Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/os1VeJOnY7SaYotMVrNzCz1zjKY.roa
File: os1VeJOnY7SaYotMVrNzCz1zjKY.roa (raw, json)
Hash identifier: pi2whuStJvFWzgrOeqkKMbTedQYZg0XpdEZT9uY7XDg=
Subject key identifier: A2:CD:55:78:93:A7:63:B4:9A:62:8B:4C:56:B3:73:0B:3D:73:8C:A6
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01852E6F554C19AC9A3D6AB90DEC6391BFEB
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/os1VeJOnY7SaYotMVrNzCz1zjKY.roa
Signing time: Tue 20 Dec 2022 07:28:46 +0000
ROA not before: Tue 20 Dec 2022 07:28:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
85.255.180.0/22 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.125.0/24 maxlen: 24
5.105.123.0/24 maxlen: 24
5.105.122.0/24 maxlen: 24
5.105.132.0/24 maxlen: 24
5.105.131.0/24 maxlen: 24
5.105.126.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.136.0/24 maxlen: 24
5.105.134.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.141.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.166.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.164.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.170.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.76.0/24 maxlen: 24
5.105.72.0/24 maxlen: 24
5.105.84.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.80.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.94.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.230.0/24 maxlen: 24
5.105.229.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.242.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.185.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.214.0/24 maxlen: 24
5.105.218.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.19.0/24 maxlen: 24
5.105.26.0/24 maxlen: 24
5.105.40.0/24 maxlen: 24
5.105.43.0/24 maxlen: 24
5.105.49.0/24 maxlen: 24
5.105.63.0/24 maxlen: 24
5.105.1.0/24 maxlen: 24
5.105.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2e:6f:55:4c:19:ac:9a:3d:6a:b9:0d:ec:63:91:bf:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Dec 20 07:28:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2cd557893a763b49a628b4c56b3730b3d738ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f1:92:41:76:59:26:f3:0b:25:f9:25:44:d3:
5e:49:c4:d0:bd:28:1f:2b:06:16:6f:1c:e5:2b:98:
28:32:49:06:4c:37:65:d5:f4:80:0d:82:a6:1f:6b:
61:bb:67:50:e8:0c:18:1b:0c:2c:f6:ef:29:95:d2:
80:a1:27:95:dd:b8:e3:08:e6:18:8e:41:1e:fc:d2:
12:e9:a9:75:f0:02:a7:4f:ae:82:3a:b8:fc:35:2d:
7f:d2:c5:6a:9f:b5:b8:1f:a1:45:95:0e:85:aa:ab:
81:b4:a4:04:5b:da:31:33:65:26:7f:38:c6:ea:42:
62:f4:cb:90:db:d1:56:00:68:d1:b5:1f:c2:54:74:
f8:d7:d8:ba:a7:6d:ec:99:46:6f:a5:64:ca:13:40:
61:78:5b:fa:6d:3b:22:89:06:36:cc:d8:c0:ce:9c:
15:29:a9:fd:41:85:f3:04:40:57:1a:24:21:29:54:
06:e0:cb:b6:14:c0:eb:bc:2e:c5:98:9a:fe:1c:c4:
b2:3f:5d:81:7f:c3:d5:c4:24:86:4e:04:04:7d:ab:
63:f3:c3:a2:f4:ec:36:f4:e3:f5:15:f7:e3:1f:8a:
9f:bf:01:3a:b5:4d:33:57:e9:6a:68:91:0f:4e:d5:
dd:0c:aa:38:39:20:64:71:37:bb:9a:1a:ac:5e:70:
de:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:CD:55:78:93:A7:63:B4:9A:62:8B:4C:56:B3:73:0B:3D:73:8C:A6
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/os1VeJOnY7SaYotMVrNzCz1zjKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.1.0/24
5.105.4.0/24
5.105.12.0/24
5.105.19.0/24
5.105.26.0/24
5.105.40.0/24
5.105.43.0/24
5.105.49.0/24
5.105.63.0/24
5.105.68.0/23
5.105.72.0/24
5.105.76.0/24
5.105.79.0-5.105.82.255
5.105.84.0/24
5.105.94.0/23
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.122.0/23
5.105.125.0-5.105.127.255
5.105.131.0-5.105.132.255
5.105.134.0/24
5.105.136.0/24
5.105.138.0/23
5.105.141.0-5.105.143.255
5.105.156.0/24
5.105.162.0/24
5.105.164.0-5.105.166.255
5.105.168.0/24
5.105.170.0/24
5.105.172.0/24
5.105.185.0-5.105.187.255
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0/23
5.105.206.0/23
5.105.214.0/24
5.105.216.0/24
5.105.218.0/24
5.105.229.0-5.105.230.255
5.105.239.0-5.105.240.255
5.105.242.0/24
5.105.244.0/23
5.105.248.0/23
5.180.176.0/24
85.255.180.0/22
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:34:bc:cc:95:33:ea:ed:4f:65:1b:fd:ee:c5:1a:50:15:76:
0f:b7:13:a7:8c:73:6d:b6:98:3c:c3:cd:9f:78:8c:94:ea:6e:
8d:13:01:ed:92:b8:6c:56:9f:00:6c:1f:65:7b:7e:27:20:43:
c0:91:42:ab:cd:98:e5:b6:23:8a:a4:b9:fe:fb:3b:54:bd:76:
d4:a0:9b:9b:71:78:95:55:c6:3f:02:15:6b:12:9a:69:a4:eb:
e5:d3:4b:d2:d7:b1:bd:96:04:f7:f9:07:56:09:2a:7b:8c:32:
a0:3d:f8:c9:ee:af:f4:05:9b:f1:8d:de:56:45:af:27:07:74:
ef:da:47:47:32:fd:84:77:df:36:c5:b4:b9:07:30:49:72:33:
9a:4d:4e:80:f6:99:d9:bf:dd:ac:56:3a:ed:f1:96:c3:4c:04:
11:af:45:bd:72:cb:09:ee:be:2c:6b:7a:ed:b6:fe:18:d0:2d:
67:8a:dc:63:e5:c0:98:e7:d1:18:62:73:72:7e:76:95:54:94:
1e:ee:72:6b:b7:fc:ed:e4:7c:8f:a3:17:a1:18:cc:53:19:c8:
f9:63:2d:67:a1:b3:04:04:9d:99:4d:22:7d:28:a4:7a:73:ac:
07:e7:3b:00:8d:12:0c:01:32:7b:12:35:72:2f:fd:67:35:52:
26:3b:22:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:29 2024 by rpki-client on console-fra.rpki-client.org