Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6wFzCjSnPs-m6RIG_hSr5m7Xo-Y.roa
File: 6wFzCjSnPs-m6RIG_hSr5m7Xo-Y.roa (raw, json)
Hash identifier: e+ViOW27TcocdM4VRH7obhpSQFaHPnzkvJsaCofTm60=
Subject key identifier: EB:01:73:0A:34:A7:3E:CF:A6:E9:12:06:FE:14:AB:E6:6E:D7:A3:E6
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 01838546BCC777F6F1B140DC8890F01BCBB3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6wFzCjSnPs-m6RIG_hSr5m7Xo-Y.roa
Signing time: Wed 28 Sep 2022 18:05:48 +0000
ROA not before: Wed 28 Sep 2022 18:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209641
IP address blocks: 45.133.245.0/24 maxlen: 24
185.5.248.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.87.48.0/22 maxlen: 22
185.87.48.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
139.28.221.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
94.142.141.0/24 maxlen: 24
94.142.140.0/24 maxlen: 24
94.142.142.0/24 maxlen: 24
185.125.216.0/22 maxlen: 22
185.105.118.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.205.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.58.207.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/21 maxlen: 21
193.124.176.0/20 maxlen: 20
193.124.184.0/21 maxlen: 21
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.176.0/22 maxlen: 22
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
46.17.106.0/24 maxlen: 24
2a0a:9300:d1::/48 maxlen: 48
2a0a:9300::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9300:d2::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9300:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a0a:9300:d0::/48 maxlen: 48
2a0a:9302:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:85:46:bc:c7:77:f6:f1:b1:40:dc:88:90:f0:1b:cb:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Sep 28 18:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb01730a34a73ecfa6e91206fe14abe66ed7a3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6b:2d:52:e1:2c:89:63:23:93:61:2d:e5:02:
b6:d2:6b:3c:dc:db:0d:8b:32:4a:c2:c3:01:30:d9:
a7:4d:90:72:31:76:e2:d5:46:9f:fe:70:f6:bb:ad:
b1:aa:0a:24:ce:19:f4:69:ab:08:61:9b:e0:f6:4c:
61:61:9c:9b:ae:e7:ef:96:1c:fa:01:da:3b:4a:2a:
82:2b:28:46:99:d5:ea:1b:69:cd:92:0e:c4:fe:90:
f6:37:3c:09:11:ac:3f:c5:d7:13:96:37:d3:ce:64:
9d:5b:28:4f:23:99:5c:b6:ce:93:c3:b6:14:fc:a5:
90:06:2f:93:f5:02:ee:87:d7:6c:29:23:64:c9:42:
33:33:e0:33:50:2d:5d:d0:54:f0:e3:e2:1b:5d:97:
be:45:11:7f:be:40:59:42:71:1d:e9:00:44:24:ab:
5d:c4:79:ec:45:93:93:fe:22:78:e3:d7:95:e7:73:
12:1d:22:73:28:12:e4:f5:64:9b:af:d6:e9:3f:dc:
a2:9a:14:d5:7a:aa:c4:ee:d9:c8:0f:f1:d4:f8:2d:
92:de:8c:60:95:dc:8d:10:ed:3d:f6:ed:a3:aa:47:
d8:cd:50:72:dd:34:c9:36:ef:fd:44:13:6c:5d:0e:
20:93:fb:83:3d:16:a4:be:70:60:44:4b:12:a7:9a:
f3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:01:73:0A:34:A7:3E:CF:A6:E9:12:06:FE:14:AB:E6:6E:D7:A3:E6
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6wFzCjSnPs-m6RIG_hSr5m7Xo-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.66.0/23
45.128.176.0/22
45.133.245.0/24
46.17.106.0/24
91.217.80.0/24
94.142.136.0/21
95.214.8.0/22
139.28.220.0/23
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/48
2a0a:9300:2::/48
2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
8e:af:96:88:3a:a8:b4:b0:26:3c:65:b4:bf:4c:18:22:0a:5f:
2d:e1:94:b6:db:67:db:43:48:39:e3:a8:4d:ec:2a:63:5d:93:
a0:dc:a5:82:77:ef:9a:f2:ea:32:7e:5b:5e:b9:2d:a6:be:84:
ea:fe:fb:5c:c0:1b:8b:87:ba:89:6c:08:ab:0a:57:70:42:ce:
3d:86:99:16:51:8a:f4:db:34:f3:9a:f7:3c:fc:66:18:6a:57:
6e:ad:79:19:06:d9:cd:f6:9f:3f:4a:9a:68:71:70:17:55:a6:
c5:c7:8d:9d:53:78:b5:ba:97:d3:01:8e:1c:78:5c:8f:58:27:
9a:2d:0a:18:67:a7:5c:20:ea:3e:a8:f7:b3:90:4f:70:e0:c7:
a3:0b:c3:8d:96:a9:bd:a3:23:b9:3e:37:9f:f4:de:fb:61:e2:
de:81:c7:e7:bc:f1:e4:a2:19:71:16:c8:1a:97:3f:4c:63:7a:
bd:cf:e9:15:73:14:84:c5:ce:b2:5d:9c:b0:b2:e5:eb:1f:ff:
63:5a:d1:13:87:1d:e5:29:e5:9d:06:4b:bd:43:ab:63:2e:dd:
34:af:d1:05:c8:42:5a:5b:85:d1:e4:53:32:6b:56:15:1f:40:
cb:a1:21:96:0f:fc:4e:2f:b2:54:20:aa:19:ca:68:b9:f3:5f:
ab:42:15:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org