Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/00xPwojtmSnKLaKfKOzHVuEL7sY.roa
File: 00xPwojtmSnKLaKfKOzHVuEL7sY.roa (raw, json)
Hash identifier: 021kgv37BjgM6oB5BIG7/Scmt/UJTtopocmgIAO6DTk=
Subject key identifier: D3:4C:4F:C2:88:ED:99:29:CA:2D:A2:9F:28:EC:C7:56:E1:0B:EE:C6
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 0182F8372EC6D3B91AFDA550A6D281DA704F
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/00xPwojtmSnKLaKfKOzHVuEL7sY.roa
Signing time: Thu 01 Sep 2022 08:42:22 +0000
ROA not before: Thu 01 Sep 2022 08:42:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 152.228.128.0/17 maxlen: 17
94.23.0.0/16 maxlen: 16
51.178.0.0/16 maxlen: 16
51.77.0.0/16 maxlen: 16
193.70.0.0/17 maxlen: 17
91.134.0.0/16 maxlen: 16
162.19.128.0/17 maxlen: 17
145.239.0.0/16 maxlen: 16
149.202.0.0/16 maxlen: 16
137.74.0.0/16 maxlen: 16
54.37.0.0/16 maxlen: 16
188.165.0.0/16 maxlen: 16
51.195.0.0/16 maxlen: 16
92.222.0.0/16 maxlen: 16
141.94.0.0/16 maxlen: 16
91.121.0.0/16 maxlen: 16
5.39.0.0/17 maxlen: 17
198.244.128.0/17 maxlen: 17
213.32.0.0/17 maxlen: 17
146.59.0.0/17 maxlen: 17
178.32.0.0/15 maxlen: 15
37.187.0.0/16 maxlen: 16
37.59.0.0/16 maxlen: 16
146.59.0.0/16 maxlen: 16
54.36.0.0/16 maxlen: 16
162.19.0.0/17 maxlen: 17
51.83.0.0/16 maxlen: 16
213.251.128.0/18 maxlen: 18
79.137.0.0/17 maxlen: 17
141.95.128.0/17 maxlen: 17
51.210.0.0/16 maxlen: 16
135.125.128.0/17 maxlen: 17
213.186.32.0/19 maxlen: 19
51.75.0.0/16 maxlen: 16
51.38.0.0/16 maxlen: 16
54.38.0.0/16 maxlen: 16
46.105.198.0/24 maxlen: 24
46.105.199.0/24 maxlen: 24
46.105.200.0/24 maxlen: 24
46.105.201.0/24 maxlen: 24
46.105.202.0/24 maxlen: 24
46.105.203.0/24 maxlen: 24
46.105.204.0/24 maxlen: 24
51.89.0.0/16 maxlen: 16
5.135.0.0/16 maxlen: 16
135.125.0.0/17 maxlen: 17
57.128.0.0/17 maxlen: 17
51.91.0.0/16 maxlen: 16
217.182.0.0/16 maxlen: 16
164.132.0.0/16 maxlen: 16
5.196.0.0/16 maxlen: 16
51.68.0.0/16 maxlen: 16
141.95.0.0/17 maxlen: 17
176.31.0.0/16 maxlen: 16
147.135.128.0/17 maxlen: 17
87.98.128.0/17 maxlen: 17
57.128.128.0/18 maxlen: 18
46.105.0.0/16 maxlen: 16
2001:41d0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:37:2e:c6:d3:b9:1a:fd:a5:50:a6:d2:81:da:70:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Sep 1 08:42:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d34c4fc288ed9929ca2da29f28ecc756e10beec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4d:11:54:ca:31:2e:ce:ad:1d:1a:e2:6d:fd:
