Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/J0g0bkVBBocgqel1b8VlmlVJcOk.roa
File: J0g0bkVBBocgqel1b8VlmlVJcOk.roa (raw, json)
Hash identifier: bSBJ7lw3vd4D2qGjYfg2HO9AEBzkzfePQT4R4TLJE5Y=
Subject key identifier: 27:48:34:6E:45:41:06:87:20:A9:E9:75:6F:C5:65:9A:55:49:70:E9
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0182EF7A965CDFF09072E8F5543638AE0F4E
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/J0g0bkVBBocgqel1b8VlmlVJcOk.roa
Signing time: Tue 30 Aug 2022 15:59:24 +0000
ROA not before: Tue 30 Aug 2022 15:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210644
IP address blocks: 185.174.137.0/24 maxlen: 24
185.174.136.0/24 maxlen: 24
185.229.66.0/24 maxlen: 24
185.106.94.0/24 maxlen: 24
185.112.83.0/24 maxlen: 24
45.142.122.0/24 maxlen: 24
185.17.0.0/24 maxlen: 24
45.138.74.0/24 maxlen: 24
2a0e:d607::/48 maxlen: 48
2a0e:d602:1::/48 maxlen: 48
2a0e:d602::/48 maxlen: 48
2a0e:d606::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ef:7a:96:5c:df:f0:90:72:e8:f5:54:36:38:ae:0f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Aug 30 15:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2748346e4541068720a9e9756fc5659a554970e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2d:d4:42:91:25:7c:85:92:d3:05:30:29:00:
e5:40:cf:76:4f:99:fb:16:51:ff:96:c4:34:70:53:
12:5c:65:a4:87:6a:6a:02:dd:8d:bb:50:99:07:8a:
9f:69:29:5b:9e:3d:07:92:de:4f:fc:56:b6:df:ce:
c8:6b:7f:3a:07:48:14:90:e6:70:c5:17:d4:87:5f:
69:f4:d3:52:31:25:1c:92:66:02:48:d1:58:f4:9a:
98:ec:8a:00:c0:f1:32:54:a8:4b:b4:6c:21:a2:c3:
69:a6:3e:df:70:0e:44:a5:86:60:44:87:26:f5:ec:
b7:e6:a9:c0:40:66:48:1b:15:c5:54:3e:64:8f:f1:
6b:b4:6a:a6:22:2d:b1:44:37:6c:c1:ac:9a:12:57:
27:91:6b:1e:49:5d:04:97:9e:c0:cf:32:bd:17:5e:
42:d7:2c:bf:3b:d5:93:e5:8f:06:4a:73:cf:3e:d0:
64:c8:34:3b:dc:05:e7:70:c2:69:3b:99:b6:14:f3:
e1:61:fc:da:c6:38:1b:88:7d:bc:0b:28:73:08:c7:
3f:ce:8a:e1:2d:f3:55:a5:9a:9b:5f:d8:81:b4:de:
b6:e1:83:b2:a3:96:17:46:ec:66:9d:11:c8:55:28:
cb:1e:5a:3e:24:69:56:e0:67:91:8e:ad:aa:5f:2c:
e1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:48:34:6E:45:41:06:87:20:A9:E9:75:6F:C5:65:9A:55:49:70:E9
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/J0g0bkVBBocgqel1b8VlmlVJcOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.74.0/24
45.142.122.0/24
185.17.0.0/24
185.106.94.0/24
185.112.83.0/24
