Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/fuzN4LTN3iDA4zfI0BCICIeUS-c.roa
File: fuzN4LTN3iDA4zfI0BCICIeUS-c.roa (raw, json)
Hash identifier: 18TnggoYrmDNbqSMcpiFv3e/oeP+D3z7bua54Qam73o=
Subject key identifier: 7E:EC:CD:E0:B4:CD:DE:20:C0:E3:37:C8:D0:10:88:08:87:94:4B:E7
Certificate issuer: /CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Certificate serial: 018762E49DE9C77A7BFAB5EDCB952511EA34
Authority key identifier: 92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/fuzN4LTN3iDA4zfI0BCICIeUS-c.roa
Signing time: Sat 08 Apr 2023 22:02:42 +0000
ROA not before: Sat 08 Apr 2023 22:02:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59588
IP address blocks: 45.153.119.0/24 maxlen: 24
45.153.116.0/24 maxlen: 24
45.153.116.0/23 maxlen: 23
45.153.117.0/24 maxlen: 24
45.153.118.0/23 maxlen: 23
45.153.118.0/24 maxlen: 24
151.236.160.0/24 maxlen: 24
151.236.161.0/24 maxlen: 24
151.236.162.0/23 maxlen: 23
151.236.162.0/24 maxlen: 24
151.236.163.0/24 maxlen: 24
151.236.160.0/23 maxlen: 23
151.236.164.0/23 maxlen: 23
151.236.164.0/24 maxlen: 24
151.236.165.0/24 maxlen: 24
151.236.166.0/24 maxlen: 24
151.236.167.0/24 maxlen: 24
151.236.168.0/23 maxlen: 23
151.236.168.0/24 maxlen: 24
151.236.169.0/24 maxlen: 24
151.236.170.0/24 maxlen: 24
151.236.170.0/23 maxlen: 23
151.236.166.0/23 maxlen: 23
151.236.172.0/24 maxlen: 24
151.236.171.0/24 maxlen: 24
151.236.172.0/23 maxlen: 23
151.236.173.0/24 maxlen: 24
151.236.176.0/23 maxlen: 23
151.236.175.0/24 maxlen: 24
151.236.176.0/24 maxlen: 24
151.236.177.0/24 maxlen: 24
151.236.174.0/23 maxlen: 23
151.236.174.0/24 maxlen: 24
151.236.178.0/23 maxlen: 23
151.236.178.0/24 maxlen: 24
151.236.179.0/24 maxlen: 24
151.236.186.0/24 maxlen: 24
151.236.182.0/23 maxlen: 24
151.236.182.0/24 maxlen: 24
151.236.183.0/24 maxlen: 24
151.236.180.0/24 maxlen: 24
151.236.180.0/23 maxlen: 23
151.236.181.0/24 maxlen: 24
151.236.189.0/24 maxlen: 24
151.236.190.0/24 maxlen: 24
151.236.190.0/23 maxlen: 23
151.236.191.0/24 maxlen: 24
151.236.188.0/23 maxlen: 23
151.236.188.0/24 maxlen: 24
2a10:2200:b::/48 maxlen: 48
2a10:2200:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:62:e4:9d:e9:c7:7a:7b:fa:b5:ed:cb:95:25:11:ea:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Validity
Not Before: Apr 8 22:02:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7eeccde0b4cdde20c0e337c8d010880887944be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:df:77:9d:a1:91:6c:ad:b8:a5:67:c7:c9:22:
2b:50:8c:16:4d:88:29:bc:a4:43:a8:8a:44:cc:55:
67:58:85:61:d1:23:3a:9f:de:a6:50:3e:dc:e7:07:
64:60:96:e5:2d:9f:fb:85:52:86:de:06:a6:72:9b:
27:41:b0:30:f0:9c:4d:66:02:b5:3b:0a:e6:76:89:
8f:63:c5:01:63:a7:3c:32:10:c5:7c:d7:4d:0b:e1:
07:b9:25:05:c8:49:ff:37:f7:a1:56:f1:e0:79:90:
c0:eb:81:c6:3f:27:dd:79:1f:b1:9f:4d:fa:f4:58:
18:16:4b:b5:63:69:82:b2:40:5f:4b:57:3c:58:ef:
55:7f:ec:14:24:ff:54:af:78:a3:49:85:4e:56:6a:
e0:37:73:d1:48:4e:48:aa:64:71:06:42:55:a5:dd:
ee:56:05:7d:c3:04:3e:09:88:36:2a:13:19:9a:cd:
9f:7b:d9:24:4f:2b:1f:f2:f5:ea:55:4a:9c:f4:db:
39:63:cb:74:b3:87:89:14:4c:31:71:7c:0d:e0:b6:
af:ee:15:7e:ad:88:9b:e3:35:c6:1a:ea:b7:86:78:
22:d0:4c:bf:10:4e:c3:5a:6b:4d:1e:92:a5:a4:ab:
