Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/rJFaKlmNS-UR5daWK6EpaTSV9QM.roa
File: rJFaKlmNS-UR5daWK6EpaTSV9QM.roa (raw, json)
Hash identifier: sxJmTp2ZpL6C6bJvaF6I3Z81vco4btFYX7PNpq1zS88=
Subject key identifier: AC:91:5A:2A:59:8D:4B:E5:11:E5:D6:96:2B:A1:29:69:34:95:F5:03
Certificate issuer: /CN=ee37d34869bc60b7d9e78335f4a32381fb7210e5
Certificate serial: 1B0E31A8
Authority key identifier: EE:37:D3:48:69:BC:60:B7:D9:E7:83:35:F4:A3:23:81:FB:72:10:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jfTSGm8YLfZ54M19KMjgftyEOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/rJFaKlmNS-UR5daWK6EpaTSV9QM.roa
Signing time: Tue 15 Mar 2022 12:15:34 +0000
ROA not before: Tue 15 Mar 2022 12:15:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48544
IP address blocks: 83.174.144.0/22 maxlen: 24
194.145.248.0/22 maxlen: 23
78.159.144.0/22 maxlen: 24
93.189.136.0/21 maxlen: 24
91.231.172.0/23 maxlen: 24
87.252.106.0/23 maxlen: 24
188.116.11.0/24 maxlen: 24
188.116.10.0/24 maxlen: 24
188.116.8.0/23 maxlen: 23
188.116.32.0/23 maxlen: 24
185.164.185.0/24 maxlen: 24
185.164.186.0/23 maxlen: 24
46.102.112.0/24 maxlen: 24
46.102.114.0/24 maxlen: 24
46.102.113.0/24 maxlen: 24
46.102.115.0/24 maxlen: 24
89.36.206.0/24 maxlen: 24
89.36.205.0/24 maxlen: 24
89.36.204.0/24 maxlen: 24
89.36.207.0/24 maxlen: 24
185.39.24.0/23 maxlen: 24
185.39.27.0/24 maxlen: 24
185.39.26.0/24 maxlen: 24
188.116.56.0/23 maxlen: 24
188.116.60.0/23 maxlen: 23
188.116.63.0/24 maxlen: 24
188.116.62.0/24 maxlen: 24
185.84.84.0/22 maxlen: 24
45.10.72.0/22 maxlen: 22
217.20.250.0/23 maxlen: 24
217.20.248.0/23 maxlen: 24
212.69.137.0/24 maxlen: 24
212.69.136.0/24 maxlen: 24
212.69.139.0/24 maxlen: 24
212.69.138.0/24 maxlen: 24
212.69.143.0/24 maxlen: 24
212.69.142.0/24 maxlen: 24
212.69.141.0/24 maxlen: 24
212.69.140.0/24 maxlen: 24
89.32.159.0/24 maxlen: 24
89.32.158.0/24 maxlen: 24
89.32.157.0/24 maxlen: 24
89.32.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453915048 (0x1b0e31a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee37d34869bc60b7d9e78335f4a32381fb7210e5
Validity
Not Before: Mar 15 12:15:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac915a2a598d4be511e5d6962ba129693495f503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:09:be:6a:ff:25:cf:91:fd:74:20:ba:b8:d0:
01:18:6d:a4:8d:7a:3f:a7:6f:bf:35:95:6f:da:84:
06:25:08:59:2b:b2:29:87:4a:fc:ca:06:3c:ff:31:
