Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/AxUR2QlcB1U9bhuRedKXuN7pkd8.roa
File: AxUR2QlcB1U9bhuRedKXuN7pkd8.roa (raw, json)
Hash identifier: 9PJ28SUHP/dDakK9JK/lLchKc566vP3w7lmiXmK7iMk=
Subject key identifier: 03:15:11:D9:09:5C:07:55:3D:6E:1B:91:79:D2:97:B8:DE:E9:91:DF
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03AEE0C2
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/AxUR2QlcB1U9bhuRedKXuN7pkd8.roa
Signing time: Mon 31 Jan 2022 14:31:13 +0000
ROA not before: Mon 31 Jan 2022 14:31:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205090
IP address blocks: 185.112.103.0/24 maxlen: 24
45.9.73.0/24 maxlen: 24
45.9.75.0/24 maxlen: 24
193.162.143.0/24 maxlen: 24
185.105.90.0/24 maxlen: 24
185.105.91.0/24 maxlen: 24
185.105.88.0/24 maxlen: 24
185.105.89.0/24 maxlen: 24
185.221.162.0/24 maxlen: 24
45.95.202.0/24 maxlen: 24
45.95.203.0/24 maxlen: 24
45.90.216.0/24 maxlen: 24
45.90.217.0/24 maxlen: 24
45.90.218.0/24 maxlen: 24
45.90.219.0/24 maxlen: 24
84.252.73.0/24 maxlen: 24
84.252.74.0/24 maxlen: 24
84.252.75.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
85.209.2.0/24 maxlen: 24
185.103.109.0/24 maxlen: 24
185.128.106.0/24 maxlen: 24
185.128.107.0/24 maxlen: 24
193.168.227.0/24 maxlen: 24
185.217.198.0/24 maxlen: 24
185.217.199.0/24 maxlen: 24
2a09:5302::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61792450 (0x3aee0c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 31 14:31:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=031511d9095c07553d6e1b9179d297b8dee991df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:69:9c:e8:3b:35:0a:1f:f9:9a:26:f3:4b:7f:
c6:99:79:df:73:20:ae:65:72:d7:79:43:f0:85:88:
60:90:48:76:3f:81:17:d5:44:2f:55:0f:a9:d7:b8:
e9:da:28:a9:c5:5f:0a:8a:d1:92:26:9c:db:c2:53:
83:b9:20:5c:a3:85:51:1f:2b:14:a1:a0:99:35:38:
bb:19:1c:1f:c5:be:8a:12:10:88:ef:45:d5:12:7b:
ef:fe:10:7f:ce:0e:c5:53:71:0b:9b:0e:5b:78:70:
87:cd:75:dd:dd:32:67:c9:8b:6a:80:6d:69:15:d8:
6f:9f:d0:55:45:e7:ab:eb:d9:8c:f3:bd:2a:c3:79:
72:7d:a3:9d:3b:c4:5c:3d:cb:d7:34:13:34:e5:15:
7a:a1:5e:85:a5:dc:2e:1b:72:6e:35:66:83:0e:af:
2e:92:0b:de:82:71:59:27:cc:02:b8:81:11:7e:07:
e4:d4:b8:98:b4:44:a8:7a:1e:3e:3d:95:3f:e5:2b:
57:24:37:22:c3:d6:73:54:62:ee:35:e4:5d:7d:f2:
07:01:a7:c7:14:5e:eb:af:3a:15:1a:b1:09:d0:b8:
24:56:15:74:ba:d5:9a:81:90:51:8c:ff:f0:f7:79:
0d:82:b8:bc:a2:00:d6:26:a6:18:02:15:98:a9:ae:
74:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:15:11:D9:09:5C:07:55:3D:6E:1B:91:79:D2:97:B8:DE:E9:91:DF
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/AxUR2QlcB1U9bhuRedKXuN7pkd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.0/24
45.9.75.0/24
45.89.65.0/24
45.90.216.0/22
45.95.202.0/23
84.252.73.0-84.252.75.255
85.209.2.0/24
185.103.109.0/24
185.105.88.0/22
185.112.103.0/24
185.128.106.0/23
185.217.198.0/23
185.221.162.0/24
193.162.143.0/24
193.168.227.0/24
IPv6:
2a09:5302::/32
Signature Algorithm: sha256WithRSAEncryption
5a:66:a3:54:6a:19:5f:a2:55:3e:cb:39:01:26:98:82:e9:94:
0e:8e:e8:49:44:71:17:23:f5:2c:b4:b9:2f:26:33:48:e5:92:
f8:0f:a5:bb:7d:22:77:0d:e4:c7:ca:d8:2b:cc:96:98:f1:ec:
62:be:df:b8:1a:df:33:27:3f:65:24:36:98:ac:e1:35:d4:8b:
33:8e:e0:fe:18:ea:0b:3e:7e:05:88:7e:f0:25:34:eb:39:0a:
76:9b:48:d0:ab:41:da:a8:e2:b5:d2:f2:7b:62:34:25:1c:e1:
11:f0:d1:aa:a3:33:10:1f:c5:7d:5d:c0:67:5c:74:9a:ae:5b:
de:94:54:1e:b6:b2:0b:90:fc:2d:cb:92:0b:b2:d6:f8:2a:2e:
d0:c0:43:fc:d7:88:f5:1a:25:05:2e:0c:c5:52:3c:01:2e:00:
f9:06:1b:58:2d:3f:61:bb:9d:4f:07:2c:0e:95:8e:50:5d:86:
ad:7e:f3:aa:68:ad:63:27:e4:d1:ab:fc:e5:84:67:b6:4c:47:
f7:72:70:09:90:09:ca:6a:87:6c:dc:9b:f8:06:7b:d5:37:c3:
f0:46:5d:78:0a:5f:18:90:a9:85:6d:a2:ac:79:a7:c3:a3:1b:
47:98:b5:54:ff:97:3b:eb:55:6d:67:e7:b4:1c:7e:38:d7:df:
00:e6:94:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org