Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/1-mm9ifV7oPA4yKjL8XVEVijxF8Y.roa
File: 1-mm9ifV7oPA4yKjL8XVEVijxF8Y.roa (raw, json)
Hash identifier: HoOsxLBggIsYaLr71TSKkmT1LHO5SsZ3TaGzOwk/iaM=
Subject key identifier: FA:69:BD:89:F5:7B:A0:F0:38:C8:A8:CB:F1:75:44:56:28:F1:17:C6
Certificate issuer: /CN=43015654082578c4946cd27be1e89a3dd7562fa4
Certificate serial: 018441D5EE3085A5459F10E9000EDBCC585D
Authority key identifier: 43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/1-mm9ifV7oPA4yKjL8XVEVijxF8Y.roa
Signing time: Fri 04 Nov 2022 08:50:49 +0000
ROA not before: Fri 04 Nov 2022 08:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 217.23.0.0/20 maxlen: 20
185.132.132.0/22 maxlen: 22
185.184.192.0/22 maxlen: 22
185.183.32.0/22 maxlen: 22
185.182.192.0/22 maxlen: 22
185.182.192.0/24 maxlen: 24
62.112.8.0/22 maxlen: 24
185.165.240.0/22 maxlen: 22
185.21.60.0/22 maxlen: 22
185.21.63.0/24 maxlen: 24
45.14.132.0/22 maxlen: 22
178.218.196.0/22 maxlen: 22
80.79.4.0/22 maxlen: 22
185.100.232.0/22 maxlen: 22
185.185.48.0/22 maxlen: 22
91.232.105.0/24 maxlen: 24
185.132.176.0/22 maxlen: 22
89.38.96.0/22 maxlen: 22
45.82.64.0/22 maxlen: 22
193.200.164.0/24 maxlen: 24
93.190.136.0/21 maxlen: 22
93.190.140.0/22 maxlen: 22
91.229.23.0/24 maxlen: 24
185.173.160.0/22 maxlen: 22
185.2.80.0/22 maxlen: 22
185.177.124.0/22 maxlen: 22
178.132.0.0/21 maxlen: 21
185.180.220.0/22 maxlen: 22
89.39.104.0/22 maxlen: 22
185.191.0.0/22 maxlen: 22
2.59.168.0/22 maxlen: 22
194.88.104.0/22 maxlen: 22
212.8.240.0/24 maxlen: 24
212.8.242.0/23 maxlen: 23
109.236.80.0/20 maxlen: 20
212.8.252.0/23 maxlen: 23
212.8.248.0/23 maxlen: 23
212.8.250.0/24 maxlen: 24
185.172.88.0/22 maxlen: 22
2a00:7c82::/32 maxlen: 32
2a00:7c81::/32 maxlen: 32
2a00:7c83::/32 maxlen: 32
2a00:7c80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:41:d5:ee:30:85:a5:45:9f:10:e9:00:0e:db:cc:58:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43015654082578c4946cd27be1e89a3dd7562fa4
Validity
Not Before: Nov 4 08:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa69bd89f57ba0f038c8a8cbf175445628f117c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4a:ad:62:81:4b:25:cc:51:8a:8a:96:e7:24:
39:a9:6a:16:13:cb:bb:77:d3:2d:52:ab:7f:12:70:
f9:40:0a:04:1f:35:21:ee:26:b1:fb:14:2f:c8:08:
2f:4c:eb:a7:83:c5:ff:3c:9b:2c:26:6a:e2:07:cb:
fe:86:36:4d:78:a7:b3:05:64:5c:c3:12:b4:35:b9:
3d:1f:46:c7:94:b7:c4:8d:c5:68:2d:f3:e6:61:75:
a4:46:a6:23:55:ed:a5:76:dc:af:1e:1d:a6:27:ba:
