Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/meq8tiigS0zkiXaGc_pUlHcA8bE.roa
File: meq8tiigS0zkiXaGc_pUlHcA8bE.roa (raw, json)
Hash identifier: xaSwsOkIb/YnGlmiRNVEZpp3UhIgzXbW2vSPitVL7y4=
Subject key identifier: 99:EA:BC:B6:28:A0:4B:4C:E4:89:76:86:73:FA:54:94:77:00:F1:B1
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018340C32D5E5D64022944A7818F6784F27C
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/meq8tiigS0zkiXaGc_pUlHcA8bE.roa
Signing time: Thu 15 Sep 2022 10:47:56 +0000
ROA not before: Thu 15 Sep 2022 10:47:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204997
IP address blocks: 185.174.137.0/24 maxlen: 24
45.144.64.0/24 maxlen: 24
45.144.66.0/24 maxlen: 24
45.144.65.0/24 maxlen: 24
45.144.67.0/24 maxlen: 24
185.139.69.0/24 maxlen: 24
185.139.71.0/24 maxlen: 24
185.139.68.0/24 maxlen: 24
185.139.70.0/24 maxlen: 24
193.109.78.0/24 maxlen: 24
193.109.79.0/24 maxlen: 24
185.252.146.0/24 maxlen: 24
185.252.147.0/24 maxlen: 24
185.195.24.0/24 maxlen: 24
185.195.27.0/24 maxlen: 24
185.195.25.0/24 maxlen: 24
185.195.26.0/24 maxlen: 24
185.204.0.0/24 maxlen: 24
185.204.2.0/24 maxlen: 24
185.204.3.0/24 maxlen: 24
139.28.223.0/24 maxlen: 24
139.28.222.0/24 maxlen: 24
185.212.148.0/24 maxlen: 24
91.217.81.0/24 maxlen: 24
185.188.183.0/24 maxlen: 24
185.188.182.0/24 maxlen: 24
185.17.3.0/24 maxlen: 24
185.180.231.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
147.78.64.0/24 maxlen: 24
195.66.114.0/24 maxlen: 24
147.78.66.0/24 maxlen: 24
147.78.65.0/24 maxlen: 24
147.78.67.0/24 maxlen: 24
46.17.104.0/24 maxlen: 24
185.104.249.0/24 maxlen: 24
2a04:5200:fff2::/48 maxlen: 48
2a04:5200:fff7::/48 maxlen: 48
2a04:5200:ff00::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:fff4::/48 maxlen: 48
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:c3:2d:5e:5d:64:02:29:44:a7:81:8f:67:84:f2:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Sep 15 10:47:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99eabcb628a04b4ce489768673fa54947700f1b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6f:f6:43:04:c1:40:a8:73:f6:df:4b:4e:3b:
dd:8f:b8:bd:8a:c5:25:9e:02:4d:5e:ec:4e:72:81:
f7:ca:6d:d8:31:ae:6b:2c:6f:36:6c:7d:2a:65:be:
0c:a5:b8:8b:15:48:31:b2:6f:de:21:02:46:34:75:
10:e4:81:67:7e:04:77:41:2e:b3:ed:18:00:79:44:
79:1b:99:2b:f8:40:c5:35:24:3e:39:d5:28:0c:ec:
31:2b:ee:da:42:46:a5:c5:09:34:c6:95:8f:a9:25:
f6:83:ba:df:de:b4:99:0b:80:bd:e8:09:b5:60:9f:
fd:46:3f:6c:3d:b4:fc:f4:e8:1c:7a:5c:5b:1e:00:
f9:97:88:75:7b:ea:8d:a1:22:55:fe:9f:2c:78:0e:
39:a8:3f:98:72:36:83:ea:7f:d8:bc:1b:73:c4:3f:
79:05:a8:d0:9a:b0:2c:60:45:b1:a7:7a:ca:64:8e:
38:fd:08:be:79:49:cf:c9:19:dd:3a:42:6c:c2:a3:
2a:98:92:95:46:1b:28:c3:c1:79:7c:f4:cc:d7:dd:
15:a4:22:7d:1f:0e:f5:28:80:5e:75:8b:83:8e:67:
79:ff:d3:e8:92:89:5c:70:7c:13:af:c6:41:cc:95:
fe:bf:b7:5c:3c:b8:a1:62:1c:78:17:d1:0f:57:72:
07:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EA:BC:B6:28:A0:4B:4C:E4:89:76:86:73:FA:54:94:77:00:F1:B1
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/meq8tiigS0zkiXaGc_pUlHcA8bE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.64.0/22
46.17.104.0/24
91.217.81.0/24
139.28.222.0/23
147.78.64.0/22
185.17.3.0/24
185.104.249.0/24
185.139.68.0/22
185.174.137.0/24
185.180.230.0/23
185.188.182.0/23
185.195.24.0/22
185.204.0.0/24
185.204.2.0/23
185.212.148.0/24
185.252.146.0/23
193.109.78.0/23
195.66.114.0/24
IPv6:
2a04:5200:ff00::/48
2a04:5200:ff10::/48
2a04:5200:fff1::-2a04:5200:fff9:ffff:ffff:ffff:ffff:ffff
2a04:5200:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
96:32:5f:aa:31:ff:a7:cb:6a:22:a9:be:d2:04:2c:d8:21:f4:
0f:ef:68:5c:8d:0a:bd:5c:7e:ce:9c:fc:a8:26:e7:25:95:13:
85:bb:b0:8f:53:2f:ec:08:01:e6:ce:4e:b9:28:37:de:d5:44:
8c:50:15:f5:16:1c:fa:85:e7:ba:ea:b2:4a:3b:6b:7f:66:be:
b4:1f:4f:76:3f:7f:07:7f:b2:85:c1:b9:af:ff:c0:1b:8f:1c:
05:7f:ec:49:10:df:8f:90:d0:08:b9:6b:72:dd:14:9f:3c:97:
77:bf:4b:23:b6:5c:f8:6c:4b:d1:a2:d1:9b:57:96:e3:38:1f:
2b:a7:3e:05:62:9d:13:9b:3f:28:ac:13:1a:06:05:39:41:e4:
11:63:4c:5f:5b:c5:7d:76:f9:3f:cd:7b:f3:60:57:79:40:75:
35:f5:b7:3f:0c:fa:aa:37:2d:ef:4c:c3:ba:03:de:de:b3:a7:
4c:28:4e:36:ae:49:d7:64:35:9d:73:52:d7:bb:3e:3a:21:e3:
f6:a8:73:ce:5b:74:f5:1c:b5:dc:b0:7e:fe:1d:a7:7b:0a:86:
2f:e2:ad:82:5e:f9:73:3d:b2:21:dc:56:f5:07:a9:49:c2:10:
16:84:fc:b5:9c:0c:ac:fb:32:2d:ae:8f:e9:b8:19:ac:b6:e8:
d1:0a:7e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:11 2024 by rpki-client on console-ams.rpki-client.org