185.174.136.0/23
185.229.66.0/24
IPv6:
2a0e:d602::/47
2a0e:d606::/48
2a0e:d607::/48
Signature Algorithm: sha256WithRSAEncryption
58:44:87:69:70:77:36:3b:ca:5b:29:c8:ca:7b:8a:5b:38:58:
b9:d3:3b:b2:a2:e5:ce:3b:56:9e:46:c0:e0:7f:31:6f:4e:21:
c4:21:ad:0f:d0:fe:ca:58:ac:16:78:be:5f:9d:b5:66:97:88:
21:0f:3a:c9:bf:c0:6f:9b:35:81:61:c7:9c:ae:f8:d4:b5:fe:
23:6f:42:6d:68:b6:9e:98:b5:ff:4e:b9:3a:1e:72:c4:ae:ee:
e5:10:a8:74:4d:85:f3:5b:9e:79:8e:65:ae:12:60:a8:9b:7b:
81:be:e2:d3:fa:0b:cc:d4:e1:f1:7d:91:8a:f4:11:17:eb:be:
7d:c4:c4:e8:5c:b6:de:fe:a1:a5:08:b2:67:58:25:ee:f3:eb:
29:73:18:65:ed:e3:1c:1f:fb:0f:64:e9:01:74:4b:a5:ac:9a:
76:56:e0:d6:c0:63:fe:30:64:01:5d:74:83:fe:38:20:03:8e:
40:e1:19:b4:5c:e9:19:2c:b6:0f:d7:6e:6c:76:b7:37:cb:da:
1f:a7:3e:ac:a4:9d:85:ce:c9:bf:30:4c:64:41:c7:91:66:ff:
91:c2:52:f4:a6:e7:0d:b4:55:de:e8:cc:01:b9:32:b3:95:83:
36:8e:e1:50:72:82:ed:c1:09:5c:d6:a9:6e:42:63:14:5f:a9:
bd:5f:d8:40
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgISAYLvepZc3/CQcuj1VDY4rg9OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjIwODMwMTU1OTI0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzQ4MzQ2ZTQ1NDEwNjg3MjBhOWU5NzU2ZmM1NjU5YTU1NDk3MGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAky3UQpElfIWS0wUwKQDlQM92T5n7
FlH/lsQ0cFMSXGWkh2pqAt2Nu1CZB4qfaSlbnj0Hkt5P/Fa2387Ia386B0gUkOZw
xRfUh19p9NNSMSUckmYCSNFY9JqY7IoAwPEyVKhLtGwhosNppj7fcA5EpYZgRIcm
9ey35qnAQGZIGxXFVD5kj/FrtGqmIi2xRDdswayaElcnkWseSV0El57AzzK9F15C
1yy/O9WT5Y8GSnPPPtBkyDQ73AXncMJpO5m2FPPhYfzaxjgbiH28CyhzCMc/zorh
LfNVpZqbX9iBtN624YOyo5YXRuxmnRHIVSjLHlo+JGlW4GeRjq2qXyzh1wIDAQAB
o4ICUDCCAkwwHQYDVR0OBBYEFCdING5FQQaHIKnpdW/FZZpVSXDpMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvSjBnMGJrVkJCb2NncWVsMWI4VmxtbFZKY09rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTAwBAIAATAqAwQALYpKAwQA
LY56AwQAuREAAwQAuWpeAwQAuXBTAwQBua6IAwQAueVCMCEEAgACMBsDBwEqDtYC
AAADBwAqDtYGAAADBwAqDtYHAAAwDQYJKoZIhvcNAQELBQADggEBAFhEh2lwdzY7
ylspyMp7ils4WLnTO7Ki5c47Vp5GwOB/MW9OIcQhrQ/Q/spYrBZ4vl+dtWaXiCEP
Osm/wG+bNYFhx5yu+NS1/iNvQm1otp6Ytf9OuToecsSu7uUQqHRNhfNbnnmOZa4S
YKibe4G+4tP6C8zU4fF9kYr0ERfrvn3ExOhctt7+oaUIsmdYJe7z6ylzGGXt4xwf
+w9k6QF0S6WsmnZW4NbAY/4wZAFddIP+OCADjkDhGbRc6Rkstg/Xbmx2tzfL2h+n
PqyknYXOyb8wTGRBx5Fm/5HCUvSm5w20Vd7ozAG5MrOVgzaO4VBygu3BCVzWqW5C
YxRfqb1f2EA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org