Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/L74j1Eakpkw_vTnZ2TxfBX7HvRw.roa
File: L74j1Eakpkw_vTnZ2TxfBX7HvRw.roa (raw, json)
Hash identifier: OoTJT6WboGOHTDhUO7HrAhnt90vlUpBj6jffnUNrUdA=
Subject key identifier: 2F:BE:23:D4:46:A4:A6:4C:3F:BD:39:D9:D9:3C:5F:05:7E:C7:BD:1C
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 37EB06D4
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/L74j1Eakpkw_vTnZ2TxfBX7HvRw.roa
Signing time: Wed 16 Feb 2022 14:51:03 +0000
ROA not before: Wed 16 Feb 2022 14:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 192.214.192.0/19 maxlen: 19
23.90.192.0/18 maxlen: 24
185.87.100.0/22 maxlen: 24
185.20.16.0/22 maxlen: 24
185.134.156.0/22 maxlen: 24
45.133.68.0/22 maxlen: 24
79.99.160.0/21 maxlen: 24
185.133.80.0/22 maxlen: 24
92.119.232.0/22 maxlen: 24
185.197.108.0/22 maxlen: 24
5.183.248.0/22 maxlen: 24
45.89.76.0/22 maxlen: 24
45.92.180.0/22 maxlen: 24
185.48.252.0/22 maxlen: 24
45.129.218.0/24 maxlen: 24
45.129.216.0/24 maxlen: 24
185.163.136.0/22 maxlen: 24
45.129.217.0/24 maxlen: 24
185.241.140.0/22 maxlen: 24
94.154.4.0/24 maxlen: 24
88.218.12.0/22 maxlen: 24
185.191.36.0/22 maxlen: 24
185.163.212.0/22 maxlen: 24
185.86.88.0/22 maxlen: 24
45.86.96.0/22 maxlen: 24
185.163.220.0/22 maxlen: 24
185.163.228.0/22 maxlen: 24
31.204.80.0/21 maxlen: 24
2.59.144.0/22 maxlen: 24
185.186.88.0/22 maxlen: 24
185.169.156.0/22 maxlen: 24
185.132.64.0/22 maxlen: 24
45.142.108.0/22 maxlen: 24
185.135.176.0/22 maxlen: 24
195.216.140.0/22 maxlen: 24
46.18.124.0/24 maxlen: 24
46.18.125.0/24 maxlen: 24
46.18.120.0/22 maxlen: 24
46.18.126.0/23 maxlen: 24
185.254.8.0/22 maxlen: 24
185.138.116.0/22 maxlen: 24
5.10.128.0/21 maxlen: 24
45.80.252.0/22 maxlen: 24
185.98.116.0/22 maxlen: 24
45.152.16.0/22 maxlen: 24
62.192.156.0/22 maxlen: 24
2a00:41e0::/29 maxlen: 48
2a05:b780::/29 maxlen: 48
2a01:648::/29 maxlen: 48
2a00:6780::/29 maxlen: 48
2a05:c100::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938149588 (0x37eb06d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Feb 16 14:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fbe23d446a4a64c3fbd39d9d93c5f057ec7bd1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:da:5d:5c:43:08:cb:c0:6a:f2:6b:a4:28:82:
cd:29:be:93:3f:79:0e:91:f1:43:24:70:47:a0:6a:
f1:92:40:d8:ff:d4:e5:0b:28:4e:97:06:45:4c:3d:
20:2c:d9:10:55:15:c6:ba:73:03:a2:cb:de:c9:51:
4e:fa:49:58:21:fd:62:03:ac:c3:bd:06:6b:71:70:
1f:a3:8d:d6:6a:01:6b:f3:a0:7b:09:27:78:56:b8:
