Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/qXlC7OSrdersbnoFVe37N37GF3I.roa
File: qXlC7OSrdersbnoFVe37N37GF3I.roa (raw, json)
Hash identifier: awygAsgHBR2ywFQc7INV+Qp1HfRUPVaIqaVDef6VGlQ=
Subject key identifier: A9:79:42:EC:E4:AB:75:EA:EC:6E:7A:05:55:ED:FB:37:7E:C6:17:72
Certificate issuer: /CN=e9fdfcdc3261b57afadfed730fb2dedb28649fcf
Certificate serial: 0182AA90889936F7FC61E94E84A277CB6C8E
Authority key identifier: E9:FD:FC:DC:32:61:B5:7A:FA:DF:ED:73:0F:B2:DE:DB:28:64:9F:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6f383DJhtXr63-1zD7Le2yhkn88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/qXlC7OSrdersbnoFVe37N37GF3I.roa
Signing time: Wed 17 Aug 2022 06:49:34 +0000
ROA not before: Wed 17 Aug 2022 06:49:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202596
IP address blocks: 45.12.240.0/22 maxlen: 22
185.225.44.0/22 maxlen: 22
193.39.240.0/22 maxlen: 22
160.19.180.0/22 maxlen: 22
185.14.88.0/22 maxlen: 22
185.236.184.0/22 maxlen: 22
45.139.12.0/22 maxlen: 22
185.159.76.0/22 maxlen: 22
80.249.16.0/20 maxlen: 20
185.176.160.0/22 maxlen: 22
185.250.188.0/22 maxlen: 22
45.92.120.0/22 maxlen: 22
45.149.188.0/22 maxlen: 22
176.97.152.0/22 maxlen: 22
185.239.32.0/22 maxlen: 22
185.240.108.0/22 maxlen: 22
95.141.16.0/20 maxlen: 20
45.95.156.0/22 maxlen: 22
45.152.232.0/22 maxlen: 22
185.254.136.0/22 maxlen: 22
194.6.251.0/24 maxlen: 24
194.6.252.0/24 maxlen: 24
194.6.254.0/24 maxlen: 24
45.145.48.0/22 maxlen: 22
185.222.80.0/22 maxlen: 22
45.141.132.0/22 maxlen: 22
185.247.172.0/22 maxlen: 22
45.80.244.0/22 maxlen: 22
185.111.72.0/22 maxlen: 22
45.134.228.0/22 maxlen: 22
185.106.72.0/22 maxlen: 22
185.248.104.0/22 maxlen: 22
45.133.120.0/21 maxlen: 21
45.133.128.0/22 maxlen: 22
185.226.36.0/22 maxlen: 22
193.29.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:aa:90:88:99:36:f7:fc:61:e9:4e:84:a2:77:cb:6c:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9fdfcdc3261b57afadfed730fb2dedb28649fcf
Validity
Not Before: Aug 17 06:49:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a97942ece4ab75eaec6e7a0555edfb377ec61772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cc:d7:b8:a3:fd:a8:04:7d:d8:4b:58:32:9f:
ed:db:b5:39:b6:fc:05:16:bd:88:a3:7b:28:b4:f9:
e9:f8:e0:ed:d7:52:1c:0a:5c:8a:04:6d:af:2b:1f:
ba:56:bd:ec:88:65:b3:23:d4:9d:3f:0e:21:df:6a:
c3:d5:5e:f5:25:b2:2c:5d:eb:08:f0:a4:ae:54:50:
4e:fe:15:96:33:39:d4:e8:36:45:36:77:d2:58:df:
fa:a2:ee:5c:d4:5c:e3:72:dc:9e:51:ed:92:9e:46:
