Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/DWaiQPFsN1WMVCBovqGX4JoULns.roa
File: DWaiQPFsN1WMVCBovqGX4JoULns.roa (raw, json)
Hash identifier: vHmefKaPTZIkgMBkZT6+nCd8CoAsRkkfPQkSXSgsWAA=
Subject key identifier: 0D:66:A2:40:F1:6C:37:55:8C:54:20:68:BE:A1:97:E0:9A:14:2E:7B
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 07A797D5
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/DWaiQPFsN1WMVCBovqGX4JoULns.roa
Signing time: Sat 01 Jan 2022 16:05:59 +0000
ROA not before: Sat 01 Jan 2022 16:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18978
IP address blocks: 141.98.188.0/22 maxlen: 24
88.218.92.0/22 maxlen: 24
45.149.112.0/22 maxlen: 24
85.209.192.0/22 maxlen: 24
194.59.220.0/23 maxlen: 24
45.66.156.0/22 maxlen: 24
45.66.164.0/22 maxlen: 24
194.59.244.0/23 maxlen: 24
5.180.24.0/22 maxlen: 24
5.180.20.0/22 maxlen: 24
5.180.28.0/22 maxlen: 24
5.180.44.0/22 maxlen: 24
5.180.40.0/22 maxlen: 24
194.55.136.0/23 maxlen: 24
85.208.108.0/22 maxlen: 24
85.208.116.0/22 maxlen: 24
45.128.60.0/22 maxlen: 24
194.124.244.0/23 maxlen: 24
194.124.250.0/23 maxlen: 24
5.180.144.0/22 maxlen: 24
5.180.52.0/22 maxlen: 24
45.136.112.0/22 maxlen: 24
45.136.116.0/22 maxlen: 24
45.136.124.0/22 maxlen: 24
45.136.128.0/22 maxlen: 24
194.55.188.0/23 maxlen: 24
45.136.148.0/22 maxlen: 24
85.209.152.0/22 maxlen: 24
194.36.36.0/22 maxlen: 24
85.209.156.0/22 maxlen: 24
194.76.146.0/23 maxlen: 24
194.76.154.0/23 maxlen: 24
5.253.28.0/22 maxlen: 24
5.253.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128423893 (0x7a797d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 16:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d66a240f16c37558c542068bea197e09a142e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:78:c4:9a:6b:29:f9:6b:d3:8e:62:6f:cf:e8:
9f:95:23:37:3e:a8:8a:77:79:c2:c9:94:7a:62:78:
29:c9:6b:d6:46:17:cf:11:78:4b:a9:5b:e1:e9:2d:
2a:c5:d0:4d:3b:0f:8d:02:64:f6:1b:be:52:9c:80:
f5:67:ae:92:81:18:31:10:a2:d8:68:65:c4:99:74:
e1:24:75:69:a8:08:10:ac:39:a2:2f:b8:83:9e:48:
62:ee:a0:e5:d7:11:55:8e:60:70:fc:ea:86:60:df:
88:1f:1d:dc:33:b9:79:87:9d:1c:b9:6a:a3:15:96:
08:10:9f:dd:fe:21:87:9f:07:a8:04:1a:27:19:95:
00:d7:4d:d7:c2:a3:17:60:4e:03:84:c5:0a:b3:ca:
db:85:37:de:52:6c:dd:27:4f:1f:3f:0f:60:e4:ce:
6d:e2:10:09:2b:2d:9e:17:d6:5d:13:86:9f:fa:ab:
1f:bc:ce:8e:ab:d2:52:2c:33:99:e2:93:08:c7:a6:
92:c2:90:a5:f7:aa:3f:f2:e4:8b:6c:70:8c:47:f6:
c8:8f:14:13:65:8f:f3:0e:f7:14:4b:bc:fd:ce:e4:
71:ba:c0:bf:d8:ef:44:e7:46:81:f1:1d:5e:49:bf:
c0:74:68:13:1a:38:3f:16:53:e6:40:44:e8:42:28:
10:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:66:A2:40:F1:6C:37:55:8C:54:20:68:BE:A1:97:E0:9A:14:2E:7B
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/DWaiQPFsN1WMVCBovqGX4JoULns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.20.0-5.180.31.255
5.180.40.0/21
5.180.52.0/22
5.180.144.0/22
5.253.28.0/22
5.253.40.0/22
45.66.156.0/22
45.66.164.0/22
45.128.60.0/22
45.136.112.0/21
45.136.124.0-45.136.131.255
45.136.148.0/22
45.149.112.0/22
85.208.108.0/22
85.208.116.0/22
85.209.152.0/21
85.209.192.0/22
88.218.92.0/22
141.98.188.0/22
194.36.36.0/22
194.55.136.0/23
194.55.188.0/23
194.59.220.0/23
194.59.244.0/23
194.76.146.0/23
194.76.154.0/23
194.124.244.0/23
194.124.250.0/23
Signature Algorithm: sha256WithRSAEncryption
72:59:bb:7c:f6:02:ac:43:d8:81:ca:86:a7:69:56:b3:f7:ca:
36:f7:e0:c8:12:fb:b2:fa:78:25:e5:3f:50:ea:15:21:66:2b:
50:13:5e:93:ec:35:53:7f:a9:ed:1b:a1:f1:65:ac:5d:f2:cb:
1c:2d:a3:0f:f9:1d:e9:a2:44:6a:25:e0:7c:ed:3b:e0:83:84:
1e:01:4e:52:e3:b0:8b:8a:cf:eb:65:ff:86:4e:cf:81:43:7d:
9d:d8:01:65:9f:d4:c8:00:8f:d7:d1:59:35:8f:66:2b:ae:5b:
7e:20:bd:bc:42:a4:de:69:8b:f6:89:5d:e6:1e:20:ce:58:79:
6d:3f:59:55:3d:3c:f1:d1:42:40:17:35:03:1e:5c:05:00:0c:
03:64:55:78:3d:dc:56:27:ca:88:97:b4:95:f0:5e:db:8e:22:
45:d1:31:a0:7d:90:25:f0:37:3c:55:e1:69:0f:4a:44:d5:da:
2a:76:d4:11:e2:4b:1b:c6:1a:4e:37:8a:6e:77:60:e3:fb:d1:
0c:ca:55:1a:52:e4:38:cc:a6:75:aa:5b:db:8d:50:88:71:7d:
cc:1a:a6:d5:c6:c0:1a:74:4c:df:e5:08:7d:9d:04:ce:6a:43:
63:92:09:23:19:26:c3:0e:1f:75:21:17:33:60:d2:18:95:0b:
bb:ad:24:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org