Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/jsfp6NZtwEcSCG4Ji-_3zjYYcHY.roa
File: jsfp6NZtwEcSCG4Ji-_3zjYYcHY.roa (raw, json)
Hash identifier: ae8jaok3GcboCH6mArEs6u7cGkjuVdb4xo484fl8sFA=
Subject key identifier: 8E:C7:E9:E8:D6:6D:C0:47:12:08:6E:09:8B:EF:F7:CE:36:18:70:76
Certificate issuer: /CN=48abf29fdef8570502f4b51be5ffc05c4d9b3465
Certificate serial: C8F2C0
Authority key identifier: 48:AB:F2:9F:DE:F8:57:05:02:F4:B5:1B:E5:FF:C0:5C:4D:9B:34:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/jsfp6NZtwEcSCG4Ji-_3zjYYcHY.roa
Signing time: Sat 01 Jan 2022 06:01:46 +0000
ROA not before: Sat 01 Jan 2022 06:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43395
IP address blocks: 185.140.232.0/24 maxlen: 24
185.140.234.0/24 maxlen: 24
185.140.235.0/24 maxlen: 24
45.9.144.0/24 maxlen: 24
45.9.145.0/24 maxlen: 24
45.9.146.0/24 maxlen: 24
45.9.147.0/24 maxlen: 24
95.130.225.0/24 maxlen: 24
45.86.6.0/24 maxlen: 24
45.86.7.0/24 maxlen: 24
45.148.251.0/24 maxlen: 24
45.148.248.0/24 maxlen: 24
45.148.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13169344 (0xc8f2c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48abf29fdef8570502f4b51be5ffc05c4d9b3465
Validity
Not Before: Jan 1 06:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ec7e9e8d66dc04712086e098beff7ce36187076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:08:91:24:59:06:d8:d0:c7:2a:da:cd:51:73:
49:98:fd:d7:43:f3:74:f4:ee:3b:5e:91:15:96:d2:
18:50:07:cd:05:46:20:97:4a:0d:26:a4:48:6e:ab:
7f:2d:4d:b1:40:13:99:8b:b8:59:30:21:9f:df:2f:
18:a8:37:20:b7:cb:d2:49:6a:82:e4:96:94:71:0f:
b5:44:ba:b3:55:67:90:71:68:4e:63:e1:c9:59:ee:
21:ed:1e:02:8c:2f:fe:be:48:a7:27:75:ed:1d:12:
e9:14:22:8c:bf:15:fa:6a:71:76:98:21:e9:4d:2e:
c3:d7:42:d3:53:e2:86:e9:21:b6:f2:64:e9:21:d6:
66:29:8d:ba:4c:78:ed:04:ab:28:51:f4:4a:de:3c:
e9:85:ef:c1:5e:34:d2:41:85:2e:72:ab:b2:cd:82:
bd:1e:5a:dc:73:ca:cb:d0:0d:0e:4e:ee:3f:fd:31:
63:47:24:ab:39:85:a8:aa:46:68:68:1a:0f:b5:72:
16:c8:a3:62:63:2d:50:eb:b7:28:7b:fd:c5:f4:23:
2b:26:e2:57:87:4c:27:d2:7a:59:07:e5:9d:a9:b0:
48:07:0c:80:8a:db:1d:f2:c4:00:54:86:9a:45:89:
e3:3e:7a:bd:43:af:1e:5f:c1:4a:aa:79:a5:0a:ff:
e9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C7:E9:E8:D6:6D:C0:47:12:08:6E:09:8B:EF:F7:CE:36:18:70:76
X509v3 Authority Key Identifier:
keyid:48:AB:F2:9F:DE:F8:57:05:02:F4:B5:1B:E5:FF:C0:5C:4D:9B:34:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SKvyn974VwUC9LUb5f_AXE2bNGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/jsfp6NZtwEcSCG4Ji-_3zjYYcHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/af41cb-ff91-459c-9a64-aba113f3e3ae/1/SKvyn974VwUC9LUb5f_AXE2bNGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.144.0/22
45.86.6.0/23
45.148.248.0/24
