Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/HzTeY-Vm_8oXFt2p3_9MCtdl8JA.roa
File: HzTeY-Vm_8oXFt2p3_9MCtdl8JA.roa (raw, json)
Hash identifier: sTsfAaMl7aR3qoWgfvSdY98vhmMMGg/ww2CVjAJZnrg=
Subject key identifier: 1F:34:DE:63:E5:66:FF:CA:17:16:DD:A9:DF:FF:4C:0A:D7:65:F0:90
Certificate issuer: /CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Certificate serial: 0183FF7884B17E8D36D46BA64FEC83BCC331
Authority key identifier: 43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/HzTeY-Vm_8oXFt2p3_9MCtdl8JA.roa
Signing time: Sat 22 Oct 2022 11:33:51 +0000
ROA not before: Sat 22 Oct 2022 11:33:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48359
IP address blocks: 185.221.192.0/24 maxlen: 24
185.221.192.0/22 maxlen: 22
185.221.194.0/24 maxlen: 24
185.221.193.0/24 maxlen: 24
185.221.195.0/24 maxlen: 24
195.191.44.0/24 maxlen: 24
195.191.45.0/24 maxlen: 24
185.121.58.0/24 maxlen: 24
185.121.57.0/24 maxlen: 24
185.121.56.0/22 maxlen: 22
185.121.56.0/24 maxlen: 24
185.121.59.0/24 maxlen: 24
195.8.112.0/24 maxlen: 24
195.8.110.0/24 maxlen: 24
195.8.114.0/24 maxlen: 24
185.238.44.0/24 maxlen: 24
185.238.47.0/24 maxlen: 24
185.238.46.0/24 maxlen: 24
185.238.45.0/24 maxlen: 24
195.191.23.0/24 maxlen: 24
195.191.22.0/24 maxlen: 24
185.137.60.0/22 maxlen: 24
185.142.95.0/24 maxlen: 24
185.142.92.0/22 maxlen: 22
185.142.92.0/24 maxlen: 24
193.246.200.0/24 maxlen: 24
185.142.94.0/24 maxlen: 24
185.142.93.0/24 maxlen: 24
193.246.201.0/24 maxlen: 24
185.142.124.0/24 maxlen: 24
185.142.124.0/22 maxlen: 22
185.142.125.0/24 maxlen: 24
185.142.127.0/24 maxlen: 24
185.142.126.0/24 maxlen: 24
195.8.102.0/24 maxlen: 24
195.230.97.0/24 maxlen: 24
195.230.105.0/24 maxlen: 24
91.213.151.0/24 maxlen: 24
195.230.107.0/24 maxlen: 24
91.213.157.0/24 maxlen: 24
185.82.64.0/24 maxlen: 24
185.82.64.0/22 maxlen: 22
195.230.124.0/24 maxlen: 24
185.82.66.0/24 maxlen: 24
185.82.67.0/24 maxlen: 24
185.82.65.0/24 maxlen: 24
91.213.172.0/24 maxlen: 24
91.213.167.0/24 maxlen: 24
185.47.48.0/23 maxlen: 23
185.47.50.0/23 maxlen: 23
45.155.192.0/24 maxlen: 24
193.246.175.0/24 maxlen: 24
193.246.174.0/24 maxlen: 24
45.155.195.0/24 maxlen: 24
45.155.193.0/24 maxlen: 24
45.155.194.0/24 maxlen: 24
185.125.22.0/24 maxlen: 24
185.125.21.0/24 maxlen: 24
185.125.23.0/24 maxlen: 24
185.125.20.0/24 maxlen: 24
185.125.20.0/22 maxlen: 22
185.212.192.0/24 maxlen: 24
185.212.193.0/24 maxlen: 24
185.212.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ff:78:84:b1:7e:8d:36:d4:6b:a6:4f:ec:83:bc:c3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Validity