4c:03:0d:b4:b0:3a:12:81:47:b3:d0:a7:ef:69:de:
63:4e:ab:99:61:5f:b9:8b:5e:eb:22:aa:aa:0c:90:
6a:13:39:65:0b:32:e5:87:44:3f:9b:75:1b:ab:12:
5f:15:03:f5:ab:98:39:62:04:47:00:28:02:3b:63:
ea:7f:b1:ac:57:44:4b:1f:c8:aa:9f:80:74:d4:bb:
90:6e:b5:b6:3b:60:9c:b7:e2:f0:cb:74:e2:f2:f3:
fa:6a:29:e7:5e:b0:d6:47:25:38:b5:56:6b:59:28:
24:2a:32:fb:27:d6:5f:90:dc:a4:4e:b7:da:f5:c8:
7b:78:82:04:ec:85:a6:e7:3f:1a:8c:91:b9:43:ca:
f5:d5:a9:3c:5c:d4:39:69:87:b6:3e:ed:9b:df:4e:
ab:66:ae:f4:f8:41:5e:e0:cd:6c:d2:d1:6a:10:c1:
ba:f2:e7:e6:d1:7e:08:6e:24:8d:67:92:93:e8:1d:
38:3d:c5:51:d0:bb:01:11:a4:09:e3:eb:9e:ae:89:
4a:1c:26:dd:26:f5:a9:30:1b:a8:b2:4e:f7:e5:2c:
8c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:91:5A:2A:59:8D:4B:E5:11:E5:D6:96:2B:A1:29:69:34:95:F5:03
X509v3 Authority Key Identifier:
keyid:EE:37:D3:48:69:BC:60:B7:D9:E7:83:35:F4:A3:23:81:FB:72:10:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jfTSGm8YLfZ54M19KMjgftyEOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/rJFaKlmNS-UR5daWK6EpaTSV9QM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c8c5e4-225a-489e-9100-ab2ce94c1423/1/7jfTSGm8YLfZ54M19KMjgftyEOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.72.0/22
46.102.112.0/22
78.159.144.0/22
83.174.144.0/22
87.252.106.0/23
89.32.156.0/22
89.36.204.0/22
91.231.172.0/23
93.189.136.0/21
185.39.24.0/22
185.84.84.0/22
185.164.185.0-185.164.187.255
188.116.8.0/22
188.116.32.0/23
188.116.56.0/23
188.116.60.0/22
194.145.248.0/22
212.69.136.0/21
217.20.248.0/22
Signature Algorithm: sha256WithRSAEncryption
28:bd:79:1f:76:64:07:ac:f0:b0:07:58:9d:91:b4:49:cc:23:
93:a5:30:8c:29:5f:30:9b:f8:c8:fd:67:1b:99:10:3e:93:6b:
eb:53:76:03:13:1a:03:3e:c8:2e:ad:b3:38:7a:f0:55:43:2d:
53:17:84:61:16:58:75:a1:1e:6a:f4:bd:e5:a8:b4:ad:76:dd:
2f:39:7e:cd:55:5e:b0:0d:c4:49:51:de:8e:15:8f:6b:24:e7:
21:c8:59:cc:d2:a0:1e:5e:3a:27:6b:4c:8c:c1:98:2b:f9:88:
bc:21:c9:a9:15:13:7b:21:79:16:20:d8:80:58:7d:7b:31:f1:
4a:ce:21:2c:52:e4:07:85:78:f6:58:92:19:75:8c:82:8d:20:
1b:f8:ff:d0:f1:64:e8:e5:81:05:2f:b5:af:a5:c7:30:a6:b9:
a4:b0:51:91:0d:4e:c9:5b:94:ee:74:71:32:69:a8:b0:4c:d6:
92:17:7f:7d:03:19:84:be:42:a7:de:40:10:53:c8:aa:67:19:
3d:11:d5:32:ee:4d:b4:5e:da:2f:0f:11:2c:6c:b5:c7:ac:16:
ff:e5:88:c9:67:3a:27:d7:a3:93:fa:8e:fc:e2:0e:b3:3a:c7:
4c:aa:dc:38:a1:e8:a7:fe:1e:af:d6:fb:13:be:3f:ab:2f:e2:
61:e5:ab:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:15 2023 by rpki-client on console-fra.rpki-client.org