Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/OBTt4d5xJkzVc_9lUZbItKEGjTE.roa
File: OBTt4d5xJkzVc_9lUZbItKEGjTE.roa (raw, json)
Hash identifier: nbbNvCbNZ6KF4dQD80nCdoZ1byupsUo0d6x5zeH4PJ0=
Subject key identifier: 38:14:ED:E1:DE:71:26:4C:D5:73:FF:65:51:96:C8:B4:A1:06:8D:31
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38718B23
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/OBTt4d5xJkzVc_9lUZbItKEGjTE.roa
Signing time: Sat 01 Jan 2022 05:54:10 +0000
ROA not before: Sat 01 Jan 2022 05:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2588
IP address blocks: 159.148.116.0/24 maxlen: 24
159.148.117.0/24 maxlen: 24
80.81.32.0/19 maxlen: 19
83.223.128.0/19 maxlen: 19
217.69.112.0/20 maxlen: 20
109.205.120.0/21 maxlen: 21
109.205.127.0/24 maxlen: 24
85.254.128.0/18 maxlen: 18
91.190.32.0/19 maxlen: 19
159.148.10.0/24 maxlen: 24
159.148.0.0/16 maxlen: 16
159.148.233.0/24 maxlen: 24
85.254.49.0/24 maxlen: 24
85.254.58.0/24 maxlen: 24
85.254.69.0/24 maxlen: 24
94.101.224.0/20 maxlen: 20
46.19.200.0/21 maxlen: 21
185.27.92.0/22 maxlen: 22
185.176.116.0/22 maxlen: 22
159.148.188.0/24 maxlen: 24
85.254.0.0/17 maxlen: 17
2a02:610::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 946965283 (0x38718b23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3814ede1de71264cd573ff655196c8b4a1068d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:18:55:4d:21:f3:94:bf:15:bd:fb:6e:54:f1:
c2:15:8d:aa:a4:cd:ef:e8:a8:b5:7c:2b:c5:a9:19:
95:95:4f:17:06:32:20:1c:90:e9:17:19:ec:2e:64:
91:4f:da:19:14:fd:e7:80:a0:43:59:63:c8:88:48:
0e:f1:d2:2d:64:17:77:81:97:a9:55:eb:a2:40:66:
f4:a7:5a:67:b2:be:43:eb:64:8a:da:80:05:56:f8:
5d:6a:92:f5:97:ae:0c:e2:9f:55:17:ca:1a:66:f0:
b9:00:17:96:17:a0:26:59:ac:1d:37:d0:1c:49:d6:
ba:44:be:3b:bd:30:20:c0:f4:d3:70:47:b8:cd:b3:
21:44:93:5a:10:ac:96:1d:59:b8:bd:95:ef:ad:c0:
8e:8b:3f:de:f9:25:46:c1:1b:24:49:9b:88:d0:97:
3b:ae:93:62:4f:c0:1e:d1:8c:35:57:54:ac:48:1f:
7d:ed:61:c2:b1:b7:ed:d9:83:b8:2c:8a:a4:f8:0e:
ac:4a:0f:59:58:5a:7c:f8:93:fb:e2:70:33:93:8c:
6a:29:6d:48:39:24:05:3e:e3:86:94:f0:57:d5:8b:
a2:18:01:1e:6b:f7:5f:6e:e9:1a:58:b2:03:0b:73:
46:51:25:d6:e3:64:87:0c:dc:e2:49:90:0e:da:0e:
1e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:14:ED:E1:DE:71:26:4C:D5:73:FF:65:51:96:C8:B4:A1:06:8D:31
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/OBTt4d5xJkzVc_9lUZbItKEGjTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.200.0/21
80.81.32.0/19
83.223.128.0/19
85.254.0.0-85.254.191.255
91.190.32.0/19
94.101.224.0/20
109.205.120.0/21
159.148.0.0/16
185.27.92.0/22
185.176.116.0/22
217.69.112.0/20
IPv6:
2a02:610::/32
Signature Algorithm: sha256WithRSAEncryption
5a:27:84:15:ee:d7:3f:31:e2:65:34:a2:b5:bf:75:92:00:64:
37:89:16:07:8a:02:c6:01:3e:bf:e3:d3:79:aa:ba:cb:cc:9c:
ef:8e:e4:b2:17:ec:cc:7b:db:db:dd:a5:4c:aa:45:92:d9:bb:
96:a8:87:70:fe:37:d7:8c:86:32:a0:39:24:31:f0:91:5c:82:
2a:83:78:7d:ea:61:6c:ad:3e:b4:fd:bc:28:2e:79:44:ae:5a:
64:15:82:01:ab:c5:06:73:19:56:9e:29:9d:89:bd:89:cf:fa:
78:01:f0:02:7e:63:39:54:8a:eb:dc:c0:f5:ad:e8:ab:1a:49:
5e:23:62:d4:de:de:62:ec:e8:d6:89:aa:fa:cd:c1:d3:d3:42:
67:cc:d4:86:26:b1:42:24:96:49:d3:50:ed:8b:52:ce:e8:6c:
a7:1e:25:18:10:05:3d:32:21:91:4d:fb:63:a6:e7:e1:2f:2d:
57:50:ab:db:00:bd:9d:39:32:66:14:75:1c:57:e0:1f:9d:6d:
19:37:d6:56:b0:b0:74:db:37:54:c6:c0:96:4d:11:fa:bf:3b:
0b:2d:7a:08:64:1a:50:62:ac:97:2f:e6:ec:f1:a1:23:96:29:
62:41:ff:4d:1e:ec:3f:4a:01:59:78:94:00:08:38:69:e2:dd:
51:36:31:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org