Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/rjsvJsSYbQo-nGc7rVITNoTAbKg.roa
File: rjsvJsSYbQo-nGc7rVITNoTAbKg.roa (raw, json)
Hash identifier: spol2zPwn80Mn0re6O6+QDjLf4HhwwH1ebiebU9Dquc=
Subject key identifier: AE:3B:2F:26:C4:98:6D:0A:3E:9C:67:3B:AD:52:13:36:84:C0:6C:A8
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 09CCDBA1
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/rjsvJsSYbQo-nGc7rVITNoTAbKg.roa
Signing time: Tue 14 Jun 2022 08:36:44 +0000
ROA not before: Tue 14 Jun 2022 08:36:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208258
IP address blocks: 45.149.90.0/24 maxlen: 24
185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.140.10.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.7.0/24 maxlen: 24
45.152.8.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164420513 (0x9ccdba1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jun 14 08:36:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae3b2f26c4986d0a3e9c673bad52133684c06ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bc:45:05:31:9d:ce:a7:d2:bf:1f:fd:10:47:
7e:51:bf:3c:59:0f:65:f5:f7:5d:ab:cf:2b:79:17:
e9:cc:33:ff:f9:dc:30:aa:90:5d:9c:03:d7:b7:40:
ee:88:81:07:17:74:ff:8f:7e:7d:bc:4b:9e:98:8a:
9f:d8:53:2b:ae:22:34:fb:22:d4:f1:45:0f:8e:0d:
04:9d:bf:36:2d:6b:f7:ba:d0:ef:2e:91:32:65:62:
4a:b3:1e:49:b6:02:50:d5:6b:a2:be:3b:7e:23:51:
ec:ec:88:57:89:c2:7a:64:56:7d:9b:b8:f0:c0:8b:
de:bf:dd:55:4d:b0:6a:ea:49:ab:01:94:9a:3a:96:
f5:e7:3d:fd:81:95:f0:80:3f:80:36:af:b0:e5:7e:
8a:09:43:9b:98:bb:16:71:74:3f:30:ab:52:96:a3:
26:05:31:46:e5:86:98:e1:d2:18:2a:01:41:78:8a:
30:8c:7a:9e:87:26:8c:d6:99:51:93:e3:02:45:30:
15:b5:77:ac:26:4f:95:70:b2:f6:d6:47:0a:d5:4e:
a7:0c:29:4d:04:f6:2e:11:d4:13:17:c1:fb:92:f5:
d0:5e:d0:6f:df:28:62:29:17:f2:e1:10:3f:c7:94:
ee:84:9d:fb:f8:44:49:58:b2:e5:6c:fc:a0:7d:05:
46:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3B:2F:26:C4:98:6D:0A:3E:9C:67:3B:AD:52:13:36:84:C0:6C:A8
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/rjsvJsSYbQo-nGc7rVITNoTAbKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.10.0/24
45.144.244.0/23
45.149.90.0/24
45.151.156.0-45.151.158.255
45.152.8.0/24
185.208.208.0-185.208.210.255
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.7.0/24
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
80:f9:02:19:1c:46:65:60:16:7a:9f:07:fa:5e:09:c0:0f:d1:
a9:26:b1:69:dd:15:79:6f:dc:7b:86:1c:75:05:60:ab:e0:d9:
bd:12:0d:4e:8a:a2:cd:8b:15:c5:9a:f9:76:f3:2b:d2:b3:d9:
a8:78:f6:8a:13:8c:d7:06:cb:d9:9f:f1:d0:14:0b:a7:ba:db:
60:fb:b1:d4:d1:5e:57:ce:4e:1c:aa:a4:08:52:1d:c7:94:20:
a1:1e:a2:e3:95:2d:70:45:c2:c3:3e:7a:37:9f:b4:6d:c0:49:
b5:af:fe:32:5c:a6:61:75:13:8a:cd:ec:f0:85:03:70:46:e1:
d4:30:eb:20:64:ac:57:82:94:b6:b8:e2:ae:da:95:70:7d:0e:
b3:58:4b:82:3b:27:cc:4b:fb:a8:89:72:af:0f:49:c8:b5:00:
b7:77:7b:f0:99:c8:01:07:6d:8e:4c:a5:f8:e9:df:b0:59:77:
e3:29:c8:a9:3f:76:91:95:fd:21:4b:50:bc:f3:37:ce:dd:97:
ed:cf:54:27:8d:d0:6a:06:5f:38:e0:a2:9f:45:4b:6a:65:db:
cd:8c:4b:40:51:64:4e:c5:3b:bd:cd:f5:c6:a2:d3:f1:b7:b9:
e7:4b:6e:49:b2:ea:dd:46:22:e9:01:d2:dc:24:57:43:31:db:
01:94:4d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org