Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/gLMH845cFXBhJQmJPs8yzyiWZao.roa
File: gLMH845cFXBhJQmJPs8yzyiWZao.roa (raw, json)
Hash identifier: eq5VwYH6smZqsJXrZfhHUamMnNBnK64sZPhNy30KKo4=
Subject key identifier: 80:B3:07:F3:8E:5C:15:70:61:25:09:89:3E:CF:32:CF:28:96:65:AA
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 079AF50F
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/gLMH845cFXBhJQmJPs8yzyiWZao.roa
Signing time: Sat 01 Jan 2022 08:01:40 +0000
ROA not before: Sat 01 Jan 2022 08:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4785
IP address blocks: 80.66.196.0/24 maxlen: 24
45.14.104.0/24 maxlen: 24
45.14.105.0/24 maxlen: 24
45.14.106.0/24 maxlen: 24
45.14.107.0/24 maxlen: 24
45.142.124.0/22 maxlen: 24
45.87.92.0/24 maxlen: 24
45.87.93.0/24 maxlen: 24
45.87.94.0/24 maxlen: 24
45.87.95.0/24 maxlen: 24
149.62.44.0/24 maxlen: 24
185.184.223.0/24 maxlen: 24
45.141.44.0/22 maxlen: 24
45.131.155.0/24 maxlen: 24
45.8.112.0/22 maxlen: 24
194.114.136.0/24 maxlen: 24
195.245.229.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
194.104.144.0/24 maxlen: 24
194.36.24.0/24 maxlen: 24
185.248.84.0/24 maxlen: 24
185.248.85.0/24 maxlen: 24
45.14.71.0/24 maxlen: 24
45.14.70.0/24 maxlen: 24
45.135.40.0/24 maxlen: 24
45.135.41.0/24 maxlen: 24
45.135.42.0/24 maxlen: 24
45.135.43.0/24 maxlen: 24
45.8.220.0/24 maxlen: 24
45.8.221.0/24 maxlen: 24
45.8.222.0/24 maxlen: 24
45.8.223.0/24 maxlen: 24
91.200.242.0/24 maxlen: 24
91.200.243.0/24 maxlen: 24
45.89.216.0/22 maxlen: 24
193.32.148.0/22 maxlen: 24
2a10:480::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127595791 (0x79af50f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80b307f38e5c1570612509893ecf32cf289665aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:61:19:df:f2:44:47:cf:21:51:2f:53:6a:02:
f7:32:e7:1f:b0:b2:1a:33:9d:53:47:cc:79:1c:7c:
b2:66:f6:f9:4a:73:17:4f:d4:05:f6:3d:e6:60:a9:
2e:88:df:87:08:2e:5f:05:ec:09:09:03:0b:bc:1b:
e2:c0:20:88:c1:96:cf:2c:f5:b3:28:47:58:13:ec:
2b:02:54:16:50:f9:ff:5b:3a:c9:5a:92:0a:1a:3e:
d0:c5:b2:80:8b:1f:38:57:8a:b5:78:90:48:d4:7e:
c6:92:1a:93:63:be:2c:15:8b:21:a6:2e:e8:59:e2:
79:f8:bc:46:76:c8:b3:1e:5f:f2:da:b1:8b:37:50:
6e:9e:66:f6:16:a9:f2:2f:e6:5f:01:d7:76:77:82:
ca:2b:27:c3:61:41:d7:fc:20:4c:8b:12:81:86:c0:
55:ce:a5:43:e8:e9:36:5d:0b:2f:b9:e5:f7:ab:d5:
ca:ab:ac:68:21:52:d5:55:ae:83:0c:34:bc:13:a3:
f4:50:da:7e:db:90:00:fd:7d:e5:20:96:ad:49:8a:
a9:fa:15:72:5f:70:4c:c7:11:93:b8:24:9a:f4:b4:
6d:b7:45:99:a9:19:05:f3:ac:49:34:fb:10:f2:14:
9a:b9:4c:22:8c:b7:2e:3f:2b:2c:89:74:50:7c:e3:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B3:07:F3:8E:5C:15:70:61:25:09:89:3E:CF:32:CF:28:96:65:AA
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/gLMH845cFXBhJQmJPs8yzyiWZao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.112.0/22
45.8.220.0/22
45.14.70.0/23
45.14.104.0/22
45.87.92.0/22
45.89.216.0/22
45.131.155.0/24
