Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/c17237-a134-4b11-ab12-9fb6b60bd69a/1/XTCXTWnj8OUt1xbh41nSQTbmmP4.roa
File: XTCXTWnj8OUt1xbh41nSQTbmmP4.roa (raw, json)
Hash identifier: 850v2/SdK0w/FOFTaXVxx5pWqFXgLAnjwvMwFRGYr4Q=
Subject key identifier: 5D:30:97:4D:69:E3:F0:E5:2D:D7:16:E1:E3:59:D2:41:36:E6:98:FE
Certificate issuer: /CN=92c71c2078a91e76c0e5a6d30096872c922c9cdc
Certificate serial: 0184C8D25E7029081E776BA4869ED9FED45E
Authority key identifier: 92:C7:1C:20:78:A9:1E:76:C0:E5:A6:D3:00:96:87:2C:92:2C:9C:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ksccIHipHnbA5abTAJaHLJIsnNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/c17237-a134-4b11-ab12-9fb6b60bd69a/1/XTCXTWnj8OUt1xbh41nSQTbmmP4.roa
Signing time: Wed 30 Nov 2022 13:55:40 +0000
ROA not before: Wed 30 Nov 2022 13:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50564
IP address blocks: 185.208.21.0/24 maxlen: 24
185.208.22.0/24 maxlen: 24
185.208.23.0/24 maxlen: 24
185.208.20.0/22 maxlen: 22
185.208.20.0/24 maxlen: 24
45.131.28.0/24 maxlen: 24
45.131.28.0/22 maxlen: 22
45.131.29.0/24 maxlen: 24
45.131.30.0/24 maxlen: 24
45.131.31.0/24 maxlen: 24
185.143.138.0/24 maxlen: 24
185.143.139.0/24 maxlen: 24
185.143.136.0/22 maxlen: 22
185.143.136.0/24 maxlen: 24
185.143.137.0/24 maxlen: 24
185.184.0.0/22 maxlen: 22
185.184.0.0/24 maxlen: 24
185.184.1.0/24 maxlen: 24
185.184.2.0/24 maxlen: 24
185.184.3.0/24 maxlen: 24
185.95.124.0/22 maxlen: 22
185.95.124.0/24 maxlen: 24
185.95.125.0/24 maxlen: 24
185.95.126.0/24 maxlen: 24
185.95.127.0/24 maxlen: 24
185.213.48.0/22 maxlen: 22
185.213.49.0/24 maxlen: 24
185.213.50.0/24 maxlen: 24
185.213.51.0/24 maxlen: 24
185.213.48.0/24 maxlen: 24
185.44.24.0/24 maxlen: 24
185.44.24.0/22 maxlen: 22
185.44.25.0/24 maxlen: 24
185.44.26.0/24 maxlen: 24
185.44.27.0/24 maxlen: 24
94.158.252.0/22 maxlen: 22
94.158.252.0/24 maxlen: 24
94.158.253.0/24 maxlen: 24
94.158.255.0/24 maxlen: 24
94.158.254.0/24 maxlen: 24
185.104.236.0/24 maxlen: 24
185.104.236.0/22 maxlen: 22
185.104.237.0/24 maxlen: 24
185.104.238.0/24 maxlen: 24
185.104.239.0/24 maxlen: 24
185.182.124.0/24 maxlen: 24
185.182.124.0/22 maxlen: 22
185.182.125.0/24 maxlen: 24
185.182.126.0/24 maxlen: 24
185.182.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:d2:5e:70:29:08:1e:77:6b:a4:86:9e:d9:fe:d4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92c71c2078a91e76c0e5a6d30096872c922c9cdc
Validity
