Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/Q9ALf8cOIcSTb2AAA-wWKMMT25c.roa
File: Q9ALf8cOIcSTb2AAA-wWKMMT25c.roa (raw, json)
Hash identifier: 2MJjh2Aq7rwiN819fwF2j7ePLtkJl1wXZuK8lrhWr4A=
Subject key identifier: 43:D0:0B:7F:C7:0E:21:C4:93:6F:60:00:03:EC:16:28:C3:13:DB:97
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 018316709F7A7BA367C751EED0FDB6FF5E88
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/Q9ALf8cOIcSTb2AAA-wWKMMT25c.roa
Signing time: Wed 07 Sep 2022 05:33:43 +0000
ROA not before: Wed 07 Sep 2022 05:33:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57112
IP address blocks: 185.72.160.0/22 maxlen: 22
185.82.192.0/22 maxlen: 22
45.91.56.0/22 maxlen: 22
185.103.236.0/22 maxlen: 22
185.133.108.0/22 maxlen: 22
5.104.112.0/20 maxlen: 20
185.87.156.0/22 maxlen: 22
185.70.236.0/22 maxlen: 22
185.87.104.0/22 maxlen: 22
185.87.116.0/22 maxlen: 22
185.33.152.0/22 maxlen: 22
81.30.64.0/20 maxlen: 20
45.84.40.0/22 maxlen: 24
185.113.172.0/22 maxlen: 22
185.23.140.0/22 maxlen: 22
2a0e:9680::/29 maxlen: 29
2a0e:c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:16:70:9f:7a:7b:a3:67:c7:51:ee:d0:fd:b6:ff:5e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Sep 7 05:33:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43d00b7fc70e21c4936f600003ec1628c313db97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c6:7c:b5:3b:69:5a:7b:b9:71:59:6b:cf:0e:
a3:d4:d7:0a:ea:64:26:ab:e4:d3:b7:e9:e3:61:04:
40:72:e4:aa:d2:df:65:f6:df:ed:fc:c9:70:00:46:
85:e4:44:aa:4a:63:98:50:89:35:e2:bc:da:6f:28:
92:34:e8:6f:db:3e:a8:5d:d8:9b:2f:fe:ea:9d:8e:
5d:62:16:4c:0d:d4:92:91:03:70:a8:19:b2:81:ae:
fa:e3:36:5b:4a:48:51:db:ae:cb:1d:bd:37:51:fa:
47:08:4c:a2:0f:df:d0:59:3d:ad:eb:fa:e2:0b:b5:
c1:3a:33:65:ba:96:5d:ad:27:23:20:c0:f0:44:be:
15:a4:ec:79:bc:bf:1d:72:58:2d:01:f7:10:6b:e0:
8f:cf:c3:6e:5f:d7:96:43:1d:57:80:71:f1:12:75:
71:fd:8c:eb:a0:eb:28:9f:a4:fb:05:fa:e5:cd:12:
de:65:3c:37:b7:55:b0:a7:25:94:5f:97:70:51:d9:
23:11:7e:82:4b:ad:f9:fc:8b:bb:80:d0:a1:ee:b9:
a8:a3:11:30:98:ab:ea:79:05:bf:c8:44:3e:45:df:
8e:41:d3:84:32:2b:cc:9a:fc:12:f5:c4:d8:5c:40:
ec:4c:a8:56:84:e0:5b:6d:ae:f1:c6:ba:c2:dc:19:
72:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D0:0B:7F:C7:0E:21:C4:93:6F:60:00:03:EC:16:28:C3:13:DB:97
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/Q9ALf8cOIcSTb2AAA-wWKMMT25c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.112.0/20
45.84.40.0/22
45.91.56.0/22
81.30.64.0/20
185.23.140.0/22
185.33.152.0/22
185.70.236.0/22
185.72.160.0/22
185.82.192.0/22
185.87.104.0/22
185.87.116.0/22
185.87.156.0/22
185.103.236.0/22
185.113.172.0/22
185.133.108.0/22
IPv6:
2a0e:c40::/29
2a0e:9680::/29
Signature Algorithm: sha256WithRSAEncryption
0c:68:45:04:ba:9d:74:cd:c7:c4:11:04:0c:db:4b:e7:08:f3:
e7:f1:cc:11:c2:96:8d:98:25:30:07:a1:72:e4:11:3b:69:67:
c3:97:54:0b:65:ac:93:83:b2:c6:5c:fc:97:4b:ba:19:0b:eb:
03:3b:65:3a:49:c1:e7:1d:e4:6d:3a:83:75:75:ed:03:c1:5e:
ee:b1:7f:ed:45:1a:0d:03:f9:d5:de:da:37:f5:25:8f:fc:63:
8f:ce:a8:e1:99:1a:02:be:8b:dd:ac:53:39:05:3e:20:80:98:
f9:31:e6:c1:5d:57:7c:1b:a9:61:de:a5:17:09:0f:06:06:d6:
e0:f8:38:6e:56:22:e6:11:9b:54:e2:55:b2:65:30:08:61:14:
67:13:cf:6f:01:91:7c:5f:38:ee:6e:e7:a0:05:ed:50:ce:86:
05:86:c6:72:f3:58:e2:bb:fb:23:96:31:87:4b:8d:67:6f:83:
66:3f:0c:43:7e:72:f2:ca:bf:9e:4d:16:5d:6d:ed:c8:ed:c9:
34:1b:2f:c5:9e:b6:22:73:b4:94:02:8c:e8:f9:8c:8c:4a:aa:
7c:6f:0d:59:7d:4f:16:15:17:2e:42:27:19:dd:0c:68:65:bc:
17:25:89:53:af:5d:d7:40:aa:65:2b:ba:aa:ce:f9:de:3f:26:
73:e0:3e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:26 2024 by rpki-client on console-fra.rpki-client.org