2e:21:72:22:f3:c8:8b:3e:ea:f2:1f:28:2b:4c:61:
78:f5:9c:2d:18:2f:83:9c:52:18:12:36:1e:16:23:
a1:15:0b:e5:93:32:27:0d:a3:14:b2:ed:7c:be:8e:
79:4a:05:93:1a:fa:dc:03:f4:e2:8d:21:8b:52:b4:
6e:ae:09:5a:46:1e:a5:fb:b2:85:a6:0a:22:84:0e:
f3:63:1f:5f:ab:17:63:eb:59:41:d3:8e:44:b7:81:
ec:8c:0e:62:1a:3f:d4:eb:b0:f3:e6:b8:33:1c:92:
49:15:0d:ce:99:c0:80:13:e6:c4:2a:0e:35:f9:d3:
c5:29:b4:28:fc:57:a7:3b:c9:68:1d:2b:d3:80:7a:
42:f0:92:78:3f:e9:84:12:fb:91:64:3b:36:01:24:
58:4c:05:69:77:c6:7f:fa:6e:ae:f3:39:db:23:0e:
ff:aa:16:4b:11:53:09:2f:30:5d:5a:d5:e4:dc:6b:
ad:42:b9:cb:d3:6a:3a:8e:af:58:fa:17:ce:03:10:
f1:07:85:8a:41:f5:04:4d:b3:1d:04:8f:48:94:67:
8e:fc:7b:b8:2c:07:7d:e9:a3:19:f7:13:97:c7:2d:
b9:57:39:ea:a9:89:4f:3b:a3:1c:05:96:b2:1f:f7:
4e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4C:4F:C2:88:ED:99:29:CA:2D:A2:9F:28:EC:C7:56:E1:0B:EE:C6
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/00xPwojtmSnKLaKfKOzHVuEL7sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
46.105.0.0/16
51.38.0.0/16
51.68.0.0/16
51.75.0.0/16
51.77.0.0/16
51.83.0.0/16
51.89.0.0/16
51.91.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
54.36.0.0-54.38.255.255
57.128.0.0-57.128.191.255
79.137.0.0/17
87.98.128.0/17
91.121.0.0/16
91.134.0.0/16
92.222.0.0/16
94.23.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
145.239.0.0/16
146.59.0.0/16
147.135.128.0/17
149.202.0.0/16
152.228.128.0/17
162.19.0.0/16
164.132.0.0/16
176.31.0.0/16
178.32.0.0/15
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
IPv6:
2001:41d0::/32
Signature Algorithm: sha256WithRSAEncryption
26:a1:96:2b:81:15:a1:b4:a0:83:8a:0b:1d:5c:08:2e:26:03:
31:4e:a3:98:93:c1:04:70:bc:83:bc:06:c9:9d:31:cc:cd:39:
55:ca:d7:94:d2:d2:39:b0:60:51:ae:25:d8:57:26:bc:9f:fe:
28:87:b3:af:15:39:19:d3:7a:b7:39:69:ff:76:00:20:2f:25:
76:a6:e7:e1:fa:e3:88:a6:14:b9:5d:e6:3e:81:5f:2c:e2:fd:
80:43:ef:42:f1:df:77:30:3b:03:93:88:14:a6:66:99:a0:7f:
6d:9d:20:53:75:dc:46:c4:ac:26:51:f8:79:f2:9f:7c:24:80:
3a:e6:eb:ca:68:e8:c0:09:3f:74:25:da:0f:cf:57:11:60:b2:
c0:e4:5c:69:c1:ff:9a:c9:43:e1:b3:fb:5e:cf:42:ae:42:dd:
0d:4b:c4:31:60:60:7c:7e:f4:9b:4a:4f:e7:fd:35:50:d7:0d:
3b:24:39:28:95:1b:2c:2d:b9:f5:fd:7a:dc:23:14:2d:2d:19:
c9:82:5e:1d:b4:0c:f4:0c:37:1b:23:d7:e7:21:4d:ce:15:78:
e8:88:54:0c:7f:9e:58:e6:98:27:4f:b0:37:24:d5:bd:5b:ea:
7d:6e:89:e2:f4:80:30:2c:98:93:08:d9:bb:28:d4:56:51:f2:
60:f4:a0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:19 2024 by rpki-client on console-ams.rpki-client.org