Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yZ5mgUqXF1-IxqngVdlqiPMttTI.roa
File: yZ5mgUqXF1-IxqngVdlqiPMttTI.roa (raw, json)
Hash identifier: OABHe/sBEcKFpO8YtytUHw3aZ3BoMN6TE4F80nOO8G0=
Subject key identifier: C9:9E:66:81:4A:97:17:5F:88:C6:A9:E0:55:D9:6A:88:F3:2D:B5:32
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018506C99A331F44407ED269F0E4D4FE5DB2
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yZ5mgUqXF1-IxqngVdlqiPMttTI.roa
Signing time: Mon 12 Dec 2022 14:42:33 +0000
ROA not before: Mon 12 Dec 2022 14:42:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.140.10.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
193.109.137.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:c9:9a:33:1f:44:40:7e:d2:69:f0:e4:d4:fe:5d:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Dec 12 14:42:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c99e66814a97175f88c6a9e055d96a88f32db532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:b8:21:37:80:b4:f4:fe:b5:84:0e:bd:e0:
c0:6e:29:7f:9b:23:99:a8:af:6b:26:ef:d1:91:fd:
d0:b5:c4:c6:ef:24:1e:d1:b8:9a:00:e1:6c:ab:e9:
ba:09:61:36:db:dd:e2:b6:8c:58:e9:f6:f0:2f:28:
03:fd:e2:ae:4f:43:13:a1:51:84:13:42:7d:ce:8e:
29:d8:ad:13:fc:36:8b:8d:6b:a8:ce:b3:ef:67:fd:
21:ee:fd:3d:65:88:9f:85:c1:41:62:ce:2e:93:d4:
a8:e5:67:90:96:1e:87:4c:30:5a:2a:63:71:77:af:
a8:43:8a:73:5b:1b:04:41:bd:f2:86:4b:f8:8f:da:
a3:ee:78:e9:e5:a7:93:e2:89:41:f6:cf:f0:c0:41:
ba:08:4c:1e:b5:f5:1b:5d:28:0e:ae:dc:52:94:b5:
38:66:f2:92:19:c9:ff:1e:5b:f5:ab:50:f0:33:81:
ac:38:2b:03:7f:16:ff:ae:e8:f1:72:d7:e5:44:ce:
52:87:68:00:2e:49:9f:9e:0e:17:c3:e8:fe:e4:67:
7a:2d:c4:c7:5c:c5:2a:de:9a:86:2c:e7:92:f5:10:
2b:e4:86:25:3c:14:5a:f7:a9:52:5a:79:fd:3a:10:
d9:9e:3a:ff:9f:05:b6:18:db:a9:77:74:3d:f7:29:
98:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9E:66:81:4A:97:17:5F:88:C6:A9:E0:55:D9:6A:88:F3:2D:B5:32
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yZ5mgUqXF1-IxqngVdlqiPMttTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.10.0/24
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0-185.208.210.255
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.109.137.0/24
194.146.48.0/24
195.26.6.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
19:c0:d4:83:f6:8f:9e:d8:e5:03:d0:4a:4f:74:22:34:b5:7b:
86:21:80:d2:44:45:e0:4e:6c:7c:1f:e6:bd:9e:c8:d1:fb:9c:
64:97:fd:80:a5:5e:7c:cd:b5:99:ba:32:4d:6b:9e:54:12:14:
18:80:c1:de:a7:d8:9b:62:82:f1:39:c0:de:ea:fa:83:b3:22:
dd:65:09:51:10:47:1d:01:1c:bb:a7:2c:9b:90:86:00:f4:92:
89:d1:77:24:0c:16:91:f2:31:8d:c0:6b:2f:85:42:d1:1d:26:
41:91:f8:7b:2a:63:7e:d3:c6:61:8e:19:06:8a:76:1c:fe:3c:
6e:c9:91:f3:ec:fe:ee:73:83:b6:69:58:34:73:20:22:d1:98:
65:fd:88:ee:05:10:f3:86:28:c1:55:61:fa:75:2a:a0:c0:b8:
e5:91:91:0d:43:99:8a:3a:d6:a9:9c:b7:95:78:bd:7e:46:c1:
20:1c:c9:fe:71:70:ae:43:5b:8f:5e:1f:c8:e4:f6:5b:dc:ac:
d1:3a:55:03:ea:29:14:03:2d:aa:72:ab:00:34:47:ea:51:a4:
c3:b7:36:22:86:34:3f:33:c9:c2:a6:d6:14:d9:3f:2b:0e:2e:
6a:58:a3:4e:22:49:16:43:34:53:ad:cc:ce:f5:0b:95:a3:99:
80:0a:ec:54
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org