Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/a8lXDzs57Acqv6pN_c4_uJydOXI.roa
File: a8lXDzs57Acqv6pN_c4_uJydOXI.roa (raw, json)
Hash identifier: nyWNwz4QBM/GzdK9PDZvFLTRaQauMpdj5Xm0jUj3MrY=
Subject key identifier: 6B:C9:57:0F:3B:39:EC:07:2A:BF:AA:4D:FD:CE:3F:B8:9C:9D:39:72
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 01837ED6C6D78554F34A95C06142E26A730A
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/a8lXDzs57Acqv6pN_c4_uJydOXI.roa
Signing time: Tue 27 Sep 2022 12:05:48 +0000
ROA not before: Tue 27 Sep 2022 12:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16276
IP address blocks: 152.228.128.0/17 maxlen: 17
94.23.0.0/16 maxlen: 16
51.178.0.0/16 maxlen: 16
51.77.0.0/16 maxlen: 16
151.80.0.0/16 maxlen: 16
193.70.0.0/17 maxlen: 17
91.134.0.0/16 maxlen: 16
162.19.128.0/17 maxlen: 17
145.239.0.0/16 maxlen: 16
149.202.0.0/16 maxlen: 16
137.74.0.0/16 maxlen: 16
54.37.0.0/16 maxlen: 16
188.165.0.0/16 maxlen: 16
51.195.0.0/16 maxlen: 16
92.222.0.0/16 maxlen: 16
141.94.0.0/16 maxlen: 16
91.121.0.0/16 maxlen: 16
5.39.0.0/17 maxlen: 17
198.244.128.0/17 maxlen: 17
213.32.0.0/17 maxlen: 17
146.59.0.0/17 maxlen: 17
178.32.0.0/15 maxlen: 15
37.187.0.0/16 maxlen: 16
37.59.0.0/16 maxlen: 16
146.59.0.0/16 maxlen: 16
54.36.0.0/16 maxlen: 16
162.19.0.0/17 maxlen: 17
51.83.0.0/16 maxlen: 16
213.251.128.0/18 maxlen: 18
79.137.0.0/17 maxlen: 17
141.95.128.0/17 maxlen: 17
51.210.0.0/16 maxlen: 16
135.125.128.0/17 maxlen: 17
213.186.32.0/19 maxlen: 19
51.75.0.0/16 maxlen: 16
51.38.0.0/16 maxlen: 16
54.38.0.0/16 maxlen: 16
46.105.198.0/24 maxlen: 24
46.105.199.0/24 maxlen: 24
46.105.200.0/24 maxlen: 24
46.105.201.0/24 maxlen: 24
46.105.202.0/24 maxlen: 24
46.105.203.0/24 maxlen: 24
46.105.204.0/24 maxlen: 24
51.254.0.0/15 maxlen: 15
51.89.0.0/16 maxlen: 16
5.135.0.0/16 maxlen: 16
135.125.0.0/17 maxlen: 17
57.128.0.0/17 maxlen: 17
51.91.0.0/16 maxlen: 16
217.182.0.0/16 maxlen: 16
164.132.0.0/16 maxlen: 16
5.196.0.0/16 maxlen: 16
51.68.0.0/16 maxlen: 16
141.95.0.0/17 maxlen: 17
176.31.0.0/16 maxlen: 16
147.135.128.0/17 maxlen: 17
87.98.128.0/17 maxlen: 17
57.128.128.0/18 maxlen: 18
46.105.0.0/16 maxlen: 16
2001:41d0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7e:d6:c6:d7:85:54:f3:4a:95:c0:61:42:e2:6a:73:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Sep 27 12:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bc9570f3b39ec072abfaa4dfdce3fb89c9d3972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:61:59:07:1c:91:25:8a:22:cd:21:61:06:72:
