Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/m0mXnX5hf3Yg9zjlVU5IRWhWgz0.roa
File: m0mXnX5hf3Yg9zjlVU5IRWhWgz0.roa (raw, json)
Hash identifier: fHKtVm9dYaMgJRAIie/c1ISYF8BMmksRzdPWAVIpdg0=
Subject key identifier: 9B:49:97:9D:7E:61:7F:76:20:F7:38:E5:55:4E:48:45:68:56:83:3D
Certificate issuer: /CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Certificate serial: 16A03B40
Authority key identifier: C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/m0mXnX5hf3Yg9zjlVU5IRWhWgz0.roa
Signing time: Tue 28 Jun 2022 09:51:02 +0000
ROA not before: Tue 28 Jun 2022 09:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60032
IP address blocks: 193.56.168.0/22 maxlen: 22
45.152.184.0/22 maxlen: 22
194.36.137.0/24 maxlen: 24
45.129.48.0/22 maxlen: 22
185.107.84.0/22 maxlen: 24
185.61.144.0/22 maxlen: 22
109.70.16.0/21 maxlen: 22
45.85.176.0/22 maxlen: 22
45.11.148.0/22 maxlen: 22
194.36.221.0/24 maxlen: 24
80.240.176.0/21 maxlen: 21
185.163.60.0/22 maxlen: 22
45.90.224.0/22 maxlen: 22
185.203.180.0/22 maxlen: 22
194.36.169.0/24 maxlen: 24
5.252.60.0/22 maxlen: 22
194.36.167.0/24 maxlen: 24
188.92.64.0/21 maxlen: 22
5.252.88.0/22 maxlen: 22
185.13.180.0/22 maxlen: 22
95.214.44.0/22 maxlen: 22
2.59.68.0/22 maxlen: 22
2.59.72.0/22 maxlen: 22
193.8.116.0/22 maxlen: 22
185.229.176.0/22 maxlen: 22
128.127.16.0/21 maxlen: 22
185.253.36.0/22 maxlen: 22
212.104.240.0/20 maxlen: 20
185.128.140.0/22 maxlen: 23
194.182.112.0/20 maxlen: 22
2a06:4280::/29 maxlen: 32
2a02:cfc0::/29 maxlen: 32
2a02:79e0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379599680 (0x16a03b40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Validity
Not Before: Jun 28 09:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b49979d7e617f7620f738e5554e48456856833d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7b:ff:ed:31:d4:f2:e2:84:c1:dc:e4:88:19:
3f:78:20:fe:6d:ae:e7:65:8f:1b:ff:b2:63:88:43:
b4:d0:55:fd:ba:94:11:9f:c6:d5:51:e8:72:50:93:
4d:fa:56:3b:ca:f9:a7:a5:3b:24:58:17:62:84:17:
06:4e:d4:8d:b7:77:91:a5:91:44:5d:28:d8:76:96:
4a:3d:34:58:f6:62:24:1c:f6:26:c7:7b:e9:5a:05:
97:06:0b:be:54:74:0d:72:5f:88:ed:f3:b1:5f:9e:
d0:35:1f:e4:8f:64:9d:af:75:e7:80:c5:b0:f2:f1:
33:49:21:58:90:16:a1:c3:e8:aa:49:62:4b:95:cf:
1d:84:7e:dd:4b:d7:bc:cb:26:e6:b4:81:42:6a:9d:
95:9c:26:f8:a9:eb:52:d4:14:4b:b9:d9:09:96:35:
45:08:6f:92:0e:61:fb:5f:8a:39:72:94:70:b8:bc:
ed:3b:26:b6:b2:10:9c:e3:43:5c:26:a7:f9:19:ea:
d6:8d:c0:90:21:01:1d:0a:31:15:44:0b:b3:20:77:
98:17:1d:d3:80:55:ae:fd:77:66:36:ca:c5:34:1b:
c4:57:18:3e:25:03:a0:6a:99:cf:e7:15:d4:a3:2b:
f1:34:81:3d:22:0f:64:d2:10:61:8e:79:65:a2:f2:
37:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:49:97:9D:7E:61:7F:76:20:F7:38:E5:55:4E:48:45:68:56:83:3D
X509v3 Authority Key Identifier:
keyid:C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/m0mXnX5hf3Yg9zjlVU5IRWhWgz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/yGjKghR-0id7S8xppShbrnNfLkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.68.0-2.59.75.255
5.252.60.0/22
5.252.88.0/22
45.11.148.0/22
45.85.176.0/22
45.90.224.0/22
45.129.48.0/22
45.152.184.0/22
80.240.176.0/21
95.214.44.0/22
109.70.16.0/21
128.127.16.0/21
185.13.180.0/22
185.61.144.0/22
185.107.84.0/22
185.128.140.0/22
185.163.60.0/22
185.203.180.0/22
185.229.176.0/22
185.253.36.0/22
188.92.64.0/21
193.8.116.0/22
193.56.168.0/22
194.36.137.0/24
194.36.167.0/24
194.36.169.0/24
194.36.221.0/24
194.182.112.0/20
212.104.240.0/20
IPv6:
2a02:79e0::/32
2a02:cfc0::/29
2a06:4280::/29
Signature Algorithm: sha256WithRSAEncryption
a8:8f:3c:44:a1:b0:b6:80:57:df:7c:ed:1f:c4:30:98:3d:58:
28:c1:cc:f7:c2:5d:22:f8:82:9b:78:1e:b2:4a:36:33:d1:b2:
98:ba:1e:da:13:98:09:26:f0:a1:9c:0b:cb:30:a0:95:55:8b:
c9:56:24:09:e2:81:2b:66:82:69:2e:e9:5c:ea:a8:25:40:77:
b6:5b:5e:66:51:f8:58:a0:a5:c1:7e:f9:4a:31:15:3f:e3:b6:
ee:40:de:e0:35:8a:34:e8:1d:6d:2e:9f:e5:c3:c1:ca:f3:d3:
4c:44:45:40:c8:d7:2f:ac:f9:4f:f2:97:ff:14:6c:66:91:2e:
e9:b9:49:a4:46:09:08:da:0b:97:ad:6a:61:1c:d8:51:a0:7f:
83:64:35:f0:50:8d:2c:3f:4a:5b:8c:ca:89:2d:ce:99:9c:8d:
73:4c:15:44:d7:7a:bb:d5:3c:2e:48:4f:ac:ca:6c:b7:0f:03:
db:8f:98:36:76:f2:6c:e5:e6:54:16:47:6f:3d:d0:8a:77:15:
d3:bd:2b:7c:d5:44:6f:d8:5f:d4:2c:dc:bd:45:a7:58:44:e5:
c1:b7:9a:25:f4:e1:f9:72:f5:67:20:fb:48:a1:98:5f:b5:33:
f9:31:bd:a0:64:b8:54:33:0c:93:4e:93:18:a3:10:73:e3:08:
2d:25:32:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:56 2024 by rpki-client on console-fra.rpki-client.org