Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/K5BvLidIP3UQPHfp1KiCfmhwcC0.roa
File: K5BvLidIP3UQPHfp1KiCfmhwcC0.roa (raw, json)
Hash identifier: BJRFk/kaeHllFKd0F+tJZ30zODrSTIA2VztMlpELxZI=
Subject key identifier: 2B:90:6F:2E:27:48:3F:75:10:3C:77:E9:D4:A8:82:7E:68:70:70:2D
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 01830D946DC381D97263E8C5F4B481D324EE
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/K5BvLidIP3UQPHfp1KiCfmhwcC0.roa
Signing time: Mon 05 Sep 2022 12:16:14 +0000
ROA not before: Mon 05 Sep 2022 12:16:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59441
IP address blocks: 185.208.78.0/24 maxlen: 24
185.208.78.0/23 maxlen: 24
185.208.79.0/24 maxlen: 24
185.83.112.0/22 maxlen: 22
185.83.112.0/23 maxlen: 23
185.83.112.0/24 maxlen: 24
185.83.113.0/24 maxlen: 24
185.83.114.0/23 maxlen: 24
185.83.114.0/24 maxlen: 24
185.83.115.0/24 maxlen: 24
5.144.128.0/22 maxlen: 22
5.144.132.0/22 maxlen: 22
5.144.128.0/21 maxlen: 21
5.144.128.0/23 maxlen: 23
5.144.128.0/24 maxlen: 24
5.144.129.0/24 maxlen: 24
5.144.130.0/24 maxlen: 24
5.144.131.0/24 maxlen: 24
5.144.132.0/24 maxlen: 24
5.144.135.0/24 maxlen: 24
5.144.133.0/24 maxlen: 24
5.144.134.0/24 maxlen: 24
185.173.104.0/24 maxlen: 24
185.173.104.0/22 maxlen: 24
185.173.105.0/24 maxlen: 24
185.173.106.0/24 maxlen: 24
185.173.107.0/24 maxlen: 24
45.92.95.0/24 maxlen: 24
45.92.92.0/22 maxlen: 24
45.92.92.0/24 maxlen: 24
45.92.92.0/23 maxlen: 24
45.92.93.0/24 maxlen: 24
45.92.94.0/23 maxlen: 24
45.92.94.0/24 maxlen: 24
45.138.132.0/24 maxlen: 24
45.138.132.0/23 maxlen: 24
45.138.132.0/22 maxlen: 24
45.138.133.0/24 maxlen: 24
45.138.134.0/24 maxlen: 24
45.138.135.0/24 maxlen: 24
2a10:5c40::/29 maxlen: 29
2a05:9a00:4::/48 maxlen: 48
2a05:9a00::/29 maxlen: 29
2a05:9a00:1001::/48 maxlen: 48
2a05:9a00:1::/48 maxlen: 48
2a05:9a00:1002::/48 maxlen: 48
2a05:9a00:2::/48 maxlen: 48
2a05:9a00:1000::/48 maxlen: 48
2a05:9a00::/48 maxlen: 48
2a05:9a00:1003::/48 maxlen: 48
2a05:9a00:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:94:6d:c3:81:d9:72:63:e8:c5:f4:b4:81:d3:24:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Sep 5 12:16:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b906f2e27483f75103c77e9d4a8827e6870702d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:e0:0b:13:13:4e:02:c5:9a:92:11:2b:94:
e8:9f:9b:9a:3b:10:0e:19:5b:28:fa:95:7a:f9:d8:
ee:b1:05:ca:66:c9:20:c7:ed:e8:ed:b8:d1:36:6e:
ad:b3:60:a2:28:37:4b:85:1b:59:da:d3:c5:e8:d9:
13:e0:80:7d:c6:82:e3:0a:41:de:69:81:3d:55:33:
c9:e2:f8:c6:f8:92:16:6b:43:c4:8c:d9:0d:9c:cd:
9c:03:9d:c3:af:b3:56:00:06:aa:f8:6d:70:a7:c3:
82:1d:8f:fe:bf:bd:1c:17:d3:ac:be:f4:9c:ff:4d:
23:d9:f1:80:b6:be:3d:12:95:83:5c:5b:b9:28:bc:
d8:6c:bb:4e:da:a2:4f:14:25:66:74:92:66:ef:c0:
3e:f2:01:17:56:89:75:a7:72:4f:21:62:06:26:3a:
e7:fa:65:6f:16:ef:ad:92:b8:b8:2c:4e:a4:ba:4c:
a2:1e:fe:90:cd:a7:ef:33:33:98:83:f9:0e:62:c6:
b2:71:6d:4f:a5:87:ad:f8:65:dd:86:63:d7:e2:78:
47:b8:0d:b2:5a:77:64:6f:93:38:47:6e:94:f7:c4:
87:36:a4:02:85:22:be:94:16:4e:f3:cc:ca:f7:89:
e3:3d:23:88:aa:a0:a9:8b:b1:be:57:b0:32:62:15:
dc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:90:6F:2E:27:48:3F:75:10:3C:77:E9:D4:A8:82:7E:68:70:70:2D
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/K5BvLidIP3UQPHfp1KiCfmhwcC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.128.0/21
45.92.92.0/22
45.138.132.0/22
185.83.112.0/22
185.173.104.0/22
185.208.78.0/23
IPv6:
2a05:9a00::/29
2a10:5c40::/29
Signature Algorithm: sha256WithRSAEncryption
bf:86:7c:6e:8d:e8:6a:6b:0a:db:09:a0:04:72:12:cd:8b:0d:
ba:6e:b1:86:5f:a9:c4:14:6d:82:07:f6:c8:05:3b:82:dd:e8:
a7:ff:25:5d:9a:59:f4:5a:fa:30:4a:91:c3:4c:e4:3a:63:a8:
28:6b:5d:49:c5:5f:53:14:8e:1c:c7:87:26:2b:62:2d:19:0c:
97:cc:f6:a7:f6:94:6e:65:6e:fd:ec:1f:dd:92:17:d5:fa:33:
0a:82:fe:b9:4c:6b:fe:45:6f:63:d9:c0:1f:5c:ae:ed:69:2f:
7e:91:a4:2d:44:ce:22:bc:07:50:fd:e7:93:f6:8d:cf:91:32:
ea:11:75:c5:79:c7:db:61:a7:c4:dc:fc:fe:d6:d8:84:81:f1:
77:ae:01:5c:ee:6a:f3:05:f9:f4:2d:e0:78:5f:53:65:08:a7:
f2:b2:3d:f3:1b:63:61:5b:80:b1:f6:c1:2b:cb:a5:27:98:68:
a6:03:7c:bb:9e:85:92:73:dc:62:5f:f1:fd:4f:e3:f1:3f:f3:
62:d8:6b:d7:e4:16:83:56:0e:a9:78:5d:df:b8:bb:fa:01:f2:
a8:19:b0:15:4d:ab:89:cc:35:40:3a:c6:bd:57:36:50:e6:95:
f0:e9:3f:3a:a5:78:95:9e:eb:ae:25:9c:7b:09:50:b8:08:4b:
5c:18:e0:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-fra.rpki-client.org