:f6:ce:3b:fb:42:81:cf:21:d2:
0f:f0:6c:eb:b7:26:9f:2f:37:3d:f1:24:ae:84:8d:51:60:8e:
57:d2:cb:24:95:63:ab:c3:45:1f:fe:a6:99:92:7f:ac:6e:1b:
32:81:99:65:50:a9:4c:94:11:55:2e:3d:20:62:fe:3a:91:48:
26:08:1f:2b:c4:3e:4a:d2:e3:18:7c:d3:b0:22:21:49:a0:b4:
f9:e0:02:08:c5:6a:c7:a9:4b:71:f4:d4:54:c5:d7:59:c3:d1:
89:19:c9:2e:ee:1c:14:da:4e:15:79:75:91:3f:0e:18:ed:8c:
9c:5e:43:06:e3:a4:76:62:1d:1b:11:de:8a:66:01:41:8a:7a:
58:03:c7:b6:bc:de:21:63:9e:58:44:a1:af:48:2c:4d:54:51:
4c:63:b4:0d:3e:9f:da:f6:8a:89:ca:e1:50:5b:da:92:09:1c:
b7:7b:99:2b:b3:23:1e:7d:15:a5:94:4e:35:1e:55:8a:c7:d4:
84:c1:e1:d6:ec:e9:4e:53:6b:d8:4d:98:1f:3a:78:89:94:27:
81:84:64:0d:be:a4:6f:af:f1:89:c9:2a:0e:fc:ed:b8:69:46:
b5:ce:2f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:48:03 2025 by rpki-client