Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/LLqtVFK0jcP9Kz9W9ff00JSVA0g.roa
File: LLqtVFK0jcP9Kz9W9ff00JSVA0g.roa (raw, json)
Hash identifier: nXuBjUEWkBTUFRRLQS7XB/IeeFIr1APg4QbgTqqbjlI=
Subject key identifier: 2C:BA:AD:54:52:B4:8D:C3:FD:2B:3F:56:F5:F7:F4:D0:94:95:03:48
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 0183D53581F166B7A31B39E10ED601C5AED4
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/LLqtVFK0jcP9Kz9W9ff00JSVA0g.roa
Signing time: Fri 14 Oct 2022 06:36:36 +0000
ROA not before: Fri 14 Oct 2022 06:36:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57112
IP address blocks: 185.72.160.0/22 maxlen: 22
185.82.192.0/22 maxlen: 22
45.92.224.0/22 maxlen: 22
45.91.56.0/22 maxlen: 22
185.103.236.0/22 maxlen: 22
185.133.108.0/22 maxlen: 22
5.104.112.0/20 maxlen: 20
185.87.156.0/22 maxlen: 22
185.70.236.0/22 maxlen: 22
185.87.104.0/22 maxlen: 22
185.87.116.0/22 maxlen: 22
185.33.152.0/22 maxlen: 22
81.30.64.0/20 maxlen: 20
45.84.40.0/22 maxlen: 24
185.113.172.0/22 maxlen: 22
185.23.140.0/22 maxlen: 22
2a0e:9680::/29 maxlen: 29
2a0a:4980::/29 maxlen: 29
2a0e:c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d5:35:81:f1:66:b7:a3:1b:39:e1:0e:d6:01:c5:ae:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Oct 14 06:36:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cbaad5452b48dc3fd2b3f56f5f7f4d094950348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c2:b7:3b:af:44:5f:9d:d1:3c:47:90:24:1f:
48:75:32:29:39:5b:9b:48:aa:b1:cc:41:0b:2e:b2:
da:cc:70:09:9e:ff:74:43:e2:3b:43:46:b8:87:f2:
7b:55:a5:09:c2:a0:56:7c:c5:f4:7f:28:cf:f7:51:
e8:af:9f:e4:c4:d0:90:60:ba:ec:cd:2f:a8:0a:86:
ea:9f:10:1e:3f:30:ae:73:ec:c8:d0:8f:47:5b:c7:
c1:63:a2:97:2c:bf:1a:34:57:f9:41:13:1d:ac:05:
94:56:12:eb:8f:23:e0:41:eb:f1:b1:37:1f:8b:b8:
40:dc:fe:b5:50:80:b9:e7:31:83:6f:2b:b6:fd:bc:
d8:e4:e2:4c:b5:17:5a:37:fc:94:dc:22:dd:66:f6:
20:66:74:14:7a:4e:e2:11:b2:6e:04:f3:80:0a:ce:
c2:39:fb:12:0d:b2:5b:bb:7a:34:6b:c4:41:a2:4f:
20:3d:80:32:38:10:c7:4f:f9:bf:e3:fc:de:c8:3c:
6a:48:ce:51:72:8d:83:0f:7b:00:e8:60:e9:ae:dc:
e5:40:e0:c7:d5:81:ae:18:28:18:5e:f0:e4:61:47:
dc:39:ec:94:57:d5:8d:8b:f1:79:26:8e:4c:f5:44:
42:10:e9:0f:2b:c2:ce:cd:82:09:68:bf:93:50:2f:
f3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BA:AD:54:52:B4:8D:C3:FD:2B:3F:56:F5:F7:F4:D0:94:95:03:48
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/LLqtVFK0jcP9Kz9W9ff00JSVA0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.112.0/20
45.84.40.0/22
45.91.56.0/22
45.92.224.0/22
81.30.64.0/20
185.23.140.0/22
185.33.152.0/22
185.70.236.0/22
185.72.160.0/22
185.82.192.0/22
185.87.104.0/22
185.87.116.0/22
185.87.156.0/22
185.103.236.0/22
185.113.172.0/22
185.133.108.0/22
IPv6:
2a0a:4980::/29
2a0e:c40::/29
2a0e:9680::/29
Signature Algorithm: sha256WithRSAEncryption
6d:00:eb:b8:1c:28:5d:cf:33:60:66:75:dd:f6:0e:8f:d4:86:
18:e8:db:f4:31:8b:55:96:58:40:d9:af:b7:5f:bb:f7:0c:e7:
9d:c8:eb:d1:ab:81:29:50:4b:de:5f:4a:d3:c6:63:a3:77:71:
0f:09:dc:42:dc:18:2d:f1:33:17:84:ff:9f:78:bc:08:94:6b:
b4:00:23:63:fd:9c:62:5b:26:b4:b6:42:bc:a2:5c:60:d0:f2:
cb:0b:c1:73:7a:dd:9a:eb:b6:56:65:c5:5c:91:20:c1:eb:42:
06:33:01:3a:4d:48:3b:a4:f5:7b:40:bf:e2:07:5b:b5:2d:1a:
fb:77:7f:63:66:89:6c:33:4f:fe:e8:95:a8:6c:16:62:47:7b:
90:39:73:f3:5c:17:69:3d:15:59:69:e4:0c:1f:f3:44:eb:cc:
48:01:ac:a6:08:90:e6:e6:fa:a5:d9:f2:b3:fd:57:38:43:54:
55:32:47:d6:1f:29:fe:da:6c:ee:52:62:3d:da:50:d9:50:56:
e5:09:e4:73:58:17:f1:a8:2f:48:09:b1:ae:de:c3:1e:c9:1c:
60:88:33:ab:39:69:4f:b1:92:0e:c7:10:b1:f3:50:dc:49:d5:
cc:ad:1c:c8:87:97:79:ef:ac:8e:e4:72:c1:f0:a4:53:a4:8a:
e6:28:93:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:26 2024 by rpki-client on console-fra.rpki-client.org