Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/UeoePqSbfOTQ_U8zlyr9ydrRW_g.roa
File: UeoePqSbfOTQ_U8zlyr9ydrRW_g.roa (raw, json)
Hash identifier: Es3RZDm4s8OiyOdMVps0yf2E7Owaj4E0TaCT7dYnZCo=
Subject key identifier: 51:EA:1E:3E:A4:9B:7C:E4:D0:FD:4F:33:97:2A:FD:C9:DA:D1:5B:F8
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 37C544CD
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/UeoePqSbfOTQ_U8zlyr9ydrRW_g.roa
Signing time: Wed 02 Feb 2022 09:26:06 +0000
ROA not before: Wed 02 Feb 2022 09:26:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57809
IP address blocks: 185.87.100.0/22 maxlen: 22
23.90.192.0/18 maxlen: 18
185.20.16.0/22 maxlen: 22
185.134.156.0/22 maxlen: 22
45.133.68.0/22 maxlen: 22
185.133.80.0/22 maxlen: 22
79.99.160.0/21 maxlen: 21
92.119.232.0/22 maxlen: 22
185.197.108.0/22 maxlen: 22
5.183.248.0/22 maxlen: 22
45.89.76.0/22 maxlen: 22
45.92.180.0/22 maxlen: 22
185.48.252.0/22 maxlen: 22
45.129.218.0/24 maxlen: 24
185.163.136.0/22 maxlen: 22
45.129.216.0/24 maxlen: 24
45.129.217.0/24 maxlen: 24
185.241.140.0/22 maxlen: 22
94.154.4.0/24 maxlen: 24
88.218.12.0/22 maxlen: 22
185.191.36.0/22 maxlen: 22
185.163.212.0/22 maxlen: 22
185.86.88.0/22 maxlen: 22
45.86.96.0/22 maxlen: 22
185.163.220.0/22 maxlen: 22
31.204.80.0/21 maxlen: 21
185.163.228.0/22 maxlen: 22
2.59.144.0/22 maxlen: 22
185.186.88.0/22 maxlen: 22
185.169.156.0/22 maxlen: 22
185.132.64.0/22 maxlen: 22
185.135.176.0/22 maxlen: 22
45.142.108.0/22 maxlen: 22
195.216.140.0/22 maxlen: 22
46.18.120.0/22 maxlen: 22
46.18.124.0/24 maxlen: 24
46.18.125.0/24 maxlen: 24
46.18.126.0/23 maxlen: 23
185.254.8.0/22 maxlen: 22
185.138.116.0/22 maxlen: 22
5.10.128.0/21 maxlen: 21
45.80.252.0/22 maxlen: 22
185.98.116.0/22 maxlen: 22
45.152.16.0/22 maxlen: 22
62.192.156.0/22 maxlen: 22
2a00:41e0::/29 maxlen: 32
2a05:b780::/29 maxlen: 29
2a01:648::/29 maxlen: 32
2a00:6780::/29 maxlen: 32
2a05:c100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 935675085 (0x37c544cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Feb 2 09:26:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51ea1e3ea49b7ce4d0fd4f33972afdc9dad15bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:78:dc:fa:a0:66:2e:d2:ad:84:67:1a:4c:d4:
d3:3e:f9:01:32:7f:4d:9c:58:97:20:2e:ae:71:fd:
81:9f:37:a8:b0:0f:93:ad:89:16:22:c6:98:99:9d:
18:c5:2d:ec:29:61:23:d7:95:6b:a0:b0:2b:6b:7c:
96:b0:3f:15:6f:af:78:c0:89:a7:6d:80:89:75:e6:
