Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QEpCZ8zKwJkVAqn3OqXvXKqV9AE.roa
File: QEpCZ8zKwJkVAqn3OqXvXKqV9AE.roa (raw, json)
Hash identifier: cbf/e4kMiMLpb74zgyo+wG52bc4AizTNfKGSNIO81MU=
Subject key identifier: 40:4A:42:67:CC:CA:C0:99:15:02:A9:F7:3A:A5:EF:5C:AA:95:F4:01
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03696655
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QEpCZ8zKwJkVAqn3OqXvXKqV9AE.roa
Signing time: Sun 09 Jan 2022 18:43:27 +0000
ROA not before: Sun 09 Jan 2022 18:43:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205090
IP address blocks: 185.112.103.0/24 maxlen: 24
45.9.73.0/24 maxlen: 24
45.9.75.0/24 maxlen: 24
193.162.143.0/24 maxlen: 24
185.105.90.0/24 maxlen: 24
185.105.91.0/24 maxlen: 24
185.105.88.0/24 maxlen: 24
185.105.89.0/24 maxlen: 24
45.95.202.0/24 maxlen: 24
45.95.203.0/24 maxlen: 24
45.90.216.0/24 maxlen: 24
45.90.217.0/24 maxlen: 24
45.90.218.0/24 maxlen: 24
45.90.219.0/24 maxlen: 24
84.252.73.0/24 maxlen: 24
84.252.74.0/24 maxlen: 24
84.252.75.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
85.209.2.0/24 maxlen: 24
185.103.109.0/24 maxlen: 24
185.128.106.0/24 maxlen: 24
185.128.107.0/24 maxlen: 24
193.168.227.0/24 maxlen: 24
185.217.198.0/24 maxlen: 24
185.217.199.0/24 maxlen: 24
2a09:5302::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57239125 (0x3696655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 9 18:43:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=404a4267cccac0991502a9f73aa5ef5caa95f401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b5:66:d0:23:cf:0b:02:26:bd:f8:83:f7:5c:
c6:68:5a:27:6d:a8:34:b1:77:e2:03:a4:4d:fc:04:
b0:a2:13:4b:96:47:1b:b3:45:6d:f8:0b:0f:5b:2f:
e0:92:30:a6:fb:cf:03:a7:ed:8d:d7:fb:dc:90:8b:
3f:3e:a1:5b:6b:32:35:8d:67:18:4d:9d:ba:52:ef:
7e:0e:6d:5c:c3:1b:75:59:99:ca:02:9a:0c:af:37:
66:e9:a7:2f:75:c6:da:f2:74:03:3f:50:73:1d:5c:
5c:ec:14:f8:fb:98:89:32:9c:44:48:13:46:76:c9:
02:32:2f:29:fb:d7:a1:29:09:cf:23:e4:c3:92:5c:
bf:67:e0:f7:aa:4f:b4:89:7e:e2:74:0b:a6:b7:25:
5a:65:15:e2:b3:97:03:27:22:99:cc:7a:87:ab:8c:
b7:bc:51:20:43:d1:ad:56:88:7e:9b:9a:b0:f4:18:
78:cf:c7:e5:1c:ea:0c:48:48:e7:bd:ee:50:a2:b4:
f6:d6:af:d7:80:71:9a:91:9e:51:57:79:46:2e:c0:
eb:8b:b4:c5:bd:32:4b:23:c0:e7:72:61:07:8a:5d:
b3:59:56:06:07:5b:b2:be:ab:71:f4:c1:48:98:b5:
9c:60:7e:25:b7:9d:b2:3f:6a:37:83:55:00:f4:f6:
e2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4A:42:67:CC:CA:C0:99:15:02:A9:F7:3A:A5:EF:5C:AA:95:F4:01
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QEpCZ8zKwJkVAqn3OqXvXKqV9AE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.0/24
45.9.75.0/24
45.89.65.0/24
45.90.216.0/22
45.95.202.0/23
84.252.73.0-84.252.75.255
85.209.2.0/24
185.103.109.0/24
185.105.88.0/22
185.112.103.0/24
185.128.106.0/23
185.217.198.0/23
193.162.143.0/24
193.168.227.0/24
IPv6:
2a09:5302::/32
Signature Algorithm: sha256WithRSAEncryption
77:ed:11:cc:de:b9:dd:4e:87:8b:bb:62:5c:58:6a:79:8f:76:
eb:fb:b6:35:a4:38:3e:2b:23:ae:99:51:95:da:44:68:95:83:
d0:6c:8d:06:c3:0b:ed:91:fe:a9:d7:a2:13:b9:02:ea:cc:21:
d0:e3:71:0b:dd:b4:5f:ab:e5:b2:0a:ed:79:f6:9b:f5:7e:d3:
87:db:fa:9f:14:8a:83:5f:c1:93:b5:d2:32:c9:60:6f:58:92:
ed:be:f4:4e:7c:a3:0e:04:22:1e:a4:1b:58:2c:88:c9:53:e0:
65:95:8e:44:e9:75:d4:a0:7b:a6:3b:5e:c6:9a:bb:c4:94:ac:
24:ac:f7:e4:70:26:98:4e:75:66:21:52:1e:94:2b:6e:e8:9f:
71:e3:d3:60:b6:9a:55:4b:9d:9c:05:44:0f:72:ee:ee:5a:0c:
5a:a7:d4:08:29:70:11:91:3f:62:d5:90:73:38:b0:e1:09:27:
34:f3:4e:64:1f:63:83:35:fe:8c:9c:de:47:0d:c8:70:ec:dd:
22:6d:02:bb:54:81:2e:07:7e:e9:53:c6:42:4b:b6:98:61:2e:
9a:f2:a7:78:c0:35:e6:1a:b6:58:8e:c2:81:d9:b0:20:32:70:
28:e2:eb:15:9f:0b:5f:44:8c:1c:d7:eb:e3:d3:12:01:9b:7b:
c0:47:df:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-fra.rpki-client.org