Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/cLSdwUiLMx70IcswvpDPORXQKFw.roa
File: cLSdwUiLMx70IcswvpDPORXQKFw.roa (raw, json)
Hash identifier: P22k2PIUtDwDK2huKG5XMAAs69k2S9w5uqGkmNGum8I=
Subject key identifier: 70:B4:9D:C1:48:8B:33:1E:F4:21:CB:30:BE:90:CF:39:15:D0:28:5C
Certificate issuer: /CN=e9fdfcdc3261b57afadfed730fb2dedb28649fcf
Certificate serial: 0C9E8E3E
Authority key identifier: E9:FD:FC:DC:32:61:B5:7A:FA:DF:ED:73:0F:B2:DE:DB:28:64:9F:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6f383DJhtXr63-1zD7Le2yhkn88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/cLSdwUiLMx70IcswvpDPORXQKFw.roa
Signing time: Tue 07 Jun 2022 08:00:23 +0000
ROA not before: Tue 07 Jun 2022 08:00:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202596
IP address blocks: 45.12.240.0/22 maxlen: 22
185.225.44.0/22 maxlen: 22
193.39.240.0/22 maxlen: 22
160.19.180.0/22 maxlen: 22
185.14.88.0/22 maxlen: 22
185.236.184.0/22 maxlen: 22
45.139.12.0/22 maxlen: 22
185.159.76.0/22 maxlen: 22
185.176.160.0/22 maxlen: 22
185.250.188.0/22 maxlen: 22
45.92.120.0/22 maxlen: 22
45.149.188.0/22 maxlen: 22
176.97.152.0/22 maxlen: 22
185.239.32.0/22 maxlen: 22
185.240.108.0/22 maxlen: 22
95.141.16.0/20 maxlen: 20
45.95.156.0/22 maxlen: 22
45.152.232.0/22 maxlen: 22
185.254.136.0/22 maxlen: 22
194.6.251.0/24 maxlen: 24
194.6.252.0/24 maxlen: 24
194.6.254.0/24 maxlen: 24
45.145.48.0/22 maxlen: 22
185.222.80.0/22 maxlen: 22
45.141.132.0/22 maxlen: 22
185.247.172.0/22 maxlen: 22
45.80.244.0/22 maxlen: 22
185.111.72.0/22 maxlen: 22
45.134.228.0/22 maxlen: 22
185.106.72.0/22 maxlen: 22
185.248.104.0/22 maxlen: 22
45.133.120.0/21 maxlen: 21
45.133.128.0/22 maxlen: 22
185.226.36.0/22 maxlen: 22
193.29.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211717694 (0xc9e8e3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9fdfcdc3261b57afadfed730fb2dedb28649fcf
Validity
Not Before: Jun 7 08:00:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70b49dc1488b331ef421cb30be90cf3915d0285c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c6:4d:17:3b:bd:c3:3a:92:8b:19:e0:00:df:
ec:d8:bc:dc:8f:a5:92:e4:7f:7e:fd:3b:e6:33:e9:
dd:47:16:fe:58:37:c0:01:48:2c:4c:7b:5f:44:d6:
f8:5f:63:2a:e8:cb:ad:7d:be:2e:b8:76:b7:9c:0d:
e0:01:88:bf:67:ff:1b:51:fe:95:3b:48:04:c7:8f:
ab:29:7b:05:57:03:1e:42:ae:e4:f1:6d:0f:cb:88:
85:04:0c:52:c3:23:79:dd:16:b9:2f:b4:ba:46:b4:
37:f6:eb:19:b0:85:3e:61:1e:81:49:0e:d4:06:8a:
61:30:9e:20:13:d1:e0:58:aa:b8:87:30:fc:dc:f4:
ce:65:26:a7:8e:df:2c:f3:c2:ea:88:22:fc:45:1e:
f9:3b:2b:06:71:33:c1:6d:fa:47:cc:e9:45:53:61:
11:07:a6:2b:7a:cc:b4:f9:a0:d7:e9:8f:4c:5c:6f:
ed:5b:74:d5:d4:78:10:8a:c3:57:22:60:67:e9:8d:
16:50:15:b6:e1:d5:bd:f6:48:dd:f2:77:b4:13:f5:
e4:d6:0a:93:1b:ce:9e:c4:2c:50:4d:d2:f8:ab:5e:
3c:67:d9:06:0b:61:42:5c:2f:f6:75:e8:db:c9:2f:
af:a0:07:33:50:d0:9f:17:46:a4:2e:df:08:28:fa:
e0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B4:9D:C1:48:8B:33:1E:F4:21:CB:30:BE:90:CF:39:15:D0:28:5C
X509v3 Authority Key Identifier:
keyid:E9:FD:FC:DC:32:61:B5:7A:FA:DF:ED:73:0F:B2:DE:DB:28:64:9F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f383DJhtXr63-1zD7Le2yhkn88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/cLSdwUiLMx70IcswvpDPORXQKFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/1ba191-a42a-4509-bb28-0bc7e7ef0763/1/6f383DJhtXr63-1zD7Le2yhkn88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.240.0/22
45.80.244.0/22
45.92.120.0/22
45.95.156.0/22
45.133.120.0-45.133.131.255
45.134.228.0/22
45.139.12.0/22
45.141.132.0/22
45.145.48.0/22
45.149.188.0/22
45.152.232.0/22
95.141.16.0/20
160.19.180.0/22
176.97.152.0/22
185.14.88.0/22
185.106.72.0/22
185.111.72.0/22
185.159.76.0/22
185.176.160.0/22
185.222.80.0/22
185.225.44.0/22
185.226.36.0/22
185.236.184.0/22
185.239.32.0/22
185.240.108.0/22
185.247.172.0/22
185.248.104.0/22
185.250.188.0/22
185.254.136.0/22
193.29.28.0/22
193.39.240.0/22
194.6.251.0-194.6.252.255
194.6.254.0/24
Signature Algorithm: sha256WithRSAEncryption
92:e1:12:25:a3:0a:2d:ab:78:29:2d:cf:97:d2:d1:b1:69:41:
e8:b1:11:9e:1a:01:84:3c:60:ab:dc:eb:60:3e:89:c9:f0:a0:
ca:34:1f:e4:05:73:49:0c:eb:0b:d9:96:6c:df:86:eb:8b:ab:
09:ab:b5:d4:8b:ff:43:ae:a1:8c:c6:b4:c8:75:ad:3e:a5:de:
db:5d:61:c2:ca:34:d6:34:da:04:92:91:b3:65:82:45:34:f3:
09:51:e5:94:42:f9:d9:62:9f:eb:3a:46:cd:fc:bd:f2:fe:7c:
eb:26:78:ce:1f:ea:d5:7e:7e:4b:e0:bf:aa:5f:f8:81:93:82:
65:fe:73:83:d2:38:4d:df:cb:99:a0:ed:67:70:64:43:f2:8e:
f6:2b:bd:8b:e3:82:43:25:43:f8:43:b1:cd:96:7e:c0:85:30:
f7:b8:7b:50:0d:65:39:c6:31:a7:67:a4:d3:a0:89:3f:6e:65:
ab:a6:df:22:88:2a:3c:fe:68:f7:bd:2c:fc:e0:e8:90:1b:38:
b5:ac:14:0c:43:91:00:ed:13:0b:49:ae:95:72:2b:f5:4a:c0:
d9:d1:58:63:ac:23:b5:b8:88:d7:7e:0f:52:4d:76:ca:a0:6c:
db:95:a6:ab:a0:54:02:31:6b:c6:a0:53:ed:fb:5c:ad:8f:1a:
5c:ff:85:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:30 2023 by rpki-client on console-ams.rpki-client.org