Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/dQpol8T7hiljpLGBBDg3wSBSEUA.roa
File: dQpol8T7hiljpLGBBDg3wSBSEUA.roa (raw, json)
Hash identifier: GCxHBKQqAdXnlSB0yDmoNe1eNPP8eVU6KKZZgdnZmRE=
Subject key identifier: 75:0A:68:97:C4:FB:86:29:63:A4:B1:81:04:38:37:C1:20:52:11:40
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 01833128A3CA78C9B3743BA3F34C4FA101F3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/dQpol8T7hiljpLGBBDg3wSBSEUA.roa
Signing time: Mon 12 Sep 2022 10:04:50 +0000
ROA not before: Mon 12 Sep 2022 10:04:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
94.142.136.0/24 maxlen: 24
94.142.138.0/24 maxlen: 24
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.208.0/20 maxlen: 20
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:31:28:a3:ca:78:c9:b3:74:3b:a3:f3:4c:4f:a1:01:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Sep 12 10:04:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=750a6897c4fb862963a4b181043837c120521140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3e:0c:8b:20:23:ad:6f:6a:73:6c:95:37:0a:
43:08:2f:6c:99:05:69:f0:56:c3:01:1e:85:a8:6f:
06:53:8f:90:5e:98:e7:c2:ab:82:db:84:09:f3:74:
6b:ef:3c:66:12:cf:ac:6e:f1:3a:7a:8a:34:bd:61:
ba:48:5a:03:22:09:c2:da:50:ba:ff:08:4c:7b:08:
3e:49:50:a5:88:c1:af:4b:75:f7:c7:19:ec:c2:59:
4c:29:2e:49:26:b4:05:ca:90:26:02:a8:da:84:ba:
96:3e:64:39:b3:f5:3f:e9:68:a9:43:a3:cc:00:5a:
9d:bd:4b:f0:4b:4e:44:77:36:ce:3f:c8:8d:81:c9:
80:0f:f8:3f:5e:8f:42:3f:36:25:f7:d4:0f:c2:f1:
2f:b9:a9:57:6c:28:ad:38:9d:11:e8:20:0e:ac:85:
a3:ba:6d:a8:07:4f:1a:82:c9:40:0c:74:14:3b:dd:
0b:1e:91:e1:3c:8e:86:54:8b:bb:13:c6:24:00:7c:
64:d0:0f:6d:6e:c5:06:5f:e1:60:2f:af:72:5e:36:
2e:97:2d:af:a3:54:bb:2f:1c:3f:1b:85:f2:cb:b7:
9a:38:44:13:4a:11:3b:fc:ab:99:cc:93:f2:78:f7:
f5:09:20:ab:e6:63:45:3d:25:e1:3f:63:2c:66:4b:
5f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0A:68:97:C4:FB:86:29:63:A4:B1:81:04:38:37:C1:20:52:11:40
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/dQpol8T7hiljpLGBBDg3wSBSEUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
70:1a:2c:f8:e8:89:37:ec:8c:2a:e1:85:ab:ba:40:45:2b:3e:
c6:23:9f:43:ba:33:32:b1:e2:2e:57:16:04:d6:2b:4a:d0:f6:
02:e6:9a:21:7a:c6:7d:2b:fb:9e:86:d0:5d:9c:e4:ee:ef:af:
b4:b4:6f:23:fc:b8:79:3e:07:35:d6:e2:ca:bc:78:9d:00:e9:
b1:b7:c3:bf:d7:fb:75:2d:32:55:0a:15:cb:47:d3:23:ff:87:
e2:aa:20:52:e4:21:10:07:86:8c:eb:3c:b8:c0:68:ce:91:63:
df:47:f6:d4:a7:d9:d2:94:39:60:bf:02:d5:16:58:12:65:b7:
85:8a:57:9e:82:19:c1:0c:d2:fb:c2:62:0d:c0:69:f9:26:47:
3a:a8:fd:90:4e:65:dc:b3:5d:1d:07:cc:98:4b:24:7e:a2:f1:
2a:c6:f8:fb:45:cd:b0:4c:bf:df:80:56:34:06:2d:d0:a0:e9:
a7:25:48:c6:6d:6f:75:28:c0:09:5b:5c:bc:0e:a3:71:7a:ed:
6d:46:50:55:00:1b:38:7b:88:e6:cc:a7:0f:db:c2:96:08:67:
94:0f:c1:98:0c:85:41:7a:4e:67:d7:04:ea:cd:bc:05:02:82:
ee:93:7e:fb:27:a4:8d:ba:54:4b:fa:fc:5b:63:fa:53:e0:41:
47:02:c4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org