Not Before: Oct 22 11:33:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f34de63e566ffca1716dda9dfff4c0ad765f090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:38:a8:6d:9e:cc:e2:ca:3c:f5:56:92:01:db:
e4:72:a2:11:b3:fa:83:ae:d3:6c:c3:00:69:5f:b4:
4a:f5:7b:8e:ac:8b:97:8f:38:b5:97:83:b5:57:b0:
0f:f9:ec:49:17:a7:40:05:d8:86:b2:b5:9a:8c:df:
ca:d8:cd:1f:cc:30:c5:a7:78:b5:42:9b:94:4b:6f:
b0:e9:b2:41:99:f5:df:64:ac:c4:ce:cb:aa:d1:d4:
77:10:74:89:67:26:3c:46:44:51:a8:1b:23:7a:9f:
2d:2d:c7:95:1e:08:a6:d9:6f:8b:d0:10:41:77:8a:
4d:0e:02:5d:f2:57:aa:cd:9c:bd:13:5b:ca:4c:72:
e6:0d:5e:0b:fd:f9:9f:19:e4:f1:c3:ef:e1:71:98:
84:f5:c5:84:bd:d6:e0:dd:5a:27:4b:54:80:82:34:
7c:cf:08:f7:d6:94:84:76:f3:f8:e5:70:1f:32:cb:
31:41:9a:f1:07:23:56:06:03:3d:71:bf:4f:96:1a:
4e:0b:db:fc:e0:be:b6:6b:a0:e7:2e:a6:6b:93:1e:
96:d1:c6:f6:cd:40:10:1a:e0:3b:4d:3c:ca:b1:82:
5b:c0:71:94:42:ce:67:d8:65:76:54:66:d4:82:58:
ea:57:84:71:0c:ca:69:a8:44:53:ca:51:f1:ae:94:
72:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:34:DE:63:E5:66:FF:CA:17:16:DD:A9:DF:FF:4C:0A:D7:65:F0:90
X509v3 Authority Key Identifier:
keyid:43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/HzTeY-Vm_8oXFt2p3_9MCtdl8JA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.192.0/22
91.213.151.0/24
91.213.157.0/24
91.213.167.0/24
91.213.172.0/24
185.47.48.0/22
185.82.64.0/22
185.121.56.0/22
185.125.20.0/22
185.137.60.0/22
185.142.92.0/22
185.142.124.0/22
185.212.192.0/23
185.212.195.0/24
185.221.192.0/22
185.238.44.0/22
193.246.174.0/23
193.246.200.0/23
195.8.102.0/24
195.8.110.0/24
195.8.112.0/24
195.8.114.0/24
195.191.22.0/23
195.191.44.0/23
195.230.97.0/24
195.230.105.0/24
195.230.107.0/24
195.230.124.0/24
Signature Algorithm: sha256WithRSAEncryption
58:9f:e6:d9:29:a1:db:70:ef:17:c9:b7:23:8b:12:82:8c:d6:
31:b2:ce:b1:d4:46:76:46:e7:95:db:e0:4a:ae:db:ef:e3:74:
17:d0:9f:58:40:b8:56:96:cd:1d:21:24:b9:77:16:41:6f:eb:
cd:48:83:dd:39:93:f3:9f:9d:f1:bd:cb:66:38:65:4c:31:e9:
d6:6e:9a:5f:b2:54:e9:cc:59:db:6d:fc:30:9a:98:4c:ea:7c:
73:33:37:f8:2f:b0:40:e6:bf:87:f1:af:e3:71:98:b8:8d:84:
c6:61:2f:fd:20:af:39:50:98:29:0a:9e:5e:03:5c:89:87:be:
12:f3:57:ec:63:84:ec:c5:2e:31:b5:e0:49:1d:26:74:71:77:
99:a9:30:9e:5e:a2:e2:b0:50:94:93:e9:55:8d:7a:3f:57:47:
84:bd:3c:fa:5a:36:87:be:e5:2a:01:27:b0:64:0b:0c:35:28:
3d:f5:46:3a:3d:f3:79:6c:4f:d7:d3:3d:26:8f:35:b7:37:fe:
77:38:7b:65:eb:f7:31:40:5c:f5:2c:be:f1:61:cb:89:1e:62:
e2:cf:0d:4b:de:b1:2f:77:17:a2:ba:9f:ea:db:06:cc:ee:97:
07:8e:12:b1:fb:a8:7c:b4:cd:f2:0a:ed:4d:cd:da:c8:b6:be:
42:b3:fd:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:50 2024 by rpki-client on console-ams.rpki-client.org