Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/lQGBXHUJ0C1byfHsGZfdW-CuAB4.roa
File: lQGBXHUJ0C1byfHsGZfdW-CuAB4.roa (raw, json)
Hash identifier: JsmJepwSWsuKO2JQMBnm50hAyEa/gTWJaaCXjEAaKDo=
Subject key identifier: 95:01:81:5C:75:09:D0:2D:5B:C9:F1:EC:19:97:DD:5B:E0:AE:00:1E
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 055FB28E
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/lQGBXHUJ0C1byfHsGZfdW-CuAB4.roa
Signing time: Wed 20 Apr 2022 14:44:25 +0000
ROA not before: Wed 20 Apr 2022 14:44:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 37.252.3.0/24 maxlen: 24
37.252.14.0/23 maxlen: 23
37.252.13.0/24 maxlen: 24
185.238.170.0/23 maxlen: 23
185.238.168.0/23 maxlen: 23
37.1.200.0/21 maxlen: 21
37.1.216.0/21 maxlen: 21
5.45.72.0/22 maxlen: 22
5.45.76.0/22 maxlen: 22
5.45.84.0/22 maxlen: 22
5.45.88.0/22 maxlen: 22
5.45.92.0/22 maxlen: 22
5.61.48.0/22 maxlen: 22
5.61.56.0/22 maxlen: 22
5.61.52.0/22 maxlen: 22
5.45.64.0/21 maxlen: 21
45.136.48.0/22 maxlen: 22
2a02:c6c3::/32 maxlen: 32
2a02:c6c1:2::/48 maxlen: 48
2a02:c6c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90157710 (0x55fb28e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Apr 20 14:44:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9501815c7509d02d5bc9f1ec1997dd5be0ae001e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:df:c7:38:30:79:d4:40:d4:63:2e:88:c9:
3d:5f:70:eb:e0:65:57:2b:c4:b9:8a:a7:37:89:05:
4b:8b:a1:5b:db:07:79:9d:67:71:ce:09:8d:1d:a3:
42:fc:25:50:7d:a8:8c:5c:cc:46:b5:ac:c9:0d:7a:
55:64:cb:ca:f1:e8:78:d3:5a:82:99:33:40:be:03:
37:81:bb:5f:67:45:e4:83:94:7f:f1:45:04:5c:90:
71:76:71:ea:10:cd:5c:48:e2:8d:67:68:a0:4e:43:
95:4d:2a:af:1a:a5:be:ba:03:6a:c7:ae:fc:ca:ed:
7d:b5:25:dd:8a:47:17:08:41:59:9d:0f:02:f4:eb:
64:2d:df:86:e3:e8:b7:30:ca:ec:87:bb:17:fa:ac:
c0:27:6b:09:c0:67:80:26:55:15:f0:49:99:f2:66:
76:10:67:62:d3:24:b5:47:88:3c:2e:7b:89:91:d7:
3c:af:9b:08:e6:86:64:b0:ad:d7:2f:c8:5e:d0:aa:
e0:12:ca:40:6f:fe:57:a3:97:e1:f1:7a:60:77:0d:
04:c3:d3:52:fe:20:9f:85:27:9f:3e:46:dd:2d:4a:
20:6b:90:cd:e2:27:f3:84:87:31:22:bf:2a:c4:35:
51:10:00:65:18:49:cc:97:2b:4e:be:8d:c4:d1:3f:
40:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:01:81:5C:75:09:D0:2D:5B:C9:F1:EC:19:97:DD:5B:E0:AE:00:1E
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/lQGBXHUJ0C1byfHsGZfdW-CuAB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.64.0/20
5.45.84.0-5.45.95.255
5.61.48.0-5.61.59.255
37.1.200.0/21
37.1.216.0/21
37.252.3.0/24
37.252.13.0-37.252.15.255
45.136.48.0/22
185.238.168.0/22
IPv6:
2a02:c6c1:2::/48
2a02:c6c2::/31
Signature Algorithm: sha256WithRSAEncryption
31:3b:55:96:ff:32:99:1a:b1:96:13:09:98:55:fc:d8:e1:01:
22:95:ec:46:f7:58:a1:4e:8c:69:8a:43:3e:ab:39:46:07:fd:
a7:7e:88:54:75:f2:77:6a:53:39:86:7c:dd:26:a0:4e:f4:60:
a0:57:4f:c9:57:e2:17:5d:40:85:4e:3b:ff:08:6d:fc:88:24:
d0:0b:15:d1:e5:ae:21:22:53:1a:5b:c7:a4:85:e6:a9:80:c3:
96:4a:ff:d0:37:47:ae:49:6a:9e:3b:9d:d6:41:b5:2c:d7:4b:
36:71:c7:aa:00:fc:48:03:e9:ba:ef:0b:4f:1c:1a:d5:dc:6e:
26:7e:46:be:a6:19:b5:70:a4:99:d9:34:22:2a:49:7a:e8:15:
11:c9:9e:ca:9e:d7:62:33:2d:ac:20:64:1b:92:51:f1:7f:dc:
3c:50:4b:4b:e8:bb:4a:21:0c:b3:0d:41:8e:4b:1e:f9:81:46:
a6:94:56:00:0c:3c:c8:ec:57:2c:cd:08:eb:9c:68:1f:20:c7:
3d:65:fc:97:56:4d:ce:9c:61:86:6d:eb:7e:38:a7:41:b3:38:
54:33:41:66:9c:26:4b:18:b3:6d:d1:f7:2e:4f:f8:4f:86:1d:
a3:8e:53:57:14:de:30:64:ea:8c:c4:30:ef:4b:88:64:3c:cd:
d3:dd:fc:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-ams.rpki-client.org