Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/JxDBqYQbJMOYLVE8hgXaS60z3o4.roa
File: JxDBqYQbJMOYLVE8hgXaS60z3o4.roa (raw, json)
Hash identifier: lXLqYXWRrAMI52K+W49ye01OS7VChTN3ATAud8FOnSE=
Subject key identifier: 27:10:C1:A9:84:1B:24:C3:98:2D:51:3C:86:05:DA:4B:AD:33:DE:8E
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 018462157207D76875164BD0D7F2701B58A3
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/JxDBqYQbJMOYLVE8hgXaS60z3o4.roa
Signing time: Thu 10 Nov 2022 15:08:03 +0000
ROA not before: Thu 10 Nov 2022 15:08:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 152.228.128.0/17 maxlen: 17
94.23.0.0/16 maxlen: 16
51.178.0.0/16 maxlen: 16
51.77.0.0/16 maxlen: 16
151.80.0.0/16 maxlen: 16
193.70.0.0/17 maxlen: 17
91.134.0.0/16 maxlen: 16
162.19.128.0/17 maxlen: 17
145.239.0.0/16 maxlen: 16
137.74.0.0/16 maxlen: 16
149.202.0.0/16 maxlen: 16
188.165.0.0/16 maxlen: 16
54.37.0.0/16 maxlen: 16
51.195.0.0/16 maxlen: 16
141.94.0.0/16 maxlen: 16
92.222.0.0/16 maxlen: 16
91.121.0.0/16 maxlen: 16
5.39.0.0/17 maxlen: 17
198.244.128.0/17 maxlen: 17
213.32.0.0/17 maxlen: 17
146.59.0.0/17 maxlen: 17
178.32.0.0/15 maxlen: 15
146.59.0.0/16 maxlen: 16
37.59.0.0/16 maxlen: 16
37.187.0.0/16 maxlen: 16
54.36.0.0/16 maxlen: 16
162.19.0.0/17 maxlen: 17
51.83.0.0/16 maxlen: 16
213.251.128.0/18 maxlen: 18
79.137.0.0/17 maxlen: 17
141.95.128.0/17 maxlen: 17
51.210.0.0/16 maxlen: 16
135.125.128.0/17 maxlen: 17
213.186.32.0/19 maxlen: 19
51.75.0.0/16 maxlen: 16
54.38.0.0/16 maxlen: 16
51.38.0.0/16 maxlen: 16
46.105.198.0/24 maxlen: 24
46.105.199.0/24 maxlen: 24
46.105.200.0/24 maxlen: 24
46.105.201.0/24 maxlen: 24
46.105.202.0/24 maxlen: 24
46.105.203.0/24 maxlen: 24
46.105.204.0/24 maxlen: 24
46.105.206.0/24 maxlen: 24
46.105.207.0/24 maxlen: 24
51.254.0.0/15 maxlen: 15
51.89.0.0/16 maxlen: 16
5.135.0.0/16 maxlen: 16
135.125.0.0/17 maxlen: 17
57.128.0.0/17 maxlen: 17
51.91.0.0/16 maxlen: 16
217.182.0.0/16 maxlen: 16
51.68.0.0/16 maxlen: 16
5.196.0.0/16 maxlen: 16
164.132.0.0/16 maxlen: 16
141.95.0.0/17 maxlen: 17
176.31.0.0/16 maxlen: 16
147.135.128.0/17 maxlen: 17
87.98.128.0/17 maxlen: 17
57.128.128.0/18 maxlen: 18
46.105.0.0/16 maxlen: 16
2001:41d0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:15:72:07:d7:68:75:16:4b:d0:d7:f2:70:1b:58:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Nov 10 15:08:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2710c1a9841b24c3982d513c8605da4bad33de8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:49:29:53:50:be:45:f4:c7:d1:14:85:00:47:
1e:9e:fa:e0:6c:dc:45:49:fc:5b:fb:ae:7c:5e:47:
97:55:9a:c6:e3:6b:96:8e:fe:c8:1a:d0:82:52:b6:
54:62:9c:bb:a8:26:ef:92:4a:6b:30:e8:8c:e6:74:
19:f2:b3:a7:9c:65:8c:a1:9e:20:18:32:d4:3d:38:
ee:90:74:3c:ce:ad:69:53:e1:45:78:1c:7d:68:02:
57:dd:db:25:d4:c4:c4:a9:f2:e8:65:b9:59:4f:61:
6d:20:89:a7:9f:73:42:e6:ff:64:e7:19:f4:47:34:
b0:70:ab:ce:c8:1a:e2:23:a3:bd:ce:64:50:8b:95:
2f:42:b9:44:7c:4c:c5:a7:94:ba:98:b9:b8:79:d9:
7a:81:49:3e:f1:32:ba:71:d1:fe:f2:b2:73:e5:f9:
05:af:b7:2b:66:05:b1:3d:bb:ab:a3:e5:87:22:5e:
e9:90:df:24:a6:51:69:fe:11:7b:d2:49:e5:bb:3b:
b2:e2:35:58:64:98:57:28:c1:b5:a6:fc:95:7b:6a:
ee:32:44:86:c1:ba:de:de:00:a4:ce:67:65:57:3b:
ba:94:a5:ec:41:8d:6d:d0:50:5b:fc:15:7a:40:d0:
e5:de:24:31:28:85:65:ec:db:23:ac:00:5c:63:89:
59:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:10:C1:A9:84:1B:24:C3:98:2D:51:3C:86:05:DA:4B:AD:33:DE:8E
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/JxDBqYQbJMOYLVE8hgXaS60z3o4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
46.105.0.0/16
51.38.0.0/16
51.68.0.0/16
51.75.0.0/16
51.77.0.0/16
51.83.0.0/16
51.89.0.0/16
51.91.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
51.254.0.0/15
54.36.0.0-54.38.255.255
57.128.0.0-57.128.191.255
79.137.0.0/17
87.98.128.0/17
91.121.0.0/16
91.134.0.0/16
92.222.0.0/16
94.23.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
145.239.0.0/16
146.59.0.0/16
147.135.128.0/17
149.202.0.0/16
151.80.0.0/16
152.228.128.0/17
162.19.0.0/16
164.132.0.0/16
176.31.0.0/16
178.32.0.0/15
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
IPv6:
2001:41d0::/32
Signature Algorithm: sha256WithRSAEncryption
71:8d:82:cc:4d:c5:6b:e7:bf:4c:6a:3e:e4:a8:79:de:7d:8c:
74:c4:07:17:0d:cf:90:b9:cb:51:98:34:5b:d0:4f:10:9c:0d:
07:f4:ea:61:2b:fb:bd:22:fb:a3:fd:ec:c6:dc:9b:38:e6:2d:
63:bd:ea:5e:cf:17:54:6d:7a:c3:fa:64:94:2a:cf:1c:03:d9:
76:ff:a0:0d:23:ed:66:c1:e9:f3:57:ad:ce:b4:95:d1:7f:c4:
24:1b:60:4a:48:53:65:80:30:91:57:5b:7a:43:cc:ac:00:ff:
a7:78:d0:b5:55:6b:8e:26:ad:a7:1a:c3:06:e6:ca:6d:69:87:
ac:00:a0:1b:13:63:4d:78:ae:01:84:f3:28:66:4c:39:78:3b:
c0:29:e7:7d:75:ba:90:ef:c7:13:d4:fc:d4:3d:40:d6:8a:2b:
60:40:80:d7:32:ad:56:68:83:e4:9c:0c:67:7d:69:ab:5e:1a:
b3:61:e6:e8:bd:cc:c9:8e:53:8e:7e:24:0a:78:33:d6:a6:0a:
17:76:c8:10:0b:be:db:6a:aa:46:b3:b0:12:d5:00:84:c7:20:
10:3e:5c:78:92:5b:01:83:c7:f8:26:13:59:c1:c9:21:a9:50:
48:e5:5e:dd:2e:ea:26:cc:8e:4f:af:3f:59:1e:0e:5d:e4:69:
c8:7d:ce:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org