fe:bd:9b:13:f4:cc:24:89:63:eb:fa:19:63:f1:82:
06:a1:f8:86:b7:6d:b6:ba:41:44:59:7d:8d:b8:6e:
cb:78:a2:fa:d0:4c:41:c2:89:48:56:f2:bf:fc:cc:
5b:37:34:ea:75:cd:3a:29:38:cb:09:21:a4:25:68:
8b:f7:90:dd:6e:be:84:a0:e6:cf:45:73:a6:48:3a:
1b:9a:f1:f0:31:5b:28:5a:43:d1:34:5e:c4:aa:a7:
4a:92:b5:7d:0f:1f:bc:51:c4:e5:41:76:53:35:a2:
ad:6a:13:74:0e:e6:99:2f:d4:40:80:60:41:da:41:
17:db:fc:4c:41:87:3c:fa:d7:d3:3d:1d:63:bd:97:
4f:95:0b:9c:7d:83:b9:1f:3a:e3:c4:8d:86:a0:c0:
f0:47:cd:94:c0:7b:f1:ed:7d:9c:a5:0a:2b:0a:f8:
b1:66:48:9f:23:56:a4:22:a0:c7:cc:42:3c:a7:a0:
d2:5f:d4:c0:eb:8e:a8:c9:44:ac:99:55:15:ea:eb:
9d:7f:9d:92:23:d6:ea:bf:04:1f:db:85:03:15:90:
7d:67:14:6e:c4:72:73:e3:02:aa:e6:58:e1:ec:f1:
24:38:6e:21:b6:1f:55:07:99:8c:7d:d9:b7:36:a7:
67:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C9:57:0F:3B:39:EC:07:2A:BF:AA:4D:FD:CE:3F:B8:9C:9D:39:72
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/a8lXDzs57Acqv6pN_c4_uJydOXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
46.105.0.0/16
51.38.0.0/16
51.68.0.0/16
51.75.0.0/16
51.77.0.0/16
51.83.0.0/16
51.89.0.0/16
51.91.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
51.254.0.0/15
54.36.0.0-54.38.255.255
57.128.0.0-57.128.191.255
79.137.0.0/17
87.98.128.0/17
91.121.0.0/16
91.134.0.0/16
92.222.0.0/16
94.23.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
145.239.0.0/16
146.59.0.0/16
147.135.128.0/17
149.202.0.0/16
151.80.0.0/16
152.228.128.0/17
162.19.0.0/16
164.132.0.0/16
176.31.0.0/16
178.32.0.0/15
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
IPv6:
2001:41d0::/32
Signature Algorithm: sha256WithRSAEncryption
28:0e:56:21:28:6a:f9:95:7a:b2:f1:b1:9e:c0:17:ca:20:95:
e3:17:28:3e:67:b8:d1:c1:56:b8:aa:39:8e:d8:ff:ca:d5:51:
67:61:a1:38:f5:5f:a7:97:3f:d3:e6:fd:19:31:69:85:41:dd:
02:c0:30:9f:b1:3c:03:dc:88:f5:b5:41:88:ee:51:e2:c9:7f:
86:91:c7:cd:65:6a:86:49:98:a8:af:b7:32:56:93:4e:05:31:
31:e0:ab:c1:39:b1:99:71:a8:a7:11:8d:01:51:6e:15:6c:a8:
bd:7e:07:2d:9e:b7:e1:a7:1d:ab:ae:1f:25:d7:f5:10:97:1b:
7a:52:0d:57:5c:fc:4f:ce:6c:4a:90:e4:6a:33:57:9c:72:d4:
27:6b:a3:4d:6b:a9:34:62:af:73:9c:d7:09:8d:bf:51:af:83:
ec:f3:8f:c3:4a:87:e1:ea:42:b6:50:8a:bc:44:b2:72:07:d9:
fa:d8:dc:20:e8:c5:13:f0:67:2e:3a:f8:99:c9:7f:ea:4b:01:
cb:91:2f:bc:f9:04:13:cd:0c:df:11:bc:3a:0d:56:b8:03:3d:
75:3e:df:1c:e6:fc:04:b2:91:97:9e:b9:e2:e2:e7:ae:d6:57:
a0:2e:99:bc:31:e3:1e:cf:b8:b7:95:10:b4:58:8b:67:ec:c5:
06:cd:7a:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org