Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/dE2pe2kOQQxUTaZQruMM8QK9B1g.roa
File: dE2pe2kOQQxUTaZQruMM8QK9B1g.roa (raw, json)
Hash identifier: h5cJG5u9rHrAhqpCDw5gMh2lmRdMAyYi60ZeSVkXNX8=
Subject key identifier: 74:4D:A9:7B:69:0E:41:0C:54:4D:A6:50:AE:E3:0C:F1:02:BD:07:58
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 097D78C7
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/dE2pe2kOQQxUTaZQruMM8QK9B1g.roa
Signing time: Sat 02 Jul 2022 18:28:26 +0000
ROA not before: Sat 02 Jul 2022 18:28:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 949
IP address blocks: 80.66.196.0/22 maxlen: 24
141.98.196.0/22 maxlen: 24
45.142.124.0/22 maxlen: 24
45.87.92.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
94.124.116.0/24 maxlen: 24
94.124.116.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
45.139.192.0/22 maxlen: 24
195.245.219.0/24 maxlen: 24
45.141.44.0/22 maxlen: 24
185.213.151.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
194.114.136.0/24 maxlen: 24
195.245.229.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
194.104.144.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
45.147.48.0/22 maxlen: 24
194.36.24.0/22 maxlen: 24
95.214.164.0/22 maxlen: 24
45.143.232.0/22 maxlen: 24
194.169.54.0/23 maxlen: 24
91.200.240.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
185.194.52.0/22 maxlen: 24
193.32.148.0/22 maxlen: 24
2a06:57c0::/29 maxlen: 48
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a06:4fc0::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a09:6::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159217863 (0x97d78c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jul 2 18:28:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=744da97b690e410c544da650aee30cf102bd0758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:0e:fe:ab:da:3c:8d:8d:ef:2c:8d:8b:50:
86:61:fb:2c:ef:44:86:d7:5a:40:20:62:50:28:3e:
2a:d3:d4:40:03:98:bf:1a:02:f7:b3:70:86:8d:b6:
60:d9:c6:43:ac:0e:64:f6:56:39:65:a1:ab:71:ad:
67:a6:89:d0:73:40:3a:0c:43:60:05:f4:e3:b9:14:
db:f8:c0:cb:28:61:7b:bf:71:55:2d:d5:39:58:6b:
b1:8d:60:16:f7:95:57:4d:63:d5:6c:a8:51:85:9b:
5e:41:ab:c8:0a:b3:02:af:17:91:43:f7:11:66:03:
7f:32:cc:f1:a0:6d:14:ab:ff:20:2d:9b:af:50:65:
fe:31:10:f5:a2:6f:6b:f2:a7:20:fd:68:7f:77:c6:
9d:77:69:e7:ed:ff:e6:97:d0:d4:4d:71:bf:60:5f:
69:a6:d6:0c:67:b7:32:b7:81:28:b8:ee:bc:bf:3c:
ca:83:74:69:8e:f0:e7:c9:12:82:00:74:f5:03:a0:
3e:11:0c:1f:94:65:ad:a0:4f:22:78:c8:ed:ec:c3:
2c:7b:e4:7e:70:c4:59:0a:f3:f0:5a:18:63:38:35:
8f:95:28:48:ac:b5:e2:e4:be:38:07:99:26:73:0a:
57:c8:a6:72:2a:8f:7e:0f:43:af:d0:73:90:78:d8:
01:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4D:A9:7B:69:0E:41:0C:54:4D:A6:50:AE:E3:0C:F1:02:BD:07:58
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/dE2pe2kOQQxUTaZQruMM8QK9B1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.92.0/22
45.130.20.0/22
45.139.192.0/22
45.141.44.0/22
45.142.124.0/22
45.143.232.0/22
45.147.48.0/22
80.66.196.0/22
91.200.240.0/22
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.213.151.0/24
185.222.216.0/21
193.32.148.0/22
194.36.24.0/22
194.104.144.0/24
194.104.152.0/22
194.114.136.0/24
194.169.54.0/23
195.245.219.0/24
195.245.229.0/24
195.245.241.0-195.245.242.255
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09:6::/32
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
10:38:90:6d:a9:0c:8b:a9:92:e2:3c:d0:f3:49:a0:42:d4:1f:
73:93:f6:da:d1:98:a7:41:e2:32:c5:9d:c1:da:8b:7b:48:42:
59:8a:1f:12:85:82:7c:cd:f1:77:ed:95:05:91:18:27:40:f0:
ea:94:34:04:35:5f:07:bd:2f:54:48:1b:0e:6c:c1:92:2f:f3:
43:a4:90:1a:ae:d7:d1:cd:d2:da:9f:c0:a8:c0:1f:65:ed:c3:
34:1d:a4:9d:13:85:4b:23:10:d7:4b:46:6e:39:90:04:bb:c7:
e1:f5:6b:de:02:aa:c8:35:0f:8c:04:72:a6:b0:01:80:83:92:
e5:66:e6:f9:a6:09:91:36:ba:e7:97:42:20:83:28:45:af:61:
04:72:57:9b:ce:f5:7e:a2:a5:f6:65:67:c9:74:25:51:36:f7:
b2:05:09:51:2f:c1:a9:d2:8f:44:a7:b6:87:ae:9a:0d:4b:42:
81:fd:b3:80:af:81:05:b5:47:75:b3:bf:ba:c4:b0:58:68:f5:
88:8a:7a:b9:68:5a:13:31:5f:85:98:f5:39:e9:1c:70:93:d0:
1f:96:9e:5f:89:d9:65:19:5b:5f:85:6b:58:d3:8a:48:98:8e:
03:2e:4f:68:28:24:e2:ca:76:54:d5:b0:ae:92:05:53:60:20:
dd:cf:0b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org