Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/1mosoPAi114_my6PPlpJwuFsYnU.roa
File: 1mosoPAi114_my6PPlpJwuFsYnU.roa (raw, json)
Hash identifier: TruaPtq1WJ45QRrHYc+HReU3Neyyw5gqRkMQOEDne8g=
Subject key identifier: D6:6A:2C:A0:F0:22:D7:5E:3F:9B:2E:8F:3E:5A:49:C2:E1:6C:62:75
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 01834FF9E4A5C139D95C63C6AE30DCC94368
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/1mosoPAi114_my6PPlpJwuFsYnU.roa
Signing time: Sun 18 Sep 2022 09:42:00 +0000
ROA not before: Sun 18 Sep 2022 09:42:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199081
IP address blocks: 45.66.187.0/24 maxlen: 24
185.70.78.0/24 maxlen: 24
185.70.78.0/23 maxlen: 23
185.70.77.0/24 maxlen: 24
185.70.76.0/24 maxlen: 24
185.70.76.0/22 maxlen: 22
45.66.185.0/24 maxlen: 24
45.66.186.0/24 maxlen: 24
185.205.96.0/24 maxlen: 24
185.205.96.0/22 maxlen: 22
185.205.97.0/24 maxlen: 24
185.205.98.0/24 maxlen: 24
185.205.99.0/24 maxlen: 24
185.70.79.0/24 maxlen: 24
185.168.38.0/24 maxlen: 24
185.168.36.0/22 maxlen: 22
185.168.38.0/23 maxlen: 23
185.168.39.0/24 maxlen: 24
109.68.144.0/21 maxlen: 21
109.68.144.0/24 maxlen: 24
109.68.145.0/24 maxlen: 24
109.68.146.0/24 maxlen: 24
109.68.147.0/24 maxlen: 24
109.68.151.0/24 maxlen: 24
109.68.149.0/24 maxlen: 24
109.68.150.0/24 maxlen: 24
109.68.148.0/24 maxlen: 24
91.193.62.0/24 maxlen: 24
91.193.63.0/24 maxlen: 24
91.193.60.0/22 maxlen: 22
91.193.60.0/24 maxlen: 24
91.193.61.0/24 maxlen: 24
5.172.192.0/20 maxlen: 20
5.172.192.0/24 maxlen: 24
5.172.192.0/22 maxlen: 22
5.172.198.0/24 maxlen: 24
5.172.199.0/24 maxlen: 24
5.172.196.0/22 maxlen: 22
5.172.196.0/24 maxlen: 24
5.172.197.0/24 maxlen: 24
5.172.195.0/24 maxlen: 24
5.172.193.0/24 maxlen: 24
5.172.194.0/24 maxlen: 24
5.172.204.0/24 maxlen: 24
5.172.205.0/24 maxlen: 24
5.172.204.0/22 maxlen: 22
5.172.206.0/24 maxlen: 24
5.172.203.0/24 maxlen: 24
5.172.202.0/24 maxlen: 24
5.172.200.0/22 maxlen: 22
5.172.200.0/24 maxlen: 24
5.172.201.0/24 maxlen: 24
178.21.175.0/24 maxlen: 24
178.21.173.0/24 maxlen: 24
178.21.174.0/24 maxlen: 24
178.21.172.0/24 maxlen: 24
178.21.172.0/22 maxlen: 22
178.21.170.0/24 maxlen: 24
178.21.171.0/24 maxlen: 24
178.21.168.0/24 maxlen: 24
178.21.169.0/24 maxlen: 24
178.21.168.0/22 maxlen: 22
178.21.168.0/21 maxlen: 21
185.118.125.0/24 maxlen: 24
2a02:4fc0:4000::/48 maxlen: 48
2a02:4fc0:4001::/48 maxlen: 48
2a02:4fc0:4100::/40 maxlen: 40
