Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/9rb4ygqMzfkmJMUYvEvuHeWaUKg.roa
File: 9rb4ygqMzfkmJMUYvEvuHeWaUKg.roa (raw, json)
Hash identifier: sWqtcxFYEKB6VcgUyiSEh7XPKULU1Bv6dAn9mdnauX0=
Subject key identifier: F6:B6:F8:CA:0A:8C:CD:F9:26:24:C5:18:BC:4B:EE:1D:E5:9A:50:A8
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 039D58BF
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/9rb4ygqMzfkmJMUYvEvuHeWaUKg.roa
Signing time: Wed 26 Jan 2022 09:31:19 +0000
ROA not before: Wed 26 Jan 2022 09:31:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207569
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.180.138.0/24 maxlen: 24
5.180.139.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
45.138.75.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
2a0a:9300::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60643519 (0x39d58bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 26 09:31:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6b6f8ca0a8ccdf92624c518bc4bee1de59a50a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f4:9c:7a:cb:6d:72:76:bb:aa:22:de:0f:ca:
d8:47:d5:35:94:f5:d7:86:d4:44:68:22:6f:bb:f0:
7a:c9:d8:87:16:23:8a:17:58:1e:56:4e:49:27:5d:
3a:01:7a:03:b5:aa:1e:58:58:3a:1b:94:60:f7:53:
6e:95:b9:7e:60:4b:e3:ad:65:26:af:75:fd:0b:c2:
cf:48:ff:ee:28:f3:7b:ec:1c:41:55:fc:f8:f3:5e:
f7:93:b9:a8:7e:ce:61:03:2f:72:82:ee:08:8e:94:
ae:86:f8:b7:11:aa:2f:61:8f:5b:89:e6:d9:61:70:
e4:8a:3f:a0:95:02:6f:14:9e:5d:aa:ab:e9:b6:6d:
2e:3f:58:49:92:d9:93:fa:5e:e6:14:29:11:9a:02:
bc:33:a5:99:c4:7d:c4:25:3a:d8:09:a3:6a:cb:39:
35:7d:ee:81:9e:c4:b2:4d:52:e5:49:e8:7e:2b:76:
16:e2:ec:d7:c3:6f:00:72:7c:76:1d:63:13:78:54:
7b:de:5b:5a:1b:3d:cc:d2:05:69:e9:d6:ca:7f:10:
7a:54:d8:32:c1:bb:30:cb:fe:4d:37:64:26:be:20:
05:d5:16:c4:3a:e3:c8:9b:36:54:19:1e:20:8c:71:
13:60:11:39:3e:19:c7:e2:e6:7a:01:25:5b:b1:cb:
ae:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B6:F8:CA:0A:8C:CD:F9:26:24:C5:18:BC:4B:EE:1D:E5:9A:50:A8
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/9rb4ygqMzfkmJMUYvEvuHeWaUKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/22
5.252.116.0/24
45.89.64.0/24
45.133.245.0/24
45.138.75.0/24
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
185.17.2.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
8f:14:cf:5c:38:db:90:df:b5:c6:c5:11:22:10:ef:49:6f:1b:
54:55:a8:f6:45:e7:e8:49:ce:31:29:a4:cf:8b:b5:6b:98:2f:
21:fe:2c:83:ce:ba:e8:38:c1:9f:36:83:8e:11:60:63:3a:4e:
4f:c1:1b:50:e2:c5:5b:32:06:6b:82:dd:e4:ce:d0:3c:fd:5c:
2f:51:94:43:d0:4f:53:35:09:fc:c8:26:08:70:95:a6:07:ad:
18:31:3f:99:ff:cf:72:8b:2e:23:59:a2:6b:1c:54:6b:2c:c5:
53:d1:e2:89:7c:a9:83:40:0e:09:92:7f:b0:d9:ec:05:a0:f6:
2e:e3:82:d7:8c:a6:09:58:0b:63:a2:03:1e:c3:fb:03:2b:c2:
b8:7e:2b:d8:d3:03:d7:eb:22:3a:f1:b9:25:73:74:b3:3f:58:
bb:3a:70:08:3b:d6:af:bd:58:8d:2b:27:d4:ab:e3:02:29:c6:
3b:60:e0:49:6d:b1:0f:76:bd:87:ef:ea:45:df:4a:d4:e6:f7:
8f:82:dc:9b:ac:0a:f7:bb:d8:e2:21:f9:51:56:64:c9:e6:c6:
5f:20:08:aa:06:ab:03:e5:0f:8b:99:75:e4:33:ad:af:f6:d0:
76:92:ea:e0:f9:d8:cb:c6:fd:87:c3:c5:7d:a6:1d:b3:7f:a7:
60:13:75:82
-----BEGIN CERTIFICATE-----
MIIFLjCCBBagAwIBAgIEA51YvzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEy
NjA5MzExOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjZiNmY4Y2EwYThj
Y2RmOTI2MjRjNTE4YmM0YmVlMWRlNTlhNTBhODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJz0nHrLbXJ2u6oi3g/K2EfVNZT114bURGgib7vwesnYhxYj
ihdYHlZOSSddOgF6A7WqHlhYOhuUYPdTbpW5fmBL461lJq91/QvCz0j/7ijze+wc
QVX8+PNe95O5qH7OYQMvcoLuCI6Urob4txGqL2GPW4nm2WFw5Io/oJUCbxSeXaqr
6bZtLj9YSZLZk/pe5hQpEZoCvDOlmcR9xCU62Amjass5NX3ugZ7Esk1S5Unofit2
FuLs18NvAHJ8dh1jE3hUe95bWhs9zNIFaenWyn8QelTYMsG7MMv+TTdkJr4gBdUW
xDrjyJs2VBkeIIxxE2AROT4Zx+LmegElW7HLrmsCAwEAAaOCAkgwggJEMB0GA1Ud
DgQWBBT2tvjKCozN+SYkxRi8S+4d5ZpQqDAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
LzlyYjR5Z3FNemZrbUpNVVl2RXZ1SGVXYVVLZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBe
BggrBgEFBQcBBwEB/wRPME0wPAQCAAEwNgMEAgW0iAMEAAX8dAMEAC1ZQAMEAC2F
9QMEAC2KSwMEAC4RagMEAFXRAAMEAF/WCAMEALkRAjANBAIAAjAHAwUAKgqTADAN
BgkqhkiG9w0BAQsFAAOCAQEAjxTPXDjbkN+1xsURIhDvSW8bVFWo9kXn6EnOMSmk
z4u1a5gvIf4sg8666DjBnzaDjhFgYzpOT8EbUOLFWzIGa4Ld5M7QPP1cL1GUQ9BP
UzUJ/MgmCHCVpgetGDE/mf/PcosuI1miaxxUayzFU9HiiXypg0AOCZJ/sNnsBaD2
LuOC14ymCVgLY6IDHsP7AyvCuH4r2NMD1+siOvG5JXN0sz9YuzpwCDvWr71YjSsn
1KvjAinGO2DgSW2xD3a9h+/qRd9K1Ob3j4Lcm6wK97vY4iH5UVZkyebGXyAIqgar
A+UPi5l15DOtr/bQdpLq4PnYy8b9h8PFfaYds3+nYBN1gg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org