Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ItEb7cH8iKURICiTNliIgmjl1Ms.roa
File: ItEb7cH8iKURICiTNliIgmjl1Ms.roa (raw, json)
Hash identifier: fFSiT04+oKkRb0bEyafXt5mUFH3BgFhzz0MfyF9B45Q=
Subject key identifier: 22:D1:1B:ED:C1:FC:88:A5:11:20:28:93:36:58:88:82:68:E5:D4:CB
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 08090B2B
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ItEb7cH8iKURICiTNliIgmjl1Ms.roa
Signing time: Sat 05 Feb 2022 12:24:47 +0000
ROA not before: Sat 05 Feb 2022 12:24:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8888
IP address blocks: 141.98.196.0/22 maxlen: 24
80.66.196.0/22 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
45.90.210.0/24 maxlen: 24
193.111.30.0/23 maxlen: 24
45.139.192.0/22 maxlen: 24
195.245.219.0/24 maxlen: 24
45.92.157.0/24 maxlen: 24
45.131.152.0/22 maxlen: 24
45.130.20.0/22 maxlen: 24
194.104.152.0/22 maxlen: 24
45.147.48.0/22 maxlen: 24
194.36.27.0/24 maxlen: 24
95.214.164.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
185.222.216.0/21 maxlen: 24
185.194.52.0/22 maxlen: 24
2a09:0:15::/48 maxlen: 48
2a06:57c0::/29 maxlen: 48
2a09::/29 maxlen: 128
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a06:4fc0::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a09:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134810411 (0x8090b2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Feb 5 12:24:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22d11bedc1fc88a5112028933658888268e5d4cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:47:01:78:d2:ef:cd:e1:db:d2:c9:0a:89:ca:
61:81:b3:2a:e8:62:37:c2:3d:54:17:df:a8:7b:bd:
ea:87:ec:8e:2c:ec:2e:1d:b3:a2:17:f6:cd:f9:56:
45:58:5d:67:0d:9e:c4:01:d4:ed:d6:25:ed:93:b3:
84:6d:06:9b:d9:77:c5:5b:e0:35:e6:28:88:ca:3a:
df:1d:37:3d:a5:58:07:e5:7a:a9:55:5c:d9:a6:f1:
d5:3b:c5:8c:da:43:a5:8c:1b:f3:56:0b:02:8b:e0:
99:79:e5:a5:b4:38:23:13:31:93:c7:8e:2d:21:5d:
37:9c:9f:95:27:6e:5b:7e:60:c5:dc:e4:40:87:19:
93:ee:2d:d8:ff:ca:d6:15:17:b1:c9:62:95:d7:fc:
d5:d8:ec:8b:0d:a8:ae:7d:3f:44:79:26:cf:90:7e:
01:eb:c2:08:f8:5a:94:7c:8a:fd:06:47:e7:08:52:
09:b1:f1:1f:12:74:41:55:2f:c2:10:e3:66:e2:0f:
61:95:bb:2b:92:e9:2a:89:03:bb:ba:03:62:ec:d8:
ae:c9:cd:67:29:d3:1d:3e:4b:3f:b4:4b:e1:2d:18:
93:e1:65:dd:df:bf:af:a5:8b:21:13:07:1d:8b:9c:
11:bf:4a:93:e1:43:a3:80:d7:cf:1c:32:51:70:10:
af:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D1:1B:ED:C1:FC:88:A5:11:20:28:93:36:58:88:82:68:E5:D4:CB
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ItEb7cH8iKURICiTNliIgmjl1Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.139.192.0/22
45.143.232.0/22
45.147.48.0/22
80.66.196.0/22
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.222.216.0/21
193.111.30.0/23
194.36.27.0/24
194.104.152.0/22
194.169.54.0/23
195.245.219.0/24
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09::/29
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
8c:54:23:5f:1a:72:c9:d8:93:da:35:e4:b7:c6:c4:11:78:96:
d0:d9:ed:d3:53:03:8a:87:ed:e4:7a:05:1c:c4:77:df:52:4b:
fb:1f:ce:f2:9f:87:fe:a3:16:35:6e:db:39:02:f4:30:a3:24:
c9:e0:37:66:e8:c1:2e:ec:f7:ae:4d:1d:6e:a1:87:95:f6:dc:
6f:56:7b:f9:cb:05:81:83:95:d7:22:8c:8f:ff:a6:f1:17:78:
f5:33:00:28:7a:ba:fb:a5:dd:75:c2:59:2b:62:9d:68:bf:73:
7f:ac:28:ff:25:98:d2:e2:08:e4:e7:93:c2:6c:0f:a5:66:94:
ba:0e:d1:48:0c:c7:66:b8:6f:9e:61:4c:e2:e9:cc:18:cb:b6:
25:82:2c:02:a5:93:b2:30:29:3b:0a:6e:b1:72:dc:3c:73:7e:
6c:24:99:ee:ea:ce:49:0f:3b:92:47:d1:da:cc:86:96:c9:af:
44:4e:8a:60:1d:16:df:c8:02:2b:1d:c0:54:60:6c:ae:86:60:
c5:20:dc:77:85:09:be:7d:59:35:af:71:26:de:80:85:a4:94:
d5:83:51:99:32:54:7d:a5:f3:3a:d2:2a:7e:c1:1c:37:54:19:
1f:36:4b:01:7e:e6:82:2c:d9:c7:a0:bd:02:08:99:61:09:60:
3e:77:39:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:58 2023 by rpki-client on console-fra.rpki-client.org