Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/C0uIfk3vJyqeJkNwAbe_kNrng3o.roa
File: C0uIfk3vJyqeJkNwAbe_kNrng3o.roa (raw, json)
Hash identifier: GzAnbYeHdJZxcC9EL364XkWpitgvIIg/8nRInpmoJBM=
Subject key identifier: 0B:4B:88:7E:4D:EF:27:2A:9E:26:43:70:01:B7:BF:90:DA:E7:83:7A
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01854F928AAE0EB1D6D11A00A5CD9E064CA0
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/C0uIfk3vJyqeJkNwAbe_kNrng3o.roa
Signing time: Mon 26 Dec 2022 17:54:41 +0000
ROA not before: Mon 26 Dec 2022 17:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8888
IP address blocks: 80.66.196.0/22 maxlen: 24
141.98.196.0/22 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
45.90.210.0/24 maxlen: 24
193.111.30.0/23 maxlen: 24
195.245.219.0/24 maxlen: 24
45.139.192.0/22 maxlen: 24
45.92.157.0/24 maxlen: 24
45.131.152.0/22 maxlen: 24
45.130.20.0/22 maxlen: 24
195.245.242.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
45.147.48.0/22 maxlen: 24
194.36.24.0/24 maxlen: 24
45.143.233.0/24 maxlen: 24
95.214.164.0/22 maxlen: 24
194.36.27.0/24 maxlen: 24
45.143.232.0/22 maxlen: 24
45.143.235.0/24 maxlen: 24
45.143.234.0/24 maxlen: 24
194.169.54.0/24 maxlen: 24
194.169.54.0/23 maxlen: 24
185.222.216.0/21 maxlen: 24
185.194.52.0/22 maxlen: 24
2a09:0:15::/48 maxlen: 48
2a06:57c0::/29 maxlen: 48
2a09::/29 maxlen: 128
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a06:4fc0::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a09:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4f:92:8a:ae:0e:b1:d6:d1:1a:00:a5:cd:9e:06:4c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Dec 26 17:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b4b887e4def272a9e26437001b7bf90dae7837a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a7:85:62:16:76:76:3c:63:4b:c5:dd:b8:7e:
9e:60:d1:60:f6:9a:51:16:ce:12:b1:53:5c:55:88:
70:89:e0:a9:c5:29:bc:7e:7f:b6:ec:ad:8d:aa:f2:
ee:39:24:2c:25:83:8c:64:df:d4:92:ad:f3:87:2a:
36:73:4f:bc:9b:c5:da:3f:6d:dd:04:7d:7c:12:33:
f9:99:46:47:fd:74:2f:a2:53:c6:18:cb:cf:f9:10:
d2:16:37:de:42:e9:5d:19:d9:94:f4:1e:e4:a0:4b:
50:9a:32:4a:05:76:8c:fb:22:3c:b6:33:95:6e:88:
5c:4b:7d:7c:8f:d6:28:b9:d5:cd:eb:c6:37:c3:7c:
61:34:dd:59:1a:da:f2:3e:5a:8f:84:cb:2f:85:92:
87:23:93:ab:bb:f9:9b:2e:c5:11:ac:cc:ef:c7:72:
87:77:96:f6:8e:a2:3c:71:54:03:94:eb:ac:53:bb:
93:7d:fe:8f:fb:2a:87:3a:3a:17:94:1c:b8:78:d4:
d8:1b:ca:63:97:8f:28:d7:d9:1a:81:41:f8:2d:aa:
82:5d:22:39:10:a8:c5:e7:85:1a:dc:f2:57:ba:9d:
75:af:10:56:75:3d:24:33:fe:1c:70:03:a7:49:e0:
96:51:1c:15:fe:e4:8b:59:7a:ed:59:17:b9:d3:d1:
fb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4B:88:7E:4D:EF:27:2A:9E:26:43:70:01:B7:BF:90:DA:E7:83:7A
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/C0uIfk3vJyqeJkNwAbe_kNrng3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.139.192.0/22
45.143.232.0/22
45.147.48.0/22
80.66.196.0/22
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.222.216.0/21
193.111.30.0/23
194.36.24.0/24
194.36.27.0/24
194.104.152.0/22
194.169.54.0/23
195.245.219.0/24
195.245.241.0-195.245.242.255
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09::/29
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
25:e3:86:d9:c8:cf:30:4f:10:16:3c:de:22:b9:c6:10:77:23:
99:fc:1d:fc:99:80:75:0d:ce:6d:34:3c:a5:34:9a:44:fe:87:
3d:52:d7:80:60:eb:dc:7d:4d:aa:97:5c:2b:52:26:b4:f7:0c:
15:05:4e:e7:76:51:2f:b4:16:e1:42:d8:b5:ea:1d:3e:1e:55:
95:c8:56:69:01:e4:fb:1c:5e:94:8b:94:6b:97:0b:ee:b2:20:
b3:cb:93:2b:5e:f6:85:6b:59:e8:fd:09:bc:67:24:ce:bb:a2:
9b:1e:ea:19:50:e0:cb:51:ff:a0:c2:20:74:34:c7:f6:40:3e:
e1:e3:b7:5a:dc:e9:54:f8:f0:ae:58:e9:8f:17:38:e2:28:e6:
f6:c1:d9:6e:6d:ba:b2:58:a3:62:04:fb:de:5f:f6:ad:88:1f:
cb:5f:f4:f4:51:cd:e2:62:69:2b:c8:26:dd:39:cf:27:50:b1:
34:7c:d8:8c:55:f3:39:da:22:bd:4c:3e:21:22:c7:9b:34:6c:
20:7a:ef:97:19:ee:1e:30:34:d1:27:72:10:87:ca:e6:47:a5:
b8:b6:3e:c5:47:1c:7b:49:93:6b:6c:79:6f:03:59:0d:a1:08:
6c:d9:22:45:c1:2c:f7:b5:cf:5d:a3:29:d1:4c:29:a4:3a:4d:
87:68:fd:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org