Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/bvL5jfzXnogdIBr7eHYzQOk6uNU.roa
File: bvL5jfzXnogdIBr7eHYzQOk6uNU.roa (raw, json)
Hash identifier: O0J8pHsrTSvKLfuF3ycMBsLCRpMScMWCh7uIZc84seA=
Subject key identifier: 6E:F2:F9:8D:FC:D7:9E:88:1D:20:1A:FB:78:76:33:40:E9:3A:B8:D5
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 09049674
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/bvL5jfzXnogdIBr7eHYzQOk6uNU.roa
Signing time: Tue 29 Mar 2022 09:03:18 +0000
ROA not before: Tue 29 Mar 2022 09:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.140.10.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
195.60.176.0/24 maxlen: 24
195.60.177.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151295604 (0x9049674)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Mar 29 09:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ef2f98dfcd79e881d201afb78763340e93ab8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:42:21:61:6d:0b:b4:71:94:a1:bb:a6:b8:1a:
c0:1e:25:59:03:04:65:96:f0:97:f6:42:1d:8e:da:
e1:30:8c:83:07:bf:dc:84:26:16:56:38:65:04:f7:
97:85:88:b3:b9:de:5f:fe:ac:a6:52:39:75:6e:5f:
d5:a3:e9:53:a1:d7:c5:ec:c2:16:52:52:6e:f8:a7:
43:94:d6:9f:52:a8:4a:47:e1:c1:7d:bb:57:ee:9d:
33:e0:d4:13:e4:9e:dc:18:f1:39:56:6b:ca:27:04:
8e:af:91:ef:0b:d7:9c:74:92:b1:c3:ff:03:df:51:
39:77:ed:5b:30:a0:00:c0:d7:d4:c8:43:8a:1f:62:
65:2e:e6:e2:ff:43:9b:53:c3:cd:1e:b8:d6:15:9b:
06:e1:39:7c:f0:7a:03:f7:70:7d:e0:ff:f9:76:4f:
c8:18:db:0a:59:24:82:a0:0f:b1:b1:51:7e:12:8f:
cc:92:6c:bf:16:b6:d1:8c:b3:e7:d5:62:b3:6a:c5:
1f:d0:3c:5e:93:50:c9:13:3e:8d:83:ee:c9:c7:90:
10:90:3d:f8:ae:a9:9a:35:0e:2a:d4:7e:81:97:30:
1f:d2:99:5e:e8:45:09:4c:a0:dd:94:4a:38:ee:21:
36:0b:b9:02:dd:51:24:2b:4b:fa:1c:05:b8:8e:0e:
c4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F2:F9:8D:FC:D7:9E:88:1D:20:1A:FB:78:76:33:40:E9:3A:B8:D5
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/bvL5jfzXnogdIBr7eHYzQOk6uNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.10.0/24
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0-185.208.210.255
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.7.0/24
195.60.176.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
99:3f:55:bd:3b:e4:53:fb:0b:56:0a:d3:b7:72:b4:9d:eb:f0:
f1:6a:19:94:93:9f:7a:a4:03:60:1d:a1:09:dc:36:25:b5:28:
31:d0:5f:7b:f6:de:d6:41:c0:39:b1:02:d4:96:4f:49:c0:b3:
b1:ec:0d:4f:f0:14:61:de:c3:0c:d5:df:cf:87:9e:69:c7:25:
c7:68:7a:53:4a:a2:4a:8c:48:3a:ce:fc:1d:da:39:67:ca:7b:
f3:1f:4d:aa:da:cd:01:e0:1c:31:f9:68:5f:6c:fc:fe:d5:41:
5b:81:7c:83:9c:b2:7a:4b:11:30:a1:0e:66:e8:90:31:60:15:
09:72:bb:8c:e9:f9:93:3c:89:cf:f8:25:60:dc:67:09:36:fa:
6c:d3:5d:0d:c6:50:cd:b4:c8:2a:f4:38:1d:cb:e1:22:0c:ca:
9b:a6:cf:6b:d6:19:1e:26:cf:ce:93:2f:bd:16:28:98:b6:5f:
71:d7:6b:28:14:aa:e8:36:83:ee:af:a0:9b:d7:f4:45:e0:48:
7a:4c:f6:ae:22:24:6b:1b:76:f8:f3:7b:67:13:5a:c1:2c:71:
38:0c:1a:a0:04:e2:56:a6:58:cd:cb:62:71:d5:09:ec:69:77:
e0:3d:c8:14:7b:c7:fe:e1:00:72:1e:03:e4:72:a8:34:8d:96:
f4:df:29:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org