Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/70pcnNjLImnW_rNP6Fc2NKOiYS4.roa
File: 70pcnNjLImnW_rNP6Fc2NKOiYS4.roa (raw, json)
Hash identifier: Uz1kxtor7E2aYro60WJ3ILxZBXlK/if8vgQZyi6dh8M=
Subject key identifier: EF:4A:5C:9C:D8:CB:22:69:D6:FE:B3:4F:E8:57:36:34:A3:A2:61:2E
Certificate issuer: /CN=85aaadc568f6c928fd764d421d42c71cf5791954
Certificate serial: 0544863E
Authority key identifier: 85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/70pcnNjLImnW_rNP6Fc2NKOiYS4.roa
Signing time: Sat 01 Jan 2022 03:01:18 +0000
ROA not before: Sat 01 Jan 2022 03:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44092
IP address blocks: 185.191.105.0/24 maxlen: 24
185.191.104.0/24 maxlen: 24
185.191.106.0/24 maxlen: 24
185.191.107.0/24 maxlen: 24
188.191.58.0/24 maxlen: 24
188.191.56.0/22 maxlen: 24
188.191.56.0/24 maxlen: 24
188.191.57.0/24 maxlen: 24
188.191.59.0/24 maxlen: 24
45.145.201.0/24 maxlen: 24
45.145.202.0/24 maxlen: 24
45.145.200.0/24 maxlen: 24
45.145.203.0/24 maxlen: 24
185.56.156.0/22 maxlen: 24
185.215.145.0/24 maxlen: 24
77.242.131.0/24 maxlen: 24
77.242.132.0/24 maxlen: 24
185.215.144.0/24 maxlen: 24
77.242.130.0/24 maxlen: 24
77.242.128.0/24 maxlen: 24
77.242.129.0/24 maxlen: 24
77.242.128.0/20 maxlen: 24
185.248.227.0/24 maxlen: 24
89.37.71.0/24 maxlen: 24
89.37.70.0/23 maxlen: 24
89.37.70.0/24 maxlen: 24
77.242.134.0/24 maxlen: 24
77.242.133.0/24 maxlen: 24
185.215.147.0/24 maxlen: 24
185.215.146.0/24 maxlen: 24
77.242.137.0/24 maxlen: 24
77.242.135.0/24 maxlen: 24
77.242.136.0/24 maxlen: 24
77.242.138.0/24 maxlen: 24
77.242.139.0/24 maxlen: 24
77.242.140.0/24 maxlen: 24
77.242.141.0/24 maxlen: 24
77.242.143.0/24 maxlen: 24
77.242.142.0/24 maxlen: 24
185.219.117.0/24 maxlen: 24
185.219.118.0/24 maxlen: 24
185.219.116.0/24 maxlen: 24
185.219.119.0/24 maxlen: 24
2a02:53e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88376894 (0x544863e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85aaadc568f6c928fd764d421d42c71cf5791954
Validity
Not Before: Jan 1 03:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef4a5c9cd8cb2269d6feb34fe8573634a3a2612e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3f:3c:4f:45:42:5d:12:e7:f6:03:3f:b5:5e:
ef:dd:9d:4a:4f:71:6a:4a:24:79:d7:fa:93:00:c1:
1c:34:25:a8:10:b5:04:17:7d:0e:e1:ee:9b:f9:4a:
50:79:09:6a:2b:45:62:c9:ca:f0:b5:6d:48:b4:ff:
bb:27:d8:5c:d0:d6:af:e5:a2:c7:a8:8b:a0:a3:50:
54:e1:d7:77:15:aa:d0:d7:3e:db:56:85:c9:fc:47:
b1:2a:fa:71:97:39:3e:de:d0:20:46:7e:0b:fa:d2:
14:93:aa:cb:09:4d:04:c8:51:9b:e9:f3:1e:de:e2:
40:1d:c0:72:b2:f8:3d:b7:b9:20:94:ad:24:e8:0c:
ef:e0:53:59:8d:fa:ff:32:66:23:fe:7a:e0:25:af:
7e:17:f7:0c:c4:77:1f:7c:ba:d1:34:34:2c:8a:a4:
e5:91:1c:97:88:75:bb:7a:0b:37:2f:42:b9:95:cd:
82:82:34:8e:fa:c3:87:a4:48:bf:9b:0b:9b:0b:60:
d4:8e:2b:d9:b0:e0:47:0a:2f:bd:24:6b:c4:f0:3e:
c7:48:9c:06:51:a6:3d:c4:4a:69:8e:28:a9:1c:12:
2f:3c:3d:b8:1b:37:23:9f:e1:a6:cd:ee:24:e2:56:
b9:4b:dc:ce:c7:56:4d:6e:79:6e:36:29:33:bc:e8:
7b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4A:5C:9C:D8:CB:22:69:D6:FE:B3:4F:E8:57:36:34:A3:A2:61:2E
X509v3 Authority Key Identifier:
keyid:85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/70pcnNjLImnW_rNP6Fc2NKOiYS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/haqtxWj2ySj9dk1CHULHHPV5GVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.200.0/22
77.242.128.0/20
89.37.70.0/23
185.56.156.0/22
185.191.104.0/22
185.215.144.0/22
185.219.116.0/22
185.248.227.0/24
188.191.56.0/22
IPv6:
2a02:53e0::/32
Signature Algorithm: sha256WithRSAEncryption
b6:06:52:3e:95:b7:3a:4f:40:7e:29:a6:80:d4:57:00:72:38:
4e:e7:cb:0d:f6:37:03:f0:cb:44:e2:52:1b:77:78:bd:09:3d:
52:3a:5e:27:40:5b:04:73:f1:f5:38:4b:cf:41:c1:b0:cb:97:
bd:74:da:3c:00:8a:32:d2:f2:2e:ff:43:98:49:14:95:fb:fa:
8d:5f:00:83:c7:cc:5d:c2:9a:6c:35:96:d4:0d:ad:47:8b:2c:
74:76:20:f2:a2:38:eb:35:83:9b:8c:03:e2:4a:07:13:82:e9:
ef:88:31:cb:bd:40:72:67:78:c4:02:6d:d9:6c:56:0b:77:83:
e6:b7:09:4d:34:3b:5f:dd:15:b4:74:55:17:a0:5c:73:a4:0c:
54:70:7a:63:34:10:6b:d4:7c:0b:df:2f:1e:55:d7:68:9c:ae:
9a:5a:b9:77:49:c0:6b:72:8d:f0:3d:5a:52:b2:62:bd:9b:e0:
3b:70:af:67:e5:aa:8a:6f:f5:86:21:94:1d:54:5f:33:ad:ce:
fd:0e:81:43:e7:7b:2f:a9:b5:a9:48:3c:9f:cc:ff:a8:a6:6a:
b9:8f:68:b1:e1:1c:f9:8f:44:e8:81:52:9b:55:53:b0:89:2e:
00:00:97:a9:9a:a5:04:c5:3c:00:e5:b6:25:ae:51:ec:3e:7f:
f8:e0:56:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:08 2024 by rpki-client on console-fra.rpki-client.org