Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/XaKHj7ChQNbIjtWQo2ajzDbzjVM.roa
File: XaKHj7ChQNbIjtWQo2ajzDbzjVM.roa (raw, json)
Hash identifier: TLlQw7SqH1SOlHzVX5L1IyXbd+4aWaVauovqEsltzDw=
Subject key identifier: 5D:A2:87:8F:B0:A1:40:D6:C8:8E:D5:90:A3:66:A3:CC:36:F3:8D:53
Certificate issuer: /CN=19b800c39126db3ca4e0d56910f0ad379257e4a0
Certificate serial: 0183E637FB706724BD509FA2012446613C7F
Authority key identifier: 19:B8:00:C3:91:26:DB:3C:A4:E0:D5:69:10:F0:AD:37:92:57:E4:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GbgAw5Em2zyk4NVpEPCtN5JX5KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/XaKHj7ChQNbIjtWQo2ajzDbzjVM.roa
Signing time: Mon 17 Oct 2022 13:52:51 +0000
ROA not before: Mon 17 Oct 2022 13:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12897
IP address blocks: 185.117.68.0/22 maxlen: 22
195.80.52.0/22 maxlen: 22
94.16.64.0/19 maxlen: 19
92.119.8.0/22 maxlen: 22
185.189.140.0/22 maxlen: 22
5.182.236.0/22 maxlen: 22
185.238.252.0/22 maxlen: 22
212.232.80.0/20 maxlen: 20
45.14.188.0/22 maxlen: 22
85.132.192.0/19 maxlen: 19
213.188.96.0/19 maxlen: 19
45.131.36.0/22 maxlen: 22
45.136.168.0/22 maxlen: 22
149.249.128.0/19 maxlen: 19
213.157.0.0/19 maxlen: 19
134.101.16.0/20 maxlen: 20
95.131.96.0/21 maxlen: 21
45.143.76.0/22 maxlen: 22
45.10.60.0/22 maxlen: 22
185.9.28.0/22 maxlen: 22
45.128.180.0/22 maxlen: 22
94.46.64.0/19 maxlen: 19
45.93.108.0/22 maxlen: 22
46.243.80.0/21 maxlen: 21
185.194.64.0/22 maxlen: 22
2a02:b98::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:37:fb:70:67:24:bd:50:9f:a2:01:24:46:61:3c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19b800c39126db3ca4e0d56910f0ad379257e4a0
Validity
Not Before: Oct 17 13:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5da2878fb0a140d6c88ed590a366a3cc36f38d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:60:9e:39:a6:79:1b:7c:a0:18:2b:25:6e:c4:
ab:3d:c2:c2:52:a5:00:8b:38:8b:3c:6b:86:74:56:
2f:94:af:78:f8:1c:12:27:1d:58:6a:56:be:03:f0:
34:98:13:b8:74:02:e5:da:4f:c1:e1:d6:1c:8a:25:
fc:a4:76:99:b8:2c:0d:b6:0b:80:71:63:53:a8:c8:
e8:de:a5:2f:10:59:02:2d:ab:05:db:63:a6:81:7d:
35:cb:71:d5:d1:e1:bb:30:31:62:ea:73:f0:13:a1:
1a:85:e9:7b:ff:88:1b:ee:e0:00:fb:8e:68:f1:35:
6a:b0:7a:85:36:0c:d9:e9:4e:94:fd:31:95:1b:e1:
5c:63:69:e9:33:79:a3:b6:b3:55:17:81:1c:3f:38:
d5:d1:8b:2b:20:36:3c:0b:00:ba:c6:43:4d:4b:35:
ba:f0:6d:3e:60:80:18:b1:71:2a:87:74:71:1e:aa:
4f:0e:60:27:eb:55:3d:38:45:48:25:87:62:13:ce:
e4:3e:22:1d:f9:98:e2:b0:7e:7c:ff:df:e9:7a:19:
d3:e2:b6:ba:b7:a4:15:85:3c:0d:5c:38:c6:7a:17:
6e:da:4d:ce:c0:69:3b:70:b4:0f:fc:a2:35:07:34:
5f:a8:fe:8a:24:14:80:bb:95:2c:c9:81:84:86:98:
ee:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:A2:87:8F:B0:A1:40:D6:C8:8E:D5:90:A3:66:A3:CC:36:F3:8D:53
X509v3 Authority Key Identifier:
keyid:19:B8:00:C3:91:26:DB:3C:A4:E0:D5:69:10:F0:AD:37:92:57:E4:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GbgAw5Em2zyk4NVpEPCtN5JX5KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/XaKHj7ChQNbIjtWQo2ajzDbzjVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/84b489-8b6f-459d-9a31-f18ad9f4cc34/1/GbgAw5Em2zyk4NVpEPCtN5JX5KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.236.0/22
45.10.60.0/22
45.14.188.0/22
45.93.108.0/22
45.128.180.0/22
45.131.36.0/22
45.136.168.0/22
45.143.76.0/22
46.243.80.0/21
85.132.192.0/19
92.119.8.0/22
94.16.64.0/19
94.46.64.0/19
95.131.96.0/21
134.101.16.0/20
149.249.128.0/19
185.9.28.0/22
185.117.68.0/22
185.189.140.0/22
185.194.64.0/22
185.238.252.0/22
195.80.52.0/22
212.232.80.0/20
213.157.0.0/19
213.188.96.0/19
IPv6:
2a02:b98::/32
Signature Algorithm: sha256WithRSAEncryption
02:3e:a3:63:bc:72:f8:e9:f9:af:ec:2b:07:3c:37:d5:43:57:
68:72:1a:27:a6:b2:2c:fe:92:60:be:0e:a7:98:83:f4:7e:37:
c6:b9:dc:83:52:87:61:d7:e7:79:7e:4d:4f:eb:57:a2:51:4d:
44:20:ab:58:cf:4b:35:c6:ef:68:86:93:26:10:5b:04:a1:0d:
64:cc:e0:fe:37:9c:b0:84:b5:a7:d1:ac:b9:d3:de:d4:d5:1e:
c7:c4:63:b2:74:19:f0:b1:0c:9e:bc:5e:86:fa:25:39:b2:78:
5e:e5:11:f2:e9:9e:38:b3:5a:00:73:67:6b:b8:ec:bf:59:c3:
d9:08:f1:11:1a:f1:45:db:26:49:1d:22:28:c9:19:f2:cc:45:
b3:69:b9:60:cc:07:e3:90:35:e5:5d:7c:1e:dd:b5:63:51:4f:
31:a2:be:85:73:5e:1f:f0:5c:aa:02:fc:de:58:08:1c:cb:cb:
80:24:60:17:5f:2d:a7:0c:de:b3:ea:a8:c1:5f:c7:9f:02:30:
1a:1c:1d:4f:72:f8:ed:11:65:22:c1:b1:ce:cf:54:c0:5e:f9:
3a:6c:bf:ce:13:48:44:6a:7c:af:83:b0:50:d0:87:37:88:9d:
08:65:5d:94:76:1e:bb:8a:48:f4:bf:f9:f6:68:57:42:fd:98:
0c:23:df:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-ams.rpki-client.org