Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/TlMmymB6gjnhEdKWzOzu4dA0avc.roa
File: TlMmymB6gjnhEdKWzOzu4dA0avc.roa (raw, json)
Hash identifier: EofI2p8Q0pCAmectvTBuBDqhl6JmKPolvb8gK2IluAk=
Subject key identifier: 4E:53:26:CA:60:7A:82:39:E1:11:D2:96:CC:EC:EE:E1:D0:34:6A:F7
Certificate issuer: /CN=8e3875a80ad233e9c28715988371f77eec3f620c
Certificate serial: 070E6973
Authority key identifier: 8E:38:75:A8:0A:D2:33:E9:C2:87:15:98:83:71:F7:7E:EC:3F:62:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjh1qArSM-nChxWYg3H3fuw_Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/TlMmymB6gjnhEdKWzOzu4dA0avc.roa
Signing time: Sat 01 Jan 2022 08:02:12 +0000
ROA not before: Sat 01 Jan 2022 08:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39120
IP address blocks: 185.105.128.0/22 maxlen: 22
213.167.232.0/21 maxlen: 21
185.105.92.0/22 maxlen: 22
185.105.104.0/22 maxlen: 22
45.80.172.0/23 maxlen: 23
89.21.192.0/23 maxlen: 23
89.21.198.0/23 maxlen: 23
89.21.196.0/23 maxlen: 23
89.21.194.0/23 maxlen: 23
89.21.200.0/21 maxlen: 21
89.21.208.0/20 maxlen: 20
83.229.8.0/22 maxlen: 22
217.28.68.0/22 maxlen: 22
185.195.8.0/22 maxlen: 22
185.105.212.0/22 maxlen: 22
185.9.208.0/22 maxlen: 22
78.138.32.0/22 maxlen: 24
185.104.124.0/22 maxlen: 22
195.60.190.0/23 maxlen: 23
94.101.48.0/22 maxlen: 22
94.101.56.0/22 maxlen: 22
94.101.52.0/22 maxlen: 22
94.101.60.0/22 maxlen: 22
185.217.228.0/22 maxlen: 22
93.88.96.0/20 maxlen: 20
2a01:9a81::/32 maxlen: 32
2a01:9a80::/32 maxlen: 32
2a01:9a82::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118385011 (0x70e6973)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3875a80ad233e9c28715988371f77eec3f620c
Validity
Not Before: Jan 1 08:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e5326ca607a8239e111d296cceceee1d0346af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:11:52:c0:37:df:55:dc:dc:16:25:67:b4:1e:
c0:78:e5:29:50:63:f8:bd:5f:20:98:bb:96:49:d5:
9e:4d:8b:62:8e:11:62:d6:bb:08:f2:d7:f2:1d:11:
df:2a:2d:e1:95:f5:cb:25:0a:76:d8:65:34:96:9c:
92:33:88:ff:db:35:e4:fe:18:55:62:aa:0e:a4:61:
68:e3:ff:c0:20:69:e9:7c:94:9f:76:78:d5:00:c0:
ff:e5:3d:43:87:c6:7d:ac:b4:e3:ce:88:d3:4a:b3:
13:20:86:fb:e2:36:ba:66:93:25:d9:24:6c:45:03:
3f:0f:a6:50:db:68:6e:a7:5a:05:3b:b8:85:6b:27:
55:fd:a1:37:72:8d:cf:bb:bb:0f:8e:91:94:69:f8:
f2:db:0c:62:b7:4a:f3:64:9f:15:51:5c:da:39:1d:
35:c1:a5:83:39:65:25:41:d8:99:16:c5:e3:c1:2f:
18:8e:9c:72:30:cf:7d:52:3d:fe:50:5c:d2:ba:b3:
9a:76:dd:ef:6e:79:da:c8:63:05:5b:e0:0f:87:ae:
d7:43:0b:7e:1d:83:cf:b5:86:ed:c4:f4:7c:bd:2d:
d2:98:af:2b:d7:e0:67:5f:e4:fa:7d:e6:89:a4:3e:
28:40:55:be:71:3d:7c:f9:1c:af:38:9f:1d:6e:5c:
e4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:53:26:CA:60:7A:82:39:E1:11:D2:96:CC:EC:EE:E1:D0:34:6A:F7
X509v3 Authority Key Identifier:
keyid:8E:38:75:A8:0A:D2:33:E9:C2:87:15:98:83:71:F7:7E:EC:3F:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjh1qArSM-nChxWYg3H3fuw_Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/TlMmymB6gjnhEdKWzOzu4dA0avc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/jjh1qArSM-nChxWYg3H3fuw_Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.172.0/23
78.138.32.0/22
83.229.8.0/22
89.21.192.0/19
93.88.96.0/20
94.101.48.0/20
185.9.208.0/22
185.104.124.0/22
185.105.92.0/22
185.105.104.0/22
185.105.128.0/22
185.105.212.0/22
185.195.8.0/22
185.217.228.0/22
195.60.190.0/23
213.167.232.0/21
217.28.68.0/22
IPv6:
2a01:9a80::-2a01:9a82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
01:b3:45:9a:81:f1:14:25:ce:db:d1:53:c7:2d:ae:20:ee:ba:
76:a7:4f:59:f8:e1:e4:bb:ec:d4:0c:dd:cc:a3:2e:27:a4:02:
6e:cf:77:6f:73:28:10:d1:80:e5:56:3d:65:ab:cd:59:1d:09:
b6:62:14:d0:e9:6c:62:b2:d3:70:db:33:52:f6:f2:b3:6e:b5:
74:73:66:26:05:9b:67:a2:75:97:4e:03:2c:68:04:f1:1a:19:
b3:12:b6:d5:d4:55:04:9e:41:05:7c:7a:d9:c8:3c:8b:e8:cd:
52:ae:2f:35:24:c4:79:21:8c:dc:2c:76:15:72:c6:48:8e:a9:
58:79:9f:34:06:a5:cc:b8:4a:db:d9:80:49:30:d9:2a:d1:be:
8b:17:d8:35:3d:ef:69:c6:cc:ee:ff:dc:ee:99:ef:f9:26:2e:
25:b2:de:46:0d:41:52:9c:62:9f:2f:fc:a4:5e:84:14:30:0f:
79:24:01:44:1b:1a:65:7e:a0:54:92:53:e9:2c:c3:1f:a6:0b:
c1:cf:6b:ee:ca:0f:de:e2:91:cd:2c:f1:1a:b6:26:88:a7:3e:
aa:74:39:62:b9:b4:43:04:55:c3:aa:6e:c1:df:12:5f:aa:11:
64:d9:dc:95:82:6b:5b:d9:88:49:ae:1a:04:c2:dc:ec:9e:31:
d1:0a:42:7d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org