Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nKLgFK6U1_sVNgS6DUxlYQC_3Nw.roa
File: nKLgFK6U1_sVNgS6DUxlYQC_3Nw.roa (raw, json)
Hash identifier: n16UPP9iuDJNpVDKoQ2chG3mhec9859Qe7H0zxnGdS0=
Subject key identifier: 9C:A2:E0:14:AE:94:D7:FB:15:36:04:BA:0D:4C:65:61:00:BF:DC:DC
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 040C32EC
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nKLgFK6U1_sVNgS6DUxlYQC_3Nw.roa
Signing time: Fri 11 Mar 2022 10:37:48 +0000
ROA not before: Fri 11 Mar 2022 10:37:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/23 maxlen: 23
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
139.28.221.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.136.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
94.142.138.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.194.0/23 maxlen: 23
194.67.196.0/22 maxlen: 22
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.208.0/20