55:86:bd:e0:9c:9b:e0:9d:4f:76:aa:37:e6:e7:bb:
b4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EC:CD:E0:B4:CD:DE:20:C0:E3:37:C8:D0:10:88:08:87:94:4B:E7
X509v3 Authority Key Identifier:
keyid:92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/fuzN4LTN3iDA4zfI0BCICIeUS-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/khkujXhVgfcrGGRCJL2MP6ii0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.116.0/22
151.236.160.0-151.236.183.255
151.236.186.0/24
151.236.188.0/22
IPv6:
2a10:2200:2::/48
2a10:2200:b::/48
Signature Algorithm: sha256WithRSAEncryption
58:77:d1:fe:1e:ee:c8:6a:26:cd:59:d2:8a:cd:85:2d:ee:b0:
80:7e:5a:01:9d:bd:34:37:6b:06:33:8f:ff:5c:ea:38:4e:33:
be:9d:ae:f4:4a:ff:7c:02:91:ff:1a:78:16:82:ec:e0:ab:22:
16:01:e0:9a:8b:de:17:7c:26:45:7a:32:53:d3:f4:e8:c7:1c:
55:43:2b:3c:97:55:71:e2:15:7a:08:65:5e:af:bd:28:b9:9f:
a3:b9:59:43:a3:8b:c4:0b:1f:7d:cf:74:92:3f:21:ef:21:96:
b5:db:70:da:c0:e9:f1:6f:4a:ee:89:a0:ec:e2:af:28:cf:c0:
12:36:00:c2:68:73:39:ac:69:88:e3:ef:d2:4a:a4:a2:4b:a3:
b3:26:e1:07:61:60:d7:53:ee:2d:ab:15:a0:5f:6c:09:98:85:
5c:27:85:7c:3c:27:13:aa:db:c7:db:ea:eb:5a:f8:d3:49:a2:
43:5e:0e:05:07:c1:e6:9c:0f:31:00:6b:09:9d:f9:e9:46:53:
44:af:78:5c:98:17:5a:07:66:c9:03:8c:7e:b7:a4:65:bb:45:
31:a3:16:59:1e:a5:d5:9b:a7:4d:7e:5c:e8:08:91:8d:0e:4e:
29:2e:cb:ad:2a:4e:03:87:ed:79:9e:f7:4b:f7:26:df:be:a1:
d0:aa:9d:f7
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgISAYdi5J3px3p7+rXty5UlEeo0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMTkyZThkNzg1NTgxZjcyYjE4NjQ0MjI0YmQ4YzNmYThh
MmQxMWIwHhcNMjMwNDA4MjIwMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZWVjY2RlMGI0Y2RkZTIwYzBlMzM3YzhkMDEwODgwODg3OTQ0YmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwt93naGRbK24pWfHySIrUIwWTYgp
vKRDqIpEzFVnWIVh0SM6n96mUD7c5wdkYJblLZ/7hVKG3gamcpsnQbAw8JxNZgK1
OwrmdomPY8UBY6c8MhDFfNdNC+EHuSUFyEn/N/ehVvHgeZDA64HGPyfdeR+xn036
9FgYFku1Y2mCskBfS1c8WO9Vf+wUJP9Ur3ijSYVOVmrgN3PRSE5IqmRxBkJVpd3u
VgV9wwQ+CYg2KhMZms2fe9kkTysf8vXqVUqc9Ns5Y8t0s4eJFEwxcXwN4Lav7hV+
rYib4zXGGuq3hngi0Ey/EE7DWmtNHpKlpKtVhr3gnJvgnU92qjfm57u01QIDAQAB
o4ICPTCCAjkwHQYDVR0OBBYEFH7szeC0zd4gwOM3yNAQiAiHlEvnMB8GA1UdIwQY
MBaAFJIZLo14VYH3KxhkQiS9jD+ootEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2hrdWpYaFZnZmNyR0dSQ0pMMk1QNmlpMFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9kOWIzOTctZTEwNS00YWM5LTg1Mzct
MDA4NWEzNjVhMjVmLzEvZnV6TjRMVE4zaURBNHpmSTBCQ0lDSWVVUy1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi9kOWIzOTctZTEwNS00YWM5LTg1MzctMDA4NWEzNjVhMjVm
LzEva2hrdWpYaFZnZmNyR0dSQ0pMMk1QNmlpMFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAmBAIAATAgAwQCLZl0MAwD
BAWX7KADBAOX7LADBACX7LoDBAKX7LwwGAQCAAIwEgMHACoQIgAAAgMHACoQIgAA
CzANBgkqhkiG9w0BAQsFAAOCAQEAWHfR/h7uyGomzVnSis2FLe6wgH5aAZ29NDdr
BjOP/1zqOE4zvp2u9Er/fAKR/xp4FoLs4KsiFgHgmoveF3wmRXoyU9P06MccVUMr
PJdVceIVeghlXq+9KLmfo7lZQ6OLxAsffc90kj8h7yGWtdtw2sDp8W9K7omg7OKv
KM/AEjYAwmhzOaxpiOPv0kqkokujsybhB2Fg11PuLasVoF9sCZiFXCeFfDwnE6rb
x9vq61r400miQ14OBQfB5pwPMQBrCZ356UZTRK94XJgXWgdmyQOMfrekZbtFMaMW
WR6l1ZunTX5c6AiRjQ5OKS7LrSpOA4fteZ73S/cm376h0Kqd9w==
-----END CERTIFICATE-----
Generated at Thu Feb 20 03:35:01 2025 by rpki-client