Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Y0lx80aLzpZMWegAMPOsGeGor1k.roa
File: Y0lx80aLzpZMWegAMPOsGeGor1k.roa (raw, json)
Hash identifier: pxfrU8EzRyelHtGwHkv+FO4MmPNj4ZWAgbnt49kadGw=
Subject key identifier: 63:49:71:F3:46:8B:CE:96:4C:59:E8:00:30:F3:AC:19:E1:A8:AF:59
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 0184AF7414EC3ADA8B9F8DCA13623124ED63
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Y0lx80aLzpZMWegAMPOsGeGor1k.roa
Signing time: Fri 25 Nov 2022 15:42:11 +0000
ROA not before: Fri 25 Nov 2022 15:42:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15895
IP address blocks: 81.23.16.0/24 maxlen: 24
81.23.16.0/20 maxlen: 20
85.223.128.0/17 maxlen: 17
37.229.0.0/16 maxlen: 16
176.8.0.0/16 maxlen: 16
188.163.0.0/17 maxlen: 17
212.109.32.0/19 maxlen: 19
188.163.0.0/16 maxlen: 16
46.185.0.0/17 maxlen: 17
94.153.0.0/16 maxlen: 16
134.249.0.0/16 maxlen: 16
212.82.192.0/19 maxlen: 19
62.64.64.0/18 maxlen: 18
77.247.216.0/21 maxlen: 21
109.162.0.0/17 maxlen: 17
193.239.128.0/23 maxlen: 23
94.153.164.0/22 maxlen: 22
94.27.0.0/17 maxlen: 17
46.118.0.0/15 maxlen: 15
83.170.192.0/18 maxlen: 18
193.41.60.0/22 maxlen: 22
193.41.60.0/23 maxlen: 23
193.41.62.0/23 maxlen: 23
89.162.128.0/17 maxlen: 17
5.248.0.0/16 maxlen: 16
46.211.0.0/16 maxlen: 16
37.115.0.0/16 maxlen: 16
178.137.0.0/16 maxlen: 16
2a02:2378::/32 maxlen: 32
2a02:8a8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:af:74:14:ec:3a:da:8b:9f:8d:ca:13:62:31:24:ed:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Nov 25 15:42:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=634971f3468bce964c59e80030f3ac19e1a8af59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:47:13:5c:ff:0b:50:6d:29:9b:7c:6a:d4:9d:
0b:1a:40:2b:a3:0f:5e:64:8a:cf:c9:e1:e4:cd:6f:
86:5b:24:48:1e:c0:0c:57:ca:4a:04:36:b0:3d:a8:
20:57:b5:5e:2e:6a:04:47:83:42:11:3f:2c:04:2f:
08:98:de:dc:a4:17:1a:fe:97:ad:c1:af:89:5f:6e:
36:ef:8b:93:21:07:ee:49:ac:62:fa:78:dd:96:7d:
e3:bb:41:b2:52:b9:d6:58:81:55:a4:ed:47:c0:f9:
17:3c:9d:9d:b6:e7:7b:4e:f6:31:8e:05:fe:03:56:
c4:86:1f:08:0d:eb:0a:1a:7a:a7:79:fb:01:b1:cb:
f5:ed:6e:b6:91:58:43:73:5d:45:fe:d7:89:7c:78:
05:c6:e1:25:65:12:95:3b:94:b5:10:05:a8:fb:6a:
bf:4e:22:0f:f3:d1:91:5a:1c:06:22:be:34:d3:29:
fa:6d:32:5f:19:bd:4c:b7:d4:cb:b8:69:c6:eb:44:
3b:e2:fe:63:d6:30:ab:78:37:83:0b:e1:5d:80:fe:
85:70:14:2b:d6:9b:04:63:e2:d3:13:73:b9:3b:b0:
48:cd:ea:54:6b:e1:3f:d3:6c:10:8f:04:23:61:02:
23:06:5b:49:00:04:69:fc:fb:b9:50:97:37:40:be:
6f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:49:71:F3:46:8B:CE:96:4C:59:E8:00:30:F3:AC:19:E1:A8:AF:59
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Y0lx80aLzpZMWegAMPOsGeGor1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.248.0.0/16
37.115.0.0/16
37.229.0.0/16
46.118.0.0/15
46.185.0.0/17
46.211.0.0/16
62.64.64.0/18
77.247.216.0/21
81.23.16.0/20
83.170.192.0/18
85.223.128.0/17
89.162.128.0/17
94.27.0.0/17
94.153.0.0/16
109.162.0.0/17
134.249.0.0/16
176.8.0.0/16
178.137.0.0/16
188.163.0.0/16
193.41.60.0/22
193.239.128.0/23
212.82.192.0/19
212.109.32.0/19
IPv6:
2a02:8a8::/32
2a02:2378::/32
Signature Algorithm: sha256WithRSAEncryption
34:95:21:6c:ed:6c:3d:31:c5:a8:8a:57:83:15:2e:27:df:8a:
da:56:21:67:ef:d2:cc:58:6d:1e:f9:00:88:68:31:b6:91:06:
02:c4:06:ce:fc:4f:07:57:7b:35:f6:58:c2:50:d8:fb:2b:f8:
cb:0b:e5:9b:49:23:70:19:39:34:fc:e9:01:8e:76:88:bf:90:
ac:9b:1c:cf:d1:8b:3d:63:5d:2a:6a:a2:8c:39:6b:01:17:d1:
62:c6:cf:ce:9c:be:c9:74:99:f6:f6:03:23:0f:6c:83:bd:1c:
0d:43:17:81:5b:f4:ec:0e:61:29:1a:4d:b8:4e:81:fa:7e:52:
49:8c:ed:1d:9a:5f:d0:34:8c:9a:38:11:23:ba:d7:9c:cd:0d:
93:ae:0d:05:8a:cd:ac:9d:5f:ed:8d:5c:3f:44:95:48:87:a4:
3b:7d:09:f0:4d:5c:3d:72:83:8f:ac:bb:56:f0:f5:b8:14:11:
3d:9b:77:51:94:63:07:08:35:7e:2d:11:c4:3b:2f:69:73:5f:
35:b2:0c:64:eb:6a:b4:70:e0:5e:81:83:fc:80:a6:98:62:4d:
7b:8e:bc:af:b2:99:df:5f:39:f8:dd:ad:f9:53:90:18:4a:17:
5d:43:e3:df:f1:f5:03:eb:58:d9:66:1d:16:69:fa:11:a9:b3:
13:4e:3c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org