Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/ejuwsVwA_IeWbT5_8VwqkDLPhfo.roa
File: ejuwsVwA_IeWbT5_8VwqkDLPhfo.roa (raw, json)
Hash identifier: /cO44EOtS5+j1KyObdCsEBIwyiBYdEF1IXu5bVDzmQc=
Subject key identifier: 7A:3B:B0:B1:5C:00:FC:87:96:6D:3E:7F:F1:5C:2A:90:32:CF:85:FA
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 01831CE092EFDEC437A8A86430C82DE03CB8
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/ejuwsVwA_IeWbT5_8VwqkDLPhfo.roa
Signing time: Thu 08 Sep 2022 11:33:43 +0000
ROA not before: Thu 08 Sep 2022 11:33:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 145.97.16.0/22 maxlen: 22
145.97.20.0/22 maxlen: 22
145.97.24.0/21 maxlen: 21
145.124.0.0/15 maxlen: 15
145.23.0.0/19 maxlen: 19
145.23.0.0/16 maxlen: 16
145.97.48.0/20 maxlen: 20
194.171.0.0/16 maxlen: 16
145.107.0.0/16 maxlen: 22
145.33.0.0/16 maxlen: 16
145.20.0.0/16 maxlen: 16
145.97.128.0/18 maxlen: 18
145.138.0.0/16 maxlen: 16
145.74.0.0/15 maxlen: 15
145.37.0.0/16 maxlen: 16
145.144.0.0/12 maxlen: 12
145.97.64.0/18 maxlen: 18
145.76.0.0/16 maxlen: 16
145.116.128.0/18 maxlen: 18
145.103.0.0/16 maxlen: 16
145.140.0.0/14 maxlen: 14
145.2.0.0/15 maxlen: 15
145.109.128.0/17 maxlen: 17
145.96.0.0/16 maxlen: 16
145.116.64.0/18 maxlen: 18
145.116.224.0/19 maxlen: 19
145.127.0.0/17 maxlen: 17
145.100.0.0/15 maxlen: 15
145.90.0.0/16 maxlen: 16
145.90.10.0/23 maxlen: 23
145.117.0.0/16 maxlen: 16
145.19.0.0/16 maxlen: 16
145.116.192.0/20 maxlen: 20
145.120.0.0/14 maxlen: 14
145.9.0.0/16 maxlen: 16
145.28.0.0/15 maxlen: 15
145.92.0.0/15 maxlen: 15
145.146.0.0/16 maxlen: 25
145.48.0.0/15 maxlen: 15
145.102.0.0/16 maxlen: 16
145.38.0.0/15 maxlen: 15
145.116.0.0/20 maxlen: 20
145.52.0.0/16 maxlen: 16
145.116.16.0/21 maxlen: 21
145.116.24.0/21 maxlen: 21
145.136.0.0/15 maxlen: 15
145.126.0.0/16 maxlen: 16
145.108.0.0/16 maxlen: 16
145.44.0.0/16 maxlen: 16
145.98.0.0/16 maxlen: 16
145.0.0.0/16 maxlen: 16
145.97.192.0/18 maxlen: 18
145.91.0.0/16 maxlen: 16
145.118.0.0/16 maxlen: 16
145.81.0.0/16 maxlen: 16
145.95.0.0/16 maxlen: 16
145.85.0.0/16 maxlen: 16
145.24.0.0/16 maxlen: 16
145.88.0.0/15 maxlen: 15
145.51.0.0/16 maxlen: 16
195.169.0.0/16 maxlen: 16
2001:610::/29 maxlen: 29
2001:610:130::/48 maxlen: 64
2001:610::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:e0:92:ef:de:c4:37:a8:a8:64:30:c8:2d:e0:3c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Sep 8 11:33:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a3bb0b15c00fc87966d3e7ff15c2a9032cf85fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1b:0a:51:d7:05:10:73:7e:05:4a:fc:e7:a8:
19:72:5d:40:ab:30:47:f4:e8:d4:ed:94:de:40:2c:
a5:c6:e1:9a:1c:9b:df:08:01:fe:b8:db:00:c1:f8:
18:5b:23:15:8d:dc:db:27:8f:4a:28:c5:2b:02:80:
39:81:2a:b7:fa:c5:84:21:9a:84:a0:8c:57:f5:3d:
2a:74:47:41:11:93:0c:17:15:7a:c9:e2:09:6b:35:
3a:8c:cb:28:8c:a3:22:8c:7c:c4:63:08:90:eb:9f:
d5:49:91:70:50:8e:7b:cb:c6:80:b3:e4:3c:9e:78:
ed:14:bc:04:0c:69:97:5e:44:ab:ca:df:7e:c5:01:
6d:33:44:d8:fd:c0:07:0b:7d:fe:ce:29:bf:95:13:
33:30:19:1d:84:fb:6b:16:50:6e:6d:02:e8:db:5e:
f4:53:1a:3b:81:1e:fd:c6:28:00:62:f6:6d:a7:c8:
d8:fc:04:9c:42:61:21:91:16:4f:3b:48:69:da:7b:
ba:c4:5a:13:56:51:65:c9:a1:64:ca:c4:54:04:41:
c8:24:90:f8:93:92:51:d5:28:ff:ab:20:03:d9:23:
c7:b9:14:05:54:c8:70:7d:c6:8d:e3:5b:26:9d:4c:
fd:1a:5c:cd:c7:e1:d0:31:20:08:a8:ee:cc:a4:81:
17:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3B:B0:B1:5C:00:FC:87:96:6D:3E:7F:F1:5C:2A:90:32:CF:85:FA
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/ejuwsVwA_IeWbT5_8VwqkDLPhfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.0.0.0/16
145.2.0.0/15
145.9.0.0/16
145.19.0.0-145.20.255.255
145.23.0.0-145.24.255.255
145.28.0.0/15
145.33.0.0/16
145.37.0.0-145.39.255.255
145.44.0.0/16
145.48.0.0/15
145.51.0.0-145.52.255.255
145.74.0.0-145.76.255.255
145.81.0.0/16
145.85.0.0/16
145.88.0.0-145.93.255.255
145.95.0.0-145.96.255.255
145.97.16.0/20
145.97.48.0-145.98.255.255
145.100.0.0/14
145.107.0.0-145.108.255.255
145.109.128.0/17
145.116.0.0/19
145.116.64.0-145.116.207.255
145.116.224.0-145.118.255.255
145.120.0.0-145.127.127.255
145.136.0.0-145.138.255.255
145.140.0.0-145.159.255.255
194.171.0.0/16
195.169.0.0/16
IPv6:
2001:610::/29
Signature Algorithm: sha256WithRSAEncryption
82:2c:ea:d4:45:fe:62:32:f2:40:4d:01:f4:d4:b9:35:32:f5:
ce:ea:40:37:ef:bd:ea:39:44:93:5b:50:a7:31:ed:5a:21:41:
2d:8a:93:67:61:07:07:e8:e3:ef:f9:c8:92:b5:0e:fb:11:02:
24:06:1b:85:bb:95:b5:d9:29:a0:0d:db:c6:52:10:bd:6d:d0:
6c:8e:d4:82:55:74:27:f0:81:fe:c2:78:ae:f1:69:1a:b6:a9:
3f:f9:01:86:bd:75:e1:09:6f:84:a5:85:2f:81:35:b2:09:4a:
25:53:ee:65:f5:0c:0b:6c:52:35:2b:3c:12:05:2b:16:2b:e3:
82:98:77:63:32:fb:3b:d7:aa:d8:d7:04:ac:ef:20:bb:4b:2a:
e1:36:13:c6:7d:b0:99:eb:44:73:84:52:bb:01:21:88:5c:fa:
10:71:87:32:ce:b6:65:bc:50:ab:64:ee:6d:bd:21:96:49:73:
f6:4c:f1:94:b0:03:d4:4c:d9:2c:35:5b:a5:8b:7f:30:60:22:
3c:40:55:78:3d:d0:ec:43:4c:d7:ce:1b:99:35:fe:7f:fe:64:
d8:bc:8a:ea:d6:0e:de:9a:84:c6:50:53:d2:a5:96:bd:26:a7:
76:2c:3d:88:2d:01:4e:d0:9b:e0:3c:d4:50:b4:32:c5:2b:7b:
6c:f7:83:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org