02:65:c7:9a:cf:3e:fc:48:3e:cd:01:79:43:62:63:
9d:e3:3d:dd:17:84:b3:87:57:ae:20:34:eb:53:96:
c4:a1:e6:e5:90:6e:29:ec:d7:1c:90:d3:17:98:89:
92:bc:a6:5d:08:7d:58:f2:81:38:89:d9:27:2f:f1:
06:c0:17:74:74:e9:86:f7:ca:f0:57:83:ad:15:fd:
b7:25:a4:99:c6:de:b2:6a:75:43:b5:21:13:6f:6c:
c1:8e:ee:af:a0:3a:01:ff:b2:84:90:6f:85:10:d9:
1b:89:da:56:02:24:c4:3e:b4:40:42:97:54:30:21:
f5:fc:d0:0c:5f:b4:61:ab:68:88:a0:82:ce:e2:28:
4c:12:ce:a2:c3:0c:01:19:d2:e7:90:3b:01:28:55:
c8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:79:42:EC:E4:AB:75:EA:EC:6E:7A:05:55:ED:FB:37:7E:C6:17:72
X509v3 Authority Key Identifier:
keyid:E9:FD:FC:DC:32:61:B5:7A:FA:DF:ED:73:0F:B2:DE:DB:28:64:9F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f383DJhtXr63-1zD7Le2yhkn88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/qXlC7OSrdersbnoFVe37N37GF3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/6f383DJhtXr63-1zD7Le2yhkn88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.240.0/22
45.80.244.0/22
45.92.120.0/22
45.95.156.0/22
45.133.120.0-45.133.131.255
45.134.228.0/22
45.139.12.0/22
45.141.132.0/22
45.145.48.0/22
45.149.188.0/22
45.152.232.0/22
80.249.16.0/20
95.141.16.0/20
160.19.180.0/22
176.97.152.0/22
185.14.88.0/22
185.106.72.0/22
185.111.72.0/22
185.159.76.0/22
185.176.160.0/22
185.222.80.0/22
185.225.44.0/22
185.226.36.0/22
185.236.184.0/22
185.239.32.0/22
185.240.108.0/22
185.247.172.0/22
185.248.104.0/22
185.250.188.0/22
185.254.136.0/22
193.29.28.0/22
193.39.240.0/22
194.6.251.0-194.6.252.255
194.6.254.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:91:1d:a2:35:7c:39:ac:eb:68:ed:6c:b8:68:ed:8a:8c:99:
c1:7c:3e:94:14:3f:d6:78:4e:9f:52:bc:37:41:f9:aa:c3:fc:
e7:33:64:6a:ad:61:81:ed:c9:4c:d0:90:92:e3:89:05:90:7b:
a4:ae:81:8a:16:43:e3:a9:5b:c7:66:e3:d9:ff:03:81:da:af:
ff:24:6b:80:b6:02:8a:ac:b5:37:ba:7c:c3:ae:33:34:4a:3f:
77:9f:46:cb:6e:08:29:2d:2a:69:28:6e:06:88:bb:58:f5:ee:
6c:31:20:c8:7f:57:3a:42:bd:f4:69:4e:d5:5a:f2:0a:2b:4e:
55:6b:f4:c5:11:d0:1b:0e:cd:4c:31:55:2b:8a:5a:9b:d6:4d:
2b:38:d4:9f:bb:97:2b:48:ca:80:2a:76:60:92:ef:d2:2d:86:
f7:18:1e:00:72:39:b6:e7:09:17:9e:8b:c9:3c:12:ab:12:a2:
e0:7e:d9:dd:05:ee:b8:38:49:57:1d:c5:2f:46:ed:43:34:97:
24:90:5b:9d:49:51:c1:02:0a:f0:e7:d7:50:49:d0:dc:be:4f:
3c:68:35:60:6b:96:79:0c:93:e1:d2:e4:b1:8d:75:62:1c:1c:
8e:ec:12:a0:63:60:ce:5b:67:94:26:25:5f:71:7a:9c:03:cb:
21:30:9f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:50 2024 by rpki-client on console-ams.rpki-client.org