b5:1e:b9:5a:12:69:f9:c2:65:81:32:32:fa:9b:5c:
05:90:ed:eb:14:79:ed:68:c1:bd:ac:93:8e:a8:46:
18:27:97:6d:21:dd:d4:9f:e9:d9:99:45:dc:34:7f:
6c:ca:55:a6:d6:f1:f8:0a:f7:b2:0f:72:42:3c:ed:
ea:75:5c:b2:74:ac:10:15:6d:4d:1e:21:38:a2:85:
09:eb:d4:c2:f3:2f:09:37:f8:f6:45:0f:21:4e:89:
e1:12:c3:4d:27:fa:22:9d:2a:31:16:02:f0:4c:03:
25:b5:61:18:0b:91:b6:86:45:8e:22:e7:d5:cc:e4:
d7:89:c9:22:b2:e3:1f:93:ec:f7:b1:c2:d8:ad:dc:
f6:fe:7d:d4:2f:0a:a9:10:e1:21:b2:7e:2a:c2:ea:
58:70:69:fd:5b:92:fd:0e:ff:d0:cb:d9:5a:67:34:
0a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BE:23:D4:46:A4:A6:4C:3F:BD:39:D9:D9:3C:5F:05:7E:C7:BD:1C
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/L74j1Eakpkw_vTnZ2TxfBX7HvRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.144.0/22
5.10.128.0/21
5.183.248.0/22
23.90.192.0/18
31.204.80.0/21
45.80.252.0/22
45.86.96.0/22
45.89.76.0/22
45.92.180.0/22
45.129.216.0-45.129.218.255
45.133.68.0/22
45.142.108.0/22
45.152.16.0/22
46.18.120.0/21
62.192.156.0/22
79.99.160.0/21
88.218.12.0/22
92.119.232.0/22
94.154.4.0/24
185.20.16.0/22
185.48.252.0/22
185.86.88.0/22
185.87.100.0/22
185.98.116.0/22
185.132.64.0/22
185.133.80.0/22
185.134.156.0/22
185.135.176.0/22
185.138.116.0/22
185.163.136.0/22
185.163.212.0/22
185.163.220.0/22
185.163.228.0/22
185.169.156.0/22
185.186.88.0/22
185.191.36.0/22
185.197.108.0/22
185.241.140.0/22
185.254.8.0/22
192.214.192.0/19
195.216.140.0/22
IPv6:
2a00:41e0::/29
2a00:6780::/29
2a01:648::/29
2a05:b780::/29
2a05:c100::/29
Signature Algorithm: sha256WithRSAEncryption
80:80:e9:08:57:cd:cd:58:4d:ed:cb:4d:b6:79:ab:15:f7:ec:
5a:10:ac:80:6f:3f:25:1e:bc:ea:36:d1:ef:1e:cb:95:71:fd:
d4:04:b7:c6:bc:a3:2e:8b:42:71:c0:25:6a:35:2b:59:fa:b9:
e4:1d:57:6f:16:90:23:2d:37:b5:42:e0:42:ab:56:cd:14:f3:
df:45:84:de:6b:16:3b:74:a0:68:51:3f:b5:11:2e:a4:62:b5:
56:a2:3e:4a:a3:aa:6a:7c:95:f9:8c:90:4a:79:45:ae:7c:a8:
d5:83:f5:3c:19:df:fc:3e:18:77:46:62:9f:b8:91:5d:df:80:
af:3f:5b:3d:d6:0b:8e:de:d7:7b:ee:52:d0:70:df:38:4a:4e:
8a:da:32:ae:2d:a1:d0:f7:07:1e:27:b0:96:d6:99:95:99:31:
2f:a3:6c:e9:a6:1d:ee:7e:79:0c:61:1f:b0:08:42:13:99:bf:
99:57:7c:e6:a4:08:f7:f9:58:56:38:07:24:6a:68:24:57:51:
ab:5f:8b:2b:2c:1b:57:2f:ac:4b:2b:9d:f2:46:9a:24:c7:6c:
4d:bd:e0:11:9e:cb:ea:bc:0f:68:c7:6f:6f:58:f7:91:60:54:
f0:b2:60:d7:f2:97:2e:75:fe:04:15:82:75:3a:e8:03:1e:24:
21:7e:6e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:11 2024 by rpki-client on console-fra.rpki-client.org