Not Before: Nov 30 13:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d30974d69e3f0e52dd716e1e359d24136e698fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:01:43:e7:78:36:59:7f:67:5a:2b:9e:ec:23:
5f:43:f2:c8:50:a0:68:08:78:15:bf:5b:c6:47:4d:
6c:63:d6:0e:1b:e6:24:41:66:e2:4a:03:31:14:9e:
80:2e:18:82:b3:c5:b3:5a:bc:07:1e:61:10:70:1a:
e9:28:c7:10:aa:e7:e0:0b:eb:9c:08:94:09:0a:c5:
7a:1b:78:c4:22:e7:71:b0:74:f7:f3:34:dd:8b:96:
de:e9:7b:bf:01:df:a3:49:90:26:52:b5:a6:95:e7:
c1:d5:c8:c1:93:ef:b4:5b:ad:23:ad:1c:da:f3:98:
59:c7:ec:d9:01:ea:7c:c0:e0:9b:b0:ba:0c:d1:6f:
14:c6:73:d3:f3:b7:4a:6d:0e:4d:33:5c:72:8a:78:
48:0c:0c:5e:5f:5e:aa:a2:3a:cc:5e:95:6b:c2:37:
39:86:1d:12:06:2c:89:84:51:cd:4c:72:3c:86:3a:
50:62:56:34:ca:2b:00:20:3f:a7:bb:8a:ab:79:2d:
c5:d3:ee:4e:57:2e:9a:7c:72:26:44:40:8e:a5:79:
d8:c5:ce:4a:59:32:5e:3d:bf:12:e9:8c:f1:a2:f5:
7d:d6:67:13:01:d1:d0:ec:07:9b:0b:b7:8c:86:b7:
bc:a3:42:bb:89:1e:29:5e:d9:3e:91:40:b8:c1:65:
7c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:30:97:4D:69:E3:F0:E5:2D:D7:16:E1:E3:59:D2:41:36:E6:98:FE
X509v3 Authority Key Identifier:
keyid:92:C7:1C:20:78:A9:1E:76:C0:E5:A6:D3:00:96:87:2C:92:2C:9C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ksccIHipHnbA5abTAJaHLJIsnNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c17237-a134-4b11-ab12-9fb6b60bd69a/1/XTCXTWnj8OUt1xbh41nSQTbmmP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c17237-a134-4b11-ab12-9fb6b60bd69a/1/ksccIHipHnbA5abTAJaHLJIsnNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.28.0/22
94.158.252.0/22
185.44.24.0/22
185.95.124.0/22
185.104.236.0/22
185.143.136.0/22
185.182.124.0/22
185.184.0.0/22
185.208.20.0/22
185.213.48.0/22
Signature Algorithm: sha256WithRSAEncryption
99:83:4d:da:7e:5b:5c:88:eb:47:b1:d8:5b:66:a8:84:c3:2a:
ad:3f:24:9a:24:ee:34:0b:1e:6b:28:5d:5e:6b:94:7d:f0:c6:
15:a1:b7:fb:87:a7:ad:2e:55:1a:fb:0e:46:a3:a4:ff:df:0a:
ed:10:fe:65:db:01:b7:6b:a9:06:bb:5a:6b:77:93:79:9d:65:
b5:90:a3:16:0e:0a:88:a2:51:cf:3e:a4:6d:e7:24:ab:73:04:
12:5b:c2:a7:28:fd:ac:0a:c7:f9:22:08:2d:2c:23:78:d5:1f:
f4:b2:c3:16:0d:3e:f2:44:04:1d:08:7c:cd:9a:75:d8:e2:bb:
1e:51:78:5d:9b:ac:9d:d4:41:07:86:66:86:f5:8a:f5:04:24:
25:15:6b:df:b9:24:02:08:ce:51:ed:aa:77:a3:7c:6b:aa:02:
cc:2d:80:19:ce:eb:23:3a:31:55:0f:6a:62:52:d4:7e:e9:0c:
c9:ee:af:9a:db:65:f5:fd:33:06:73:71:dd:61:90:80:65:51:
20:fa:de:96:6c:08:33:8d:f7:22:93:fc:13:69:ae:60:16:57:
aa:cd:3a:2a:44:60:4f:a5:38:68:5c:f6:41:fd:b0:fa:2d:f9:
89:f3:d5:88:19:ca:9f:90:7a:3b:79:82:67:07:53:2a:e8:ca:
04:a5:11:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:10 2024 by rpki-client on console-fra.rpki-client.org