Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/PuspLhfqceSupOSTluYOBq67UIg.roa
File: PuspLhfqceSupOSTluYOBq67UIg.roa (raw, json)
Hash identifier: XC4+dnlQqvH5V4A/HHdQjbeMNSDkUfc0JW4Bl8f91zM=
Subject key identifier: 3E:EB:29:2E:17:EA:71:E4:AE:A4:E4:93:96:E6:0E:06:AE:BB:50:88
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 036D10F9
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/PuspLhfqceSupOSTluYOBq67UIg.roa
Signing time: Mon 10 Jan 2022 13:22:48 +0000
ROA not before: Mon 10 Jan 2022 13:22:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/23 maxlen: 23
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
139.28.221.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.136.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
94.142.138.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.194.0/23 maxlen: 23
194.67.196.0/22 maxlen: 22
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.208.0/20 maxlen: 20
2a0a:9301:1::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57479417 (0x36d10f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 10 13:22:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3eeb292e17ea71e4aea4e49396e60e06aebb5088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bf:99:60:9b:20:89:81:c6:01:5b:bf:69:0c:
f9:cc:95:9a:5e:d2:3c:1b:1b:ff:b4:88:3d:eb:ae:
8c:5a:d9:ef:cd:2d:87:95:cf:1b:b5:f3:97:0b:7e:
f6:78:7a:f0:c6:cf:b5:02:c0:f9:3e:85:c8:95:d7:
c4:4a:89:95:39:3c:18:1c:af:23:bf:4f:0c:6d:13:
29:f3:17:c2:3f:f8:ef:e1:84:2b:a8:0c:24:c1:88:
9f:1a:c2:32:a7:78:59:9e:ea:df:ca:46:1a:d8:d9:
81:b0:2c:a8:1c:6f:1c:9f:6c:48:14:df:17:32:bd:
be:fd:a1:aa:0a:55:63:c8:d5:ff:74:0b:9f:cd:fd:
2a:da:43:e2:70:ae:e8:01:3f:71:8a:05:dd:bd:a6:
01:c8:46:c8:2f:1c:94:28:cd:8f:5f:bc:c1:6a:0e:
3d:ed:68:91:35:51:55:79:c2:3e:23:b9:97:f8:d5:
f1:18:39:2d:3b:7d:6b:fd:51:78:26:9e:8b:5c:d2:
a4:15:90:a5:5d:bd:d1:b9:b4:07:5b:ed:24:24:79:
37:81:7d:8a:27:2e:bd:64:68:c6:eb:1b:a0:52:b7:
e7:18:a6:37:2f:5a:fe:51:fe:fc:39:db:f4:d2:f9:
72:c7:04:f9:6b:1d:90:71:cc:cd:78:44:cb:86:29:
33:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EB:29:2E:17:EA:71:E4:AE:A4:E4:93:96:E6:0E:06:AE:BB:50:88
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/PuspLhfqceSupOSTluYOBq67UIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/23
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.109.84.0/24
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a0a:9301:1::/48
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
71:6f:b8:f3:c0:9c:21:48:b5:30:f6:70:19:72:0d:b2:31:cf:
4a:d4:05:67:d6:81:cb:16:63:7a:54:45:f6:99:07:17:c8:3b:
71:27:48:9c:b8:5b:a4:da:70:20:f6:70:50:00:4c:f1:11:fb:
da:e6:a4:fe:f6:85:a3:77:ce:97:2b:28:e7:3b:5d:31:5a:ea:
1e:65:b7:30:7c:66:77:9a:ad:22:bb:b2:d6:99:d3:4d:00:2a:
0f:f6:90:9b:92:03:ed:c5:b1:25:17:07:d8:49:5e:27:f1:fe:
a7:ab:d4:56:03:89:23:ca:f0:97:45:26:1d:bf:1f:9d:09:04:
07:12:85:af:21:3a:6f:35:51:9a:4b:3d:14:c0:6d:3b:b9:62:
c9:94:80:9a:a8:45:81:07:f9:da:d5:ef:ba:53:5a:53:f8:1c:
42:7f:09:e6:a8:49:f1:26:f7:01:1f:d4:f4:88:ae:83:3c:95:
1e:bc:59:7f:30:44:a8:b8:5f:1c:88:be:3a:65:3e:af:09:d0:
b4:7a:5d:f8:29:c2:e0:44:a7:b4:7a:fe:46:05:6f:3d:43:72:
df:14:5b:6d:d0:09:df:2d:90:a5:2a:5a:ec:0a:6b:83:fc:74:
e7:c4:ca:82:46:f0:a1:2d:bc:35:89:34:33:6e:a4:6f:87:c0:
b8:4e:e8:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org