Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/jqKFhwByECwfilIYEuXcSWW6Tx4.roa
File: jqKFhwByECwfilIYEuXcSWW6Tx4.roa (raw, json)
Hash identifier: u0//tw+XzsJAao+o5u0ZjRd6FrvcT4/+W5gOzEF+kbA=
Subject key identifier: 8E:A2:85:87:00:72:10:2C:1F:8A:52:18:12:E5:DC:49:65:BA:4F:1E
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 01845B407D3A3F937FB1D454D3826499D12E
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/jqKFhwByECwfilIYEuXcSWW6Tx4.roa
Signing time: Wed 09 Nov 2022 07:17:43 +0000
ROA not before: Wed 09 Nov 2022 07:17:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59504
IP address blocks: 194.113.104.114/32 maxlen: 32
95.215.110.0/23 maxlen: 23
95.215.108.0/23 maxlen: 23
185.197.73.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.156.178.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.177.0/24 maxlen: 24
185.156.176.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.107.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.230.142.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
45.142.208.0/24 maxlen: 24
84.54.37.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
185.118.64.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.66.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.65.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a07:14c0:1::/48 maxlen: 48
2a0d:60c1::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a07:14c1::/32 maxlen: 32
2a0d:60c0::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c0:d000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:3000::/36 maxlen: 36
2a0c:5241::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0c:5247:7000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:f000::/36 maxlen: 36
2a0c:5245::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a05:fb45::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5b:40:7d:3a:3f:93:7f:b1:d4:54:d3:82:64:99:d1:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Nov 9 07:17:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ea285870072102c1f8a521812e5dc4965ba4f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6a:fc:c4:6f:b9:60:3d:00:f9:6e:06:90:5c:
82:f1:50:79:63:d1:a6:50:eb:ed:cc:3a:bd:83:9e:
ec:24:03:63:cd:09:a1:2c:c7:17:aa:13:cf:30:01:
84:92:24:93:43:48:ca:82:ef:8d:7f:70:85:10:1d:
63:e9:3c:1a:df:90:40:3f:12:23:aa:6f:0c:eb:07:
0a:2a:6e:1c:28:fc:2f:1d:dc:15:f2:8b:65:72:68:
b6:b4:29:ac:d8:06:99:aa:d4:4d:3e:04:f8:c2:9f:
0e:99:77:2e:32:da:fe:af:05:85:5c:b3:a0:34:d1:
e9:2a:95:da:95:93:21:89:dc:a5:79:eb:e8:31:a2:
0f:9e:56:64:76:63:20:bc:de:cd:80:4a:8e:df:cc:
e5:59:1e:95:17:f7:07:09:bf:ef:32:36:be:e1:f9:
19:f6:7f:8f:b2:ee:39:e2:ff:13:1f:8c:07:39:20:
43:6b:50:6d:28:5d:2a:ff:42:be:e2:10:53:39:e7:
05:e0:e0:95:98:e3:b5:81:14:71:90:e1:9d:6e:6e:
2d:ec:48:51:13:6b:0b:de:e7:3b:34:c8:cd:41:1d:
f0:13:23:6e:63:22:8d:b7:74:02:e2:b1:1d:1f:b4:
e8:d3:2d:08:7b:68:d5:f6:c3:29:12:25:f6:d0:0f:
ff:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A2:85:87:00:72:10:2C:1F:8A:52:18:12:E5:DC:49:65:BA:4F:1E
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/jqKFhwByECwfilIYEuXcSWW6Tx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/24
80.76.40.0/24
84.54.37.0/24
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::/30
2a0a:4785::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
88:48:6a:f6:f6:cb:49:70:ea:ba:06:d7:6c:fb:cd:df:35:72:
85:8b:5c:bd:a7:8c:da:a3:29:cd:0d:e1:d1:20:5f:da:da:22:
4c:74:05:37:10:d7:52:47:6e:0b:29:19:bf:ca:9c:c6:64:0a:
9c:0e:9a:a6:f4:43:12:fb:c4:ba:0d:2e:86:0d:2c:63:99:5c:
b1:19:0f:98:98:fb:89:3d:8d:04:ff:2c:a9:09:98:93:96:ee:
0c:96:d2:33:e5:64:a8:e6:9b:d8:d7:7e:39:6d:e9:c8:b5:a5:
76:24:42:da:c2:7c:98:24:13:c3:d4:e8:e1:c6:32:9f:c1:05:
a5:3a:15:63:fc:c3:6d:95:95:63:42:80:c5:d7:4f:80:fa:1e:
81:9f:29:9d:a2:15:3d:23:88:25:c8:f3:47:5a:ab:f9:a2:a7:
c8:3d:c4:00:fa:3f:a3:1c:05:12:eb:bf:37:cc:62:99:32:a7:
10:42:67:ae:3e:1f:c1:55:85:e5:97:ab:76:12:80:89:0f:fd:
9a:60:b1:c1:b2:f0:da:9f:d1:03:6f:42:68:dc:f0:a6:bd:04:
ad:30:31:03:c4:af:7a:e5:64:e2:f2:10:81:05:b4:13:bf:4a:
f2:45:97:64:8a:13:94:e9:59:03:f7:99:02:02:76:a1:6a:16:
b4:6e:f0:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org