Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/EA6pQKUvoaw07jj-_lVlcibHKsU.roa
File: EA6pQKUvoaw07jj-_lVlcibHKsU.roa (raw, json)
Hash identifier: ld43E7prP9yNPaCnCvTIZ7tr/3hwNvuRYVf/45eCB8o=
Subject key identifier: 10:0E:A9:40:A5:2F:A1:AC:34:EE:38:FE:FE:55:65:72:26:C7:2A:C5
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0184A44E76B92E54D41FD440EAF07A376790
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/EA6pQKUvoaw07jj-_lVlcibHKsU.roa
Signing time: Wed 23 Nov 2022 11:45:16 +0000
ROA not before: Wed 23 Nov 2022 11:45:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209641
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.87.48.0/22 maxlen: 22
185.87.48.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
94.142.138.0/24 maxlen: 24
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
94.142.141.0/24 maxlen: 24
94.142.140.0/24 maxlen: 24
94.142.142.0/24 maxlen: 24
185.125.216.0/22 maxlen: 22
185.105.118.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.205.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.58.207.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.230.0/24 maxlen: 24
185.125.228.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/21 maxlen: 21
193.124.176.0/20 maxlen: 20
193.124.184.0/21 maxlen: 21
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.176.0/22 maxlen: 22
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:d1::/48 maxlen: 48
2a0a:9300::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9300:d2::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9300:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a0a:9300:d0::/48 maxlen: 48
2a0a:9302:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:4e:76:b9:2e:54:d4:1f:d4:40:ea:f0:7a:37:67:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Nov 23 11:45:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=100ea940a52fa1ac34ee38fefe55657226c72ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:88:b4:b6:f8:03:52:b6:bc:79:ef:c0:cf:95:
9c:04:58:83:69:dc:cb:bf:26:29:4f:ec:ce:f1:80:
48:27:3f:a7:4e:53:b2:d3:7d:33:47:41:93:18:18:
67:1a:a4:4a:74:6f:99:6c:17:6f:84:dc:e5:80:5f:
6c:5e:54:b2:29:9e:5e:c3:9a:5f:56:f3:08:c3:6d:
4b:fe:c9:43:03:72:9e:9e:ec:f9:7f:14:9b:75:3d:
cd:8b:7c:fa:f3:83:ff:81:c2:4b:d5:01:53:14:44:
bf:2a:ff:c9:09:e7:20:50:94:8d:12:27:6c:87:60:
37:2b:12:b7:6d:a3:55:74:61:fa:4f:f7:e3:72:b4:
e2:27:95:e0:08:52:76:88:c8:38:ec:39:49:62:8f:
6b:1f:34:e7:72:8a:b5:1d:05:fd:31:ad:37:5b:8d:
5e:f9:58:99:f3:23:63:89:72:27:69:d3:03:d4:9a:
8d:5e:d5:6f:01:d2:b7:7e:ba:b3:d3:b7:e1:33:ca:
be:65:26:51:af:b0:55:12:ed:93:da:7e:c2:30:83:
69:73:7e:64:e5:c9:48:0a:3d:eb:c1:da:69:60:52:
60:f7:bd:7d:9c:64:c5:8f:6b:c4:64:ac:22:ab:55:
dc:b9:cd:09:66:f6:c2:1f:92:5f:3d:86:9e:37:a4:
f1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0E:A9:40:A5:2F:A1:AC:34:EE:38:FE:FE:55:65:72:26:C7:2A:C5
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/EA6pQKUvoaw07jj-_lVlcibHKsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.66.0/24
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/48
2a0a:9300:2::/48
2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
aa:08:5f:60:8d:32:25:0c:c6:10:3d:e5:50:7a:c6:1f:c2:6f:
f4:29:79:48:6d:bf:50:e2:d2:cb:88:b7:f2:ec:ad:86:1f:e7:
ce:5b:5d:0e:f7:60:2e:1c:94:6b:f4:9c:33:5e:f1:3a:b3:b3:
5e:75:d4:a9:39:bd:a6:99:fb:36:45:71:3e:fa:32:00:51:55:
3e:bc:4c:1a:ca:c1:86:8e:a8:02:e4:58:17:77:90:21:e8:a3:
1d:e1:c5:e0:d3:ad:c9:42:0b:a0:57:48:2b:64:74:14:22:75:
41:79:a5:01:e4:1c:14:e7:8b:0f:4d:7e:1f:24:c8:52:1f:66:
11:ba:62:11:72:5b:f4:ac:cd:75:e8:50:e4:85:40:b2:ff:4f:
9b:71:90:f6:1e:55:66:7d:f7:6e:2b:b1:67:8a:e7:ec:5b:62:
79:ac:f4:94:55:b8:bc:b9:e2:77:14:0a:63:f1:d7:a5:fe:78:
60:7e:2e:e9:8c:a2:b7:25:a0:81:c4:07:19:59:b5:e2:16:84:
44:f6:70:6b:9c:7f:77:b4:ed:4e:8d:36:1a:38:66:c3:b2:7d:
04:97:a6:64:46:6e:09:ba:2e:ce:6e:7d:5a:bf:a1:6e:bc:78:
44:66:5d:56:c1:dd:1e:f4:3c:9a:b2:a4:03:23:1b:61:a4:d5:
8a:96:8c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org