Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/b8cmOWWRlQEwPQmkv5RoPypcNoM.roa
File: b8cmOWWRlQEwPQmkv5RoPypcNoM.roa (raw, json)
Hash identifier: pcuUEg1hY3LTmyZ94uV2HdF56L0pZa9nqo5EHypWUHw=
Subject key identifier: 6F:C7:26:39:65:91:95:01:30:3D:09:A4:BF:94:68:3F:2A:5C:36:83
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 047EE277
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/b8cmOWWRlQEwPQmkv5RoPypcNoM.roa
Signing time: Wed 06 Apr 2022 10:55:32 +0000
ROA not before: Wed 06 Apr 2022 10:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/23 maxlen: 23
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.136.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
94.142.138.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.194.0/23 maxlen: 23
194.67.196.0/22 maxlen: 22
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.208.0/20 maxlen: 20
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75424375 (0x47ee277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Apr 6 10:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fc7263965919501303d09a4bf94683f2a5c3683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e4:42:d7:73:2c:2f:e5:aa:f2:52:17:1d:61:
50:5d:d9:7f:d9:d4:c9:60:50:01:95:da:7f:20:20:
1f:eb:2b:ca:8a:1c:56:ef:ea:25:fb:cb:bc:7f:92:
b2:85:22:4b:23:6e:61:fc:14:21:db:0a:fe:ed:25:
77:cf:ca:89:37:59:7c:ab:29:67:2d:a4:6a:6a:c1:
a0:7d:90:7e:45:78:d1:b1:94:e9:f6:9a:2f:e7:27:
7a:34:da:02:60:ef:70:56:0b:39:f0:e6:04:37:b4:
1e:e2:e7:ba:47:66:28:98:d6:0c:a8:02:b3:38:63:
b2:73:25:fb:f9:88:27:98:c8:5d:ed:28:3c:15:15:
19:c3:ad:e3:78:04:ee:11:ee:01:7a:f5:4b:59:8f:
77:9b:a8:6d:58:af:24:2f:0d:69:0d:95:e5:ce:0f:
d4:fe:00:f1:ae:7e:11:bb:28:b8:2d:2a:95:74:46:
1c:99:c3:df:84:59:77:f4:05:2f:5a:e2:0c:d8:d3:
13:a1:4b:0c:8c:f2:8c:9b:bb:73:3c:35:29:7e:e1:
10:b5:dc:31:f6:d6:90:f2:2d:4c:a2:2c:e5:47:a2:
69:88:f1:10:c0:76:b0:e4:73:6c:43:5d:b5:d3:7e:
a5:fa:0b:35:2b:63:b8:89:4f:08:3b:22:72:6f:cd:
79:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C7:26:39:65:91:95:01:30:3D:09:A4:BF:94:68:3F:2A:5C:36:83
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/b8cmOWWRlQEwPQmkv5RoPypcNoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
1e:6d:ce:f5:8d:af:e0:4a:26:bb:8d:2d:17:a0:ed:14:e6:c0:
bb:cc:28:01:d8:4f:f4:4b:0f:0b:1e:c6:a2:82:50:6d:98:c0:
96:54:33:33:4f:53:1d:b4:a3:5c:e2:01:ac:57:0c:eb:0e:86:
34:a0:07:81:99:f4:11:12:74:f3:54:50:0f:c5:0f:d2:ac:97:
f7:1b:a5:46:51:2d:b8:bd:07:48:49:dd:7d:fa:20:cb:42:5d:
e0:df:66:e8:3c:d5:2e:bd:de:68:42:52:15:f4:69:5e:6e:dd:
50:ed:f5:46:58:7a:32:81:49:4a:8c:90:3e:6c:18:39:f7:2b:
fc:9e:49:20:df:b6:3c:05:1d:c6:bd:9a:51:37:b4:81:7f:16:
bf:11:69:e0:77:36:f5:ec:a6:bc:f9:b9:b0:6e:25:21:9e:3b:
8c:3c:d2:01:f3:52:fc:44:da:31:b7:ca:87:0d:c9:38:98:9c:
7d:e1:54:ac:73:ea:a8:20:ae:e4:89:79:a2:1e:6a:6d:8d:7c:
9e:f9:94:85:fc:99:94:83:79:b9:95:0c:a7:4e:9c:71:f2:2c:
4e:84:2d:c0:88:30:1c:fc:f9:d5:7e:9e:5a:f3:77:4f:ec:7d:
12:31:d1:27:96:32:31:49:5a:ff:2d:41:4f:d7:66:c3:48:88:
50:2a:a0:3f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-fra.rpki-client.org