Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/td1Ac6SpweEDjb-AR7DSh346Hig.roa
File: td1Ac6SpweEDjb-AR7DSh346Hig.roa (raw, json)
Hash identifier: vVRydWAcRJWrWJxOpJb9Ov2zTzCHeWvXmRnl9m4PxMo=
Subject key identifier: B5:DD:40:73:A4:A9:C1:E1:03:8D:BF:80:47:B0:D2:87:7E:3A:1E:28
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018456DA66D5FF770593813553D49903DCAC
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/td1Ac6SpweEDjb-AR7DSh346Hig.roa
Signing time: Tue 08 Nov 2022 10:47:44 +0000
ROA not before: Tue 08 Nov 2022 10:47:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 45.151.2.0/24 maxlen: 24
45.151.0.0/23 maxlen: 23
5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
2.56.108.0/22 maxlen: 22
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
194.15.52.0/23 maxlen: 23
77.83.39.0/24 maxlen: 24
77.83.38.0/23 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
45.13.191.0/24 maxlen: 24
45.94.168.0/22 maxlen: 24
45.144.215.0/24 maxlen: 24
45.144.214.0/23 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
193.30.241.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
85.209.121.0/24 maxlen: 24
45.81.112.0/22 maxlen: 24
45.138.180.0/22 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:56:da:66:d5:ff:77:05:93:81:35:53:d4:99:03:dc:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 8 10:47:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5dd4073a4a9c1e1038dbf8047b0d2877e3a1e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2b:f9:b2:94:a8:06:8c:68:fa:84:63:4b:2d:
47:89:a7:c7:2c:e5:0f:26:ab:65:c9:1f:5f:f7:e9:
52:10:58:5b:09:3e:e1:64:9a:92:6f:4e:6b:71:be:
e8:f2:b7:0b:06:74:82:f8:ce:7a:f4:41:59:e7:0a:
53:0d:2f:1f:9a:bd:b4:19:eb:92:65:a0:68:7a:e4:
e0:a3:0d:2e:5a:cc:45:51:3b:ae:d1:bd:dd:87:e8:
27:e9:a9:00:03:9c:4c:ba:3e:95:4c:53:99:72:eb:
f5:0f:b1:14:19:0e:d8:69:5e:8d:f8:56:9c:ef:24:
0c:bc:74:73:00:10:e8:67:1b:42:7e:c9:b2:b2:2e:
fb:67:70:71:bf:ea:a6:18:45:08:9e:e0:aa:0f:f4:
6e:ea:18:f7:4c:4d:58:91:80:95:06:5d:ce:18:b9:
16:57:aa:6f:c6:43:6f:de:19:38:8f:5f:84:5b:af:
55:31:d3:d4:b0:71:06:19:b6:8f:3e:c4:20:39:f1:
43:b0:2b:32:11:76:d6:aa:ff:51:97:b5:6f:7d:96:
82:ea:0b:7b:f2:33:58:d9:53:98:4e:12:c4:a6:1c:
8b:64:32:63:21:3b:d2:08:49:12:f4:95:2a:90:c4:
df:5b:1d:28:18:d1:b7:6a:1d:d5:d4:5e:4f:b6:4d:
16:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DD:40:73:A4:A9:C1:E1:03:8D:BF:80:47:B0:D2:87:7E:3A:1E:28
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/td1Ac6SpweEDjb-AR7DSh346Hig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
5.181.87.0/24
45.9.29.0/24
45.13.191.0/24
45.81.112.0/22
45.88.136.0/24
45.88.139.0/24
45.94.168.0/22
45.132.181.0-45.132.183.255
45.138.180.0/22
45.144.212.0/22
45.151.0.0-45.151.2.255
77.83.37.0-77.83.39.255
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/22
193.57.41.0/24
193.57.43.0/24
194.15.52.0/23
194.242.96.0/22
195.62.24.0/24
195.177.92.0/22
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
56:3f:59:d0:39:54:c8:5f:2c:5e:f1:6e:50:00:57:3a:5a:23:
32:1c:99:6e:b2:63:67:ae:35:77:95:c2:6b:79:7d:a7:a5:f3:
ed:5a:17:36:c3:17:8f:47:66:af:7e:78:3b:21:db:b8:af:a9:
8f:df:83:ae:5f:9d:d6:3d:0c:11:45:39:8d:84:53:13:51:70:
55:df:94:3a:01:b0:fb:ea:75:85:f0:4d:59:f4:87:5f:72:36:
fc:7a:e7:f2:3d:9d:78:a1:a2:b7:1e:e6:25:64:ed:47:0e:24:
f2:1f:c6:14:64:e2:4f:11:49:f4:7a:f5:87:0c:85:f8:f8:04:
f0:e6:72:10:ce:52:fb:74:7b:a8:e1:73:19:f2:d2:43:79:ff:
88:9c:50:1e:06:f6:4f:28:2e:9a:f9:89:cd:11:b7:82:4c:c6:
b7:1b:97:0f:94:8c:fa:64:f3:3e:d7:7d:35:53:bf:d8:03:95:
c2:b9:5b:54:49:5c:8d:21:df:12:ad:54:0d:e9:64:8f:9f:00:
34:29:bf:6b:f6:7f:76:64:53:90:d3:53:3c:71:03:b0:8c:71:
4b:92:8a:62:ab:9b:84:a6:1f:bc:ec:89:bc:5a:18:f5:8d:08:
9e:53:e1:51:97:e1:83:e7:ed:ed:21:6d:38:20:0b:6f:5f:30:
58:37:96:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:19 2024 by rpki-client on console-ams.rpki-client.org