45.148.250.0/23
95.130.225.0/24
185.140.232.0/24
185.140.234.0/23
Signature Algorithm: sha256WithRSAEncryption
80:19:af:05:e0:85:20:e5:ab:f3:6e:43:de:76:04:6e:ab:9a:
97:cb:16:ce:ae:87:1b:39:2c:0d:1b:21:ae:e6:b3:fa:16:aa:
7f:8b:9c:ae:0b:21:c0:11:0e:a6:a1:5d:9c:8f:30:49:bb:49:
01:af:0e:39:d0:22:99:61:06:4f:74:6a:50:94:01:43:2c:00:
b6:85:0b:0d:ba:8a:48:c8:90:fd:29:05:86:6d:e3:ae:8e:63:
d4:4a:57:9b:e0:9a:6d:93:3b:0f:5d:f3:fe:13:fe:e4:82:9d:
4c:2d:cc:2a:77:4c:bb:37:ad:c6:fa:4a:fc:0d:e8:7c:61:7d:
37:24:2b:2b:f0:9c:7d:ee:62:8d:23:1b:4a:d9:a4:24:dd:ac:
97:e0:12:05:ae:2d:b6:db:ea:0d:c3:4e:66:45:7c:e4:6f:eb:
a8:d9:60:bd:86:60:4e:03:f0:b8:03:0d:aa:f2:6a:c9:d2:cb:
0e:22:9b:0a:27:26:77:d6:5b:40:bf:a3:da:6b:26:99:fe:9a:
94:73:d6:a9:71:d5:2e:34:e3:3d:b9:15:03:70:f2:38:a0:14:
98:49:b1:de:a3:cf:6e:aa:23:5f:e8:5b:11:de:56:34:7e:9f:
a8:d4:40:41:3a:d3:12:70:de:c2:c0:c1:aa:c0:c9:d5:e2:c4:
69:5b:3b:61
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIEAMjywDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OGFiZjI5ZmRlZjg1NzA1MDJmNGI1MWJlNWZmYzA1YzRkOWIzNDY1MB4XDTIyMDEw
MTA2MDE0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGVjN2U5ZThkNjZk
YzA0NzEyMDg2ZTA5OGJlZmY3Y2UzNjE4NzA3NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALcIkSRZBtjQxyrazVFzSZj910PzdPTuO16RFZbSGFAHzQVG
IJdKDSakSG6rfy1NsUATmYu4WTAhn98vGKg3ILfL0klqguSWlHEPtUS6s1VnkHFo
TmPhyVnuIe0eAowv/r5Ipyd17R0S6RQijL8V+mpxdpgh6U0uw9dC01PihukhtvJk
6SHWZimNukx47QSrKFH0St486YXvwV400kGFLnKrss2CvR5a3HPKy9ANDk7uP/0x
Y0ckqzmFqKpGaGgaD7VyFsijYmMtUOu3KHv9xfQjKybiV4dMJ9J6WQflnamwSAcM
gIrbHfLEAFSGmkWJ4z56vUOvHl/BSqp5pQr/6TsCAwEAAaOCAi0wggIpMB0GA1Ud
DgQWBBSOx+no1m3ARxIIbgmL7/fONhhwdjAfBgNVHSMEGDAWgBRIq/Kf3vhXBQL0
tRvl/8BcTZs0ZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NLdnluOTc0VndVQzlMVWI1Zl9BWEUyYk5HVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvYWY0MWNiLWZmOTEtNDU5Yy05YTY0LWFiYTExM2YzZTNhZS8x
L2pzZnA2Tlp0d0VjU0NHNEppLV8zempZWWNIWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
YWY0MWNiLWZmOTEtNDU5Yy05YTY0LWFiYTExM2YzZTNhZS8xL1NLdnluOTc0VndV
QzlMVWI1Zl9BWEUyYk5HVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBD
BggrBgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEAi0JkAMEAS1WBgMEAC2U+AMEAS2U
+gMEAF+C4QMEALmM6AMEAbmM6jANBgkqhkiG9w0BAQsFAAOCAQEAgBmvBeCFIOWr
825D3nYEbqual8sWzq6HGzksDRshruaz+haqf4ucrgshwBEOpqFdnI8wSbtJAa8O
OdAimWEGT3RqUJQBQywAtoULDbqKSMiQ/SkFhm3jro5j1EpXm+CabZM7D13z/hP+
5IKdTC3MKndMuzetxvpK/A3ofGF9NyQrK/Ccfe5ijSMbStmkJN2sl+ASBa4tttvq
DcNOZkV85G/rqNlgvYZgTgPwuAMNqvJqydLLDiKbCicmd9ZbQL+j2msmmf6alHPW
qXHVLjTjPbkVA3DyOKAUmEmx3qPPbqojX+hbEd5WNH6fqNRAQTrTEnDewsDBqsDJ
1eLEaVs7YQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:19 2024 by rpki-client on console-fra.rpki-client.org