45.135.40.0/22
45.141.44.0/22
45.142.124.0/22
80.66.196.0/24
91.200.242.0/23
149.62.44.0/24
185.184.223.0/24
185.248.84.0/23
193.32.148.0/22
194.36.24.0/24
194.104.144.0/24
194.114.136.0/24
195.245.229.0/24
195.245.241.0-195.245.242.255
IPv6:
2a10:480::/29
Signature Algorithm: sha256WithRSAEncryption
0d:b5:14:af:e1:6d:4e:39:7e:66:7a:76:a5:4b:ee:30:e6:1d:
e3:23:5e:21:26:97:35:c3:69:e7:44:bb:a0:c7:87:67:ac:48:
75:85:03:9d:23:9d:50:4e:cf:25:4f:2f:71:3b:40:89:88:ee:
6e:e8:00:13:38:8c:6f:24:37:b8:2b:2c:f0:d5:4d:1f:0d:fd:
e3:b9:d7:e2:6b:2f:2f:6d:7f:5b:84:02:ec:89:a5:6d:2a:70:
24:9b:94:17:54:fc:48:61:5f:82:5b:92:a4:12:5c:e8:b2:21:
2d:f7:cd:fe:41:10:ce:b8:42:3b:34:e8:c6:b8:93:9d:f5:a3:
87:0b:4e:cb:c6:18:40:0b:46:da:45:9b:58:d2:33:7a:9d:88:
24:7f:5d:b0:b5:7b:d8:a4:61:b5:0b:33:60:b1:f4:f6:4f:ba:
00:70:04:73:f9:5b:b5:10:76:f7:9c:f6:d7:ce:e3:22:5d:f7:
51:3a:50:84:91:9e:33:e7:b4:65:5a:95:de:98:cb:3b:2a:c0:
f1:e3:88:47:25:b8:d0:62:4b:ec:2f:0e:bf:e7:7f:c2:d7:d9:
e7:6a:19:ac:e2:52:7c:12:a9:64:f0:4e:1e:e2:6f:ea:18:d5:
46:0b:44:26:1a:81:db:a1:26:85:ef:bc:00:5e:12:ee:44:fc:
39:f1:ce:c0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIEB5r1DzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTc2ZWIyY2M0NjJlNmU0YmYwZGU2OWI5ZjYzNDg3NWRlYmJhYWUyMB4XDTIyMDEw
MTA4MDE0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODBiMzA3ZjM4ZTVj
MTU3MDYxMjUwOTg5M2VjZjMyY2YyODk2NjVhYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANVhGd/yREfPIVEvU2oC9zLnH7CyGjOdU0fMeRx8smb2+Upz
F0/UBfY95mCpLojfhwguXwXsCQkDC7wb4sAgiMGWzyz1syhHWBPsKwJUFlD5/1s6
yVqSCho+0MWygIsfOFeKtXiQSNR+xpIak2O+LBWLIaYu6Fniefi8RnbIsx5f8tqx
izdQbp5m9hap8i/mXwHXdneCyisnw2FB1/wgTIsSgYbAVc6lQ+jpNl0LL7nl96vV
yqusaCFS1VWugww0vBOj9FDaftuQAP195SCWrUmKqfoVcl9wTMcRk7gkmvS0bbdF
makZBfOsSTT7EPIUmrlMIoy3Lj8rLIl0UHzjZDkCAwEAAaOCAp0wggKZMB0GA1Ud
DgQWBBSAswfzjlwVcGElCYk+zzLPKJZlqjAfBgNVHSMEGDAWgBSldussxGLm5L8N
5pufY0h13ruq4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BYYnJMTVJpNXVTX0RlYWJuMk5JZGQ2N3F1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8x
L2dMTUg4NDVjRlhCaEpRbUpQczh5enlpV1phby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8xL3BYYnJMTVJpNXVT
X0RlYWJuMk5JZGQ2N3F1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
sgYIKwYBBQUHAQcBAf8EgaIwgZ8wgY0EAgABMIGGAwQCLQhwAwQCLQjcAwQBLQ5G
AwQCLQ5oAwQCLVdcAwQCLVnYAwQALYObAwQCLYcoAwQCLY0sAwQCLY58AwQAUELE
AwQBW8jyAwQAlT4sAwQAubjfAwQBufhUAwQCwSCUAwQAwiQYAwQAwmiQAwQAwnKI
AwQAw/XlMAwDBADD9fEDBADD9fIwDQQCAAIwBwMFAyoQBIAwDQYJKoZIhvcNAQEL
BQADggEBAA21FK/hbU45fmZ6dqVL7jDmHeMjXiEmlzXDaedEu6DHh2esSHWFA50j
nVBOzyVPL3E7QImI7m7oABM4jG8kN7grLPDVTR8N/eO51+JrLy9tf1uEAuyJpW0q
cCSblBdU/EhhX4JbkqQSXOiyIS33zf5BEM64Qjs06Ma4k531o4cLTsvGGEALRtpF
m1jSM3qdiCR/XbC1e9ikYbULM2Cx9PZPugBwBHP5W7UQdvec9tfO4yJd91E6UISR
njPntGVald6YyzsqwPHjiEcluNBiS+wvDr/nf8LX2edqGaziUnwSqWTwTh7ib+oY
1UYLRCYagduhJoXvvABeEu5E/DnxzsA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org