2a02:4fc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4f:f9:e4:a5:c1:39:d9:5c:63:c6:ae:30:dc:c9:43:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Sep 18 09:42:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d66a2ca0f022d75e3f9b2e8f3e5a49c2e16c6275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:88:3a:c2:cc:fd:3b:54:d8:b1:f8:84:df:7a:
ba:97:64:d5:6d:50:01:1f:35:70:9c:ad:a6:35:fa:
47:15:cc:90:4b:47:9b:4c:89:1a:dd:2d:7b:5f:a3:
7a:81:26:8a:a3:93:5b:c0:7b:c7:a7:b3:a4:68:ef:
b5:15:94:e4:e9:00:08:15:a2:26:0b:7a:ee:8a:2c:
cc:33:db:de:e7:f2:f3:3c:18:0b:46:04:5e:ee:e9:
7b:e7:40:8e:d8:1d:bd:ad:9f:0a:41:3c:0a:87:fe:
08:eb:df:ad:4e:33:8f:81:8c:67:91:49:5b:88:ec:
4d:d0:70:2f:cd:69:46:a6:98:f1:ff:d4:29:ad:75:
8a:f6:e1:62:b0:b2:ae:f7:53:52:3c:a6:62:14:f9:
8f:5e:70:7f:22:69:1e:36:54:20:e1:ed:0e:db:3a:
61:ba:8d:7f:cb:7a:dc:12:ce:a6:9a:fb:7f:c3:36:
fe:49:b9:5e:f8:c7:e8:8c:30:21:8b:27:2d:8c:77:
12:db:32:45:07:68:83:e6:c6:25:e9:a6:4c:76:7e:
fc:0c:63:30:3c:93:34:47:df:0e:e6:fb:d4:8c:20:
b9:16:e1:ed:49:62:5e:12:55:13:cd:0c:80:b8:69:
b3:09:b3:11:a5:a4:7a:a4:75:6b:7a:1e:c6:81:be:
d7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6A:2C:A0:F0:22:D7:5E:3F:9B:2E:8F:3E:5A:49:C2:E1:6C:62:75
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/1mosoPAi114_my6PPlpJwuFsYnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.192.0/20
45.66.185.0-45.66.187.255
91.193.60.0/22
109.68.144.0/21
178.21.168.0/21
185.70.76.0/22
185.118.125.0/24
185.168.36.0/22
185.205.96.0/22
IPv6:
2a02:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
02:34:f5:82:b2:7e:2a:22:e2:f6:0e:a3:ed:6e:c8:17:f4:da:
37:ef:ff:af:20:fa:eb:85:88:42:dd:a1:30:ef:cb:94:eb:66:
79:4c:dd:dc:2d:4d:d6:aa:4b:f9:ad:7c:fd:de:92:db:63:88:
7d:b4:64:cc:54:67:5d:9b:77:d9:e6:ce:2b:99:d6:f3:b4:03:
1c:5c:af:b5:85:ba:4c:4c:8e:ad:f7:ef:e5:06:9f:ef:27:ac:
dd:ec:d5:34:8c:97:60:6e:9b:aa:cf:2e:0a:36:a2:96:5c:a4:
1c:d9:8f:ad:f2:d4:97:18:a3:9b:e1:05:06:40:87:64:88:2e:
38:e9:62:3f:34:74:eb:44:6d:fd:00:17:c7:6d:75:35:10:85:
82:d2:18:6e:be:1b:8a:3b:9e:89:e4:66:4b:e5:f1:14:97:9e:
4d:ad:07:ed:c5:ec:f1:3d:80:b6:0b:b6:bb:c9:1a:f5:6b:e6:
ae:90:87:bc:22:3f:0d:73:48:92:e9:2d:da:3c:b8:8e:0b:1c:
b2:62:ee:7c:43:f4:24:81:35:d4:50:7e:bc:9a:f3:41:b7:5b:
ee:74:95:80:fa:fb:01:2c:e8:d9:dd:ec:15:45:9a:ec:90:c8:
cf:00:44:12:f0:cc:0c:eb:4f:75:6e:ac:7b:61:c9:b2:4b:44:
25:b5:9b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:49 2024 by rpki-client on console-ams.rpki-client.org