cd:72:85:fe:84:bb:ee:f4:bb:8b:e2:20:5d:dc:30:
61:56:1e:8b:7a:d7:66:97:53:70:c0:79:55:f9:19:
76:75:ae:b2:89:97:98:71:96:b1:d5:53:2a:ce:26:
05:0b:e6:1f:67:68:42:db:6b:1b:db:bf:84:ac:85:
cd:df:86:7c:fc:7e:39:6c:c4:08:f3:6d:12:01:61:
2c:5b:6a:d8:c5:7d:cd:4c:47:bb:aa:cf:8f:0a:17:
67:6b:6d:81:9a:8b:c1:74:9f:0c:e7:bc:8a:44:58:
af:bc:1c:cb:b5:29:d9:1a:da:34:17:f7:72:5d:5b:
13:c5:92:60:c2:df:fe:b5:f3:20:d9:42:84:d7:8c:
ed:50:f3:6f:24:3a:9d:01:d7:ac:f4:48:c5:b5:04:
6f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:69:BD:89:F5:7B:A0:F0:38:C8:A8:CB:F1:75:44:56:28:F1:17:C6
X509v3 Authority Key Identifier:
keyid:43:01:56:54:08:25:78:C4:94:6C:D2:7B:E1:E8:9A:3D:D7:56:2F:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwFWVAgleMSUbNJ74eiaPddWL6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/1-mm9ifV7oPA4yKjL8XVEVijxF8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c27fa6-b2b0-4dcb-a899-1030cdbe6bd4/1/QwFWVAgleMSUbNJ74eiaPddWL6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.168.0/22
45.14.132.0/22
45.82.64.0/22
62.112.8.0/22
80.79.4.0/22
89.38.96.0/22
89.39.104.0/22
91.229.23.0/24
91.232.105.0/24
93.190.136.0/21
109.236.80.0/20
178.132.0.0/21
178.218.196.0/22
185.2.80.0/22
185.21.60.0/22
185.100.232.0/22
185.132.132.0/22
185.132.176.0/22
185.165.240.0/22
185.172.88.0/22
185.173.160.0/22
185.177.124.0/22
185.180.220.0/22
185.182.192.0/22
185.183.32.0/22
185.184.192.0/22
185.185.48.0/22
185.191.0.0/22
193.200.164.0/24
194.88.104.0/22
212.8.240.0/24
212.8.242.0/23
212.8.248.0-212.8.250.255
212.8.252.0/23
217.23.0.0/20
IPv6:
2a00:7c80::/29
Signature Algorithm: sha256WithRSAEncryption
06:59:38:39:a3:61:0c:e5:aa:97:7b:c5:39:4d:3e:eb:10:c5:
d0:c6:f5:a8:a9:fd:ea:6b:65:10:37:0d:83:ba:e8:c9:d1:5e:
e7:ff:75:f1:cb:f2:f4:a7:e7:4a:ec:15:fb:22:c5:c6:96:19:
81:a8:b1:b9:67:e3:5c:bc:ba:6f:7a:20:bb:a0:b3:a6:94:fe:
bb:ee:49:cd:c9:8f:fa:41:ee:98:71:14:17:1d:43:ab:3b:d1:
2b:5c:34:ce:c1:27:48:ec:72:dc:4f:f0:ac:47:43:79:d1:c0:
1f:e4:dc:9e:0b:fc:ae:0d:c8:5d:df:e9:db:ad:3e:20:ca:dc:
84:b3:0d:d0:b1:6f:f3:04:df:18:68:b7:8f:7c:3d:64:65:57:
e8:ae:eb:90:c3:9d:ce:76:4d:db:32:0b:f7:22:e5:48:d7:77:
aa:8a:d2:0f:ea:a9:c9:95:aa:e4:0c:08:71:3f:03:63:ee:ff:
c6:5f:6b:c1:28:cc:05:c1:d7:48:af:2c:b9:56:20:6a:9a:06:
d6:38:6b:d4:83:65:24:e7:69:76:e7:25:17:e4:7d:f0:46:8c:
6b:a8:dc:88:a3:ef:1f:fd:38:c1:67:65:81:b3:6f:4f:a1:9b:
40:47:30:0d:fa:d0:ee:b2:d5:6f:26:4b:26:7c:6e:95:4a:6c:
2c:5e:8c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:26 2024 by rpki-client on console-ams.rpki-client.org