Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/Fu5lrkolQiEuoZ1EIuidAtw_r8g.roa
File: Fu5lrkolQiEuoZ1EIuidAtw_r8g.roa (raw, json)
Hash identifier: y/BVTmQX77/9ogQMaRrNc6j04DjXD1uMZyBMd+HsI6k=
Subject key identifier: 16:EE:65:AE:4A:25:42:21:2E:A1:9D:44:22:E8:9D:02:DC:3F:AF:C8
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 018472ECA7E3EEEC1A6C78664ABA179EC9A1
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/Fu5lrkolQiEuoZ1EIuidAtw_r8g.roa
Signing time: Sun 13 Nov 2022 21:37:02 +0000
ROA not before: Sun 13 Nov 2022 21:37:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 46.248.112.0/23 maxlen: 23
46.248.108.0/23 maxlen: 23
46.248.110.0/23 maxlen: 23
46.248.106.0/23 maxlen: 23
46.248.118.0/23 maxlen: 23
46.248.114.0/23 maxlen: 23
46.248.116.0/23 maxlen: 23
46.248.124.0/23 maxlen: 23
46.248.122.0/23 maxlen: 23
46.248.120.0/23 maxlen: 23
46.248.126.0/23 maxlen: 23
85.116.2.0/23 maxlen: 23
85.116.4.0/23 maxlen: 23
82.136.52.0/24 maxlen: 24
85.116.0.0/23 maxlen: 23
82.136.62.0/23 maxlen: 23
82.136.61.0/24 maxlen: 24
85.116.6.0/23 maxlen: 23
85.116.16.0/21 maxlen: 21
85.116.24.0/24 maxlen: 24
85.116.30.0/24 maxlen: 24
85.116.29.0/24 maxlen: 24
85.116.31.0/24 maxlen: 24
85.116.26.0/24 maxlen: 24
85.116.25.0/24 maxlen: 24
85.116.28.0/24 maxlen: 24
85.116.27.0/24 maxlen: 24
82.136.7.0/24 maxlen: 24
82.136.17.0/24 maxlen: 24
82.136.13.0/24 maxlen: 24
82.136.20.0/24 maxlen: 24
82.136.26.0/24 maxlen: 24
82.136.37.0/24 maxlen: 24
82.136.43.0/24 maxlen: 24
82.136.47.0/24 maxlen: 24
46.248.98.0/23 maxlen: 23
46.248.96.0/23 maxlen: 23
46.248.100.0/23 maxlen: 23
46.248.102.0/23 maxlen: 23
46.248.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:72:ec:a7:e3:ee:ec:1a:6c:78:66:4a:ba:17:9e:c9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Nov 13 21:37:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16ee65ae4a2542212ea19d4422e89d02dc3fafc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b9:06:2c:f5:63:38:36:4a:18:75:22:9b:b7:
9a:bf:57:79:91:b5:7d:1f:f6:37:20:6d:db:03:2a:
eb:93:af:8e:32:11:a6:8c:4a:97:06:d5:53:f5:7f:
a2:1b:87:0b:e9:30:db:cc:f5:1c:5d:67:d9:91:8e:
d5:4d:dd:1d:08:db:df:80:5b:33:d1:5d:49:f7:23:
66:56:67:23:4d:a4:bf:14:63:48:87:70:44:c5:27:
2d:9e:f4:7c:62:2a:05:dd:82:3b:51:4b:69:0e:76:
92:e8:5a:aa:0a:3a:77:56:41:1b:4f:80:18:d7:20:
a5:3d:8a:99:b9:46:7e:fd:c7:0c:08:85:0f:90:df:
51:42:96:b1:84:d8:ad:b8:4b:d1:36:3a:ec:c7:04:
4f:81:5d:f7:df:9b:32:ff:5c:e0:c7:52:8c:f5:96:
e0:00:f9:5b:f3:a7:70:a3:86:6b:85:7b:1b:15:5d:
43:73:f5:44:d8:8e:6b:2c:9d:3f:08:d6:29:f6:bd:
c3:b5:92:42:d9:3e:1a:24:6b:ee:1b:2a:e3:b4:06:
09:5f:dc:46:b5:da:19:db:73:7c:19:7d:93:40:a4:
f4:45:41:3a:46:c4:34:5e:b6:af:46:2d:35:31:e5:
e0:91:79:ff:2c:77:e3:c1:3c:19:c2:c1:eb:57:7b:
6e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EE:65:AE:4A:25:42:21:2E:A1:9D:44:22:E8:9D:02:DC:3F:AF:C8
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/Fu5lrkolQiEuoZ1EIuidAtw_r8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.248.96.0/19
82.136.7.0/24
82.136.13.0/24
82.136.17.0/24
82.136.20.0/24
82.136.26.0/24
82.136.37.0/24
82.136.43.0/24
82.136.47.0/24
82.136.52.0/24
82.136.61.0-82.136.63.255
85.116.0.0/21
85.116.16.0/20
Signature Algorithm: sha256WithRSAEncryption
13:4a:18:d9:74:79:23:3f:85:13:f4:8b:0f:a3:06:15:86:c4:
9b:6f:06:4b:91:23:6f:3c:f9:e6:51:e7:c6:f9:10:0c:18:6b:
75:d3:89:1c:d1:59:fd:6e:39:39:2d:9e:5e:66:19:a6:55:68:
ed:65:10:68:ba:95:e8:87:f6:79:40:4a:63:2b:90:97:f3:2a:
c2:e5:bb:f9:b1:f1:36:34:a7:a3:f9:97:c7:15:7b:9c:68:76:
bc:3d:fb:6b:1f:ef:13:ab:3b:b8:31:88:e0:6d:bc:8b:23:d4:
84:ca:84:a5:b4:4d:b3:32:af:04:1a:1a:ed:b4:43:4d:6f:21:
30:a9:fe:69:b1:ad:28:38:02:4f:ff:2d:27:69:d6:b2:5e:e1:
13:ec:cc:78:e7:92:85:ac:44:b9:fb:d1:eb:0a:64:a0:25:b5:
65:ca:6a:5b:70:df:f4:cf:c1:7e:f8:e7:07:eb:e1:1d:98:ea:
06:ec:3b:86:20:2b:28:30:e5:8d:c9:74:d1:1c:8c:ee:c3:60:
a9:51:59:fe:83:98:43:f9:21:a1:52:c7:20:7a:f3:ae:7c:08:
58:86:64:30:29:29:db:13:de:45:b1:3d:da:1a:87:5a:6a:ec:
93:c7:0e:da:fc:25:1e:24:8b:a7:15:53:d5:5b:0d:b3:d7:29:
bf:07:55:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:52 2023 by rpki-client on console-ams.rpki-client.org