00:dd:63:ff:c6:26:a1:85:b5:da:cb:8a:7c:40:ad:
41:2e:68:a0:22:7c:62:31:d0:0a:25:0c:c7:1f:34:
a1:a1:7c:fd:ce:a6:12:fa:63:ed:2a:d4:6f:a4:4b:
fe:c9:bd:87:c8:4d:b0:09:65:e9:e6:e9:60:28:5b:
f2:99:04:d7:78:fc:b7:f4:d6:05:af:59:05:48:6d:
24:de:46:41:35:27:69:1f:5b:5d:55:ab:01:36:36:
d1:13:e2:af:d3:9c:11:84:e7:5a:75:21:d2:a7:1d:
c0:26:cf:28:c7:e4:b3:24:75:3c:99:e6:38:83:03:
ec:b3:ef:47:11:39:57:dd:a2:86:cf:53:13:29:db:
b6:75:93:2c:a7:27:59:54:00:85:81:d0:0a:6a:5b:
00:a4:55:06:26:94:2e:70:65:35:d3:cf:e1:13:cc:
82:d6:27:13:6e:54:83:27:9b:d0:e5:d0:85:a2:46:
79:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EA:1E:3E:A4:9B:7C:E4:D0:FD:4F:33:97:2A:FD:C9:DA:D1:5B:F8
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/UeoePqSbfOTQ_U8zlyr9ydrRW_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.144.0/22
5.10.128.0/21
5.183.248.0/22
23.90.192.0/18
31.204.80.0/21
45.80.252.0/22
45.86.96.0/22
45.89.76.0/22
45.92.180.0/22
45.129.216.0-45.129.218.255
45.133.68.0/22
45.142.108.0/22
45.152.16.0/22
46.18.120.0/21
62.192.156.0/22
79.99.160.0/21
88.218.12.0/22
92.119.232.0/22
94.154.4.0/24
185.20.16.0/22
185.48.252.0/22
185.86.88.0/22
185.87.100.0/22
185.98.116.0/22
185.132.64.0/22
185.133.80.0/22
185.134.156.0/22
185.135.176.0/22
185.138.116.0/22
185.163.136.0/22
185.163.212.0/22
185.163.220.0/22
185.163.228.0/22
185.169.156.0/22
185.186.88.0/22
185.191.36.0/22
185.197.108.0/22
185.241.140.0/22
185.254.8.0/22
195.216.140.0/22
IPv6:
2a00:41e0::/29
2a00:6780::/29
2a01:648::/29
2a05:b780::/29
2a05:c100::/29
Signature Algorithm: sha256WithRSAEncryption
9e:0d:9f:07:4e:67:12:44:ac:39:2e:8e:ae:f7:34:c8:f4:92:
e0:4f:84:eb:d1:96:55:d2:9f:ca:94:b9:55:9c:15:24:f6:39:
de:dc:96:b9:5f:57:56:de:40:17:99:15:e1:e9:81:ee:6c:f7:
4a:9d:4f:2a:9c:98:59:b5:ed:64:17:89:ec:47:04:4b:62:22:
35:33:c0:6b:a5:e6:5b:21:e2:e4:d4:eb:2c:de:c4:9b:9b:cb:
e5:bd:91:64:1e:77:db:76:2f:1d:25:14:12:03:5f:4b:31:74:
0e:5b:d5:eb:69:1b:b8:e6:72:1f:33:62:f7:a0:b8:93:04:a6:
36:a4:53:c4:7a:0d:d1:89:f9:6b:86:34:7f:ea:e0:ae:ee:9c:
29:f0:f8:40:be:20:3d:4a:03:f0:00:87:e3:f7:f0:1a:2a:c4:
08:1b:76:0f:e6:a8:9b:b3:86:6a:f5:b1:cb:f1:b5:f2:0b:bb:
81:7a:84:5d:e0:c1:fa:37:e2:ce:74:e2:18:3e:70:37:d3:c8:
ca:6b:58:fd:fc:87:5f:bd:96:af:bd:70:12:fc:d0:ac:89:0f:
13:44:8b:1e:aa:bd:ae:6e:a2:d8:1f:76:6f:98:1a:cc:bd:ab:
8c:d2:f7:8b:ad:d2:e4:2d:b8:00:5f:bf:5d:54:13:5b:0d:e6:
91:ae:9b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:11 2024 by rpki-client on console-fra.rpki-client.org