Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/viSX9CsJs2_eYTkYIvCcrgDm8ik.roa
File: viSX9CsJs2_eYTkYIvCcrgDm8ik.roa (raw, json)
Hash identifier: 9gJtCtR2oSYAo9a5UNkWUO218cObhodskipvNCsG20Y=
Subject key identifier: BE:24:97:F4:2B:09:B3:6F:DE:61:39:18:22:F0:9C:AE:00:E6:F2:29
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 063E79BD
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/viSX9CsJs2_eYTkYIvCcrgDm8ik.roa
Signing time: Fri 01 Apr 2022 17:58:21 +0000
ROA not before: Fri 01 Apr 2022 17:58:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59441
IP address blocks: 185.208.78.0/24 maxlen: 24
185.208.79.0/24 maxlen: 24
185.83.112.0/22 maxlen: 22
185.83.112.0/23 maxlen: 23
185.83.112.0/24 maxlen: 24
185.83.114.0/23 maxlen: 23
185.83.113.0/24 maxlen: 24
185.83.114.0/24 maxlen: 24
185.83.115.0/24 maxlen: 24
185.173.104.0/22 maxlen: 22
185.173.104.0/24 maxlen: 24
185.173.105.0/24 maxlen: 24
185.173.106.0/24 maxlen: 24
185.173.107.0/24 maxlen: 24
5.144.128.0/22 maxlen: 22
5.144.132.0/22 maxlen: 22
5.144.128.0/21 maxlen: 21
5.144.128.0/23 maxlen: 23
5.144.128.0/24 maxlen: 24
5.144.129.0/24 maxlen: 24
5.144.130.0/24 maxlen: 24
5.144.131.0/24 maxlen: 24
5.144.132.0/24 maxlen: 24
5.144.135.0/24 maxlen: 24
5.144.133.0/24 maxlen: 24
5.144.134.0/24 maxlen: 24
45.92.95.0/24 maxlen: 24
45.92.92.0/22 maxlen: 22
45.92.93.0/24 maxlen: 24
45.92.94.0/24 maxlen: 24
45.138.132.0/22 maxlen: 22
45.138.132.0/24 maxlen: 24
45.138.133.0/24 maxlen: 24
45.138.134.0/24 maxlen: 24
45.138.135.0/24 maxlen: 24
2a10:5c40::/29 maxlen: 29
2a05:9a00:4::/48 maxlen: 48
2a05:9a00::/29 maxlen: 29
2a05:9a00:1001::/48 maxlen: 48
2a05:9a00:1::/48 maxlen: 48
2a05:9a00:1000::/48 maxlen: 48
2a05:9a00::/48 maxlen: 48
2a05:9a00:1003::/48 maxlen: 48
2a05:9a00:3::/48 maxlen: 48
2a05:9a00:1002::/48 maxlen: 48
2a05:9a00:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104757693 (0x63e79bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Apr 1 17:58:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be2497f42b09b36fde61391822f09cae00e6f229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a5:24:c5:3f:6b:4f:89:ec:69:94:c9:b9:62:
2b:df:f9:25:4d:e4:b0:2f:47:d4:28:fd:a5:8f:3a:
46:c1:ad:e9:ec:5b:66:41:d0:5c:5c:b5:cf:37:0c:
00:9f:2c:fe:28:8c:d0:33:6f:f6:91:25:a2:ba:48:
b9:d9:89:d8:d2:ce:8b:7f:ce:10:b5:27:e0:1e:1c:
0c:bc:89:52:b5:94:5d:6b:a8:fe:1b:ef:0c:ca:e2:
de:fc:ae:26:e5:b9:68:aa:e9:68:19:1b:18:57:bf:
5d:9c:2f:76:6b:d5:01:ec:e4:a1:fc:3c:8a:ee:cc:
ea:20:c3:cf:89:a2:88:fe:dc:6f:62:15:b9:bb:f1:
9c:15:d1:37:7e:d5:cd:a1:c7:29:3e:d9:c4:42:5e:
fc:ee:ca:7f:8a:0d:17:08:ed:00:49:a0:4a:79:36:
b6:0f:d5:52:3e:19:2f:17:81:a2:31:9f:e8:12:99:
a5:04:cc:8f:63:83:c2:39:fa:c3:8e:fd:6d:36:22:
aa:77:e5:fb:ca:2f:bd:7f:d5:2c:0a:c4:f7:18:14:
4b:f1:5c:db:a8:0e:02:90:34:96:05:31:e8:99:6e:
f5:ed:81:01:00:aa:73:90:31:86:32:6d:55:10:89:
10:94:49:18:ba:03:d9:68:1f:b5:f2:5b:7c:3d:04:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:24:97:F4:2B:09:B3:6F:DE:61:39:18:22:F0:9C:AE:00:E6:F2:29
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/viSX9CsJs2_eYTkYIvCcrgDm8ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.128.0/21
45.92.92.0/22
45.138.132.0/22
185.83.112.0/22
185.173.104.0/22
185.208.78.0/23
IPv6:
2a05:9a00::/29
2a10:5c40::/29
Signature Algorithm: sha256WithRSAEncryption
9f:d0:b2:56:42:90:8b:8e:ee:86:65:49:48:18:0a:be:0a:18:
c7:78:cc:d9:df:82:c5:62:b6:28:85:25:3c:98:4c:06:3e:54:
49:a3:dd:97:05:d0:7e:96:f5:02:7d:13:c3:fa:b0:0e:32:a7:
fd:a8:76:d9:9a:a6:9d:06:3e:d6:84:76:cf:3e:33:7b:ad:86:
2e:46:5e:df:ad:84:d2:72:40:b0:43:9f:f3:a7:72:34:25:13:
f3:54:8c:a7:7a:b6:96:f2:7a:a4:ab:84:89:02:d8:38:16:ea:
e8:fd:69:39:d9:60:78:a8:c6:b8:d4:6d:c8:da:a8:eb:7b:32:
f6:fe:1d:6a:fa:78:cc:e0:81:2e:aa:38:bf:90:82:a2:e4:7a:
ac:d8:6f:39:8c:e4:5e:49:06:42:74:4d:10:d7:a7:20:16:20:
c2:c4:8a:17:90:11:5a:3f:bd:75:03:75:57:12:11:5a:2d:89:
5d:3c:f2:7b:d7:e4:75:f4:9a:06:e3:ae:62:ec:b5:46:03:be:
0c:39:f4:0c:83:3b:3c:ce:90:55:86:22:b6:2d:71:fb:42:1f:
ca:1d:1a:61:b0:c9:81:28:08:37:fb:a6:00:37:77:14:58:64:
b1:c3:25:e2:fc:5b:dc:e9:ec:5d:6c:8f:82:e7:ef:79:7a:ad:
a0:e1:cf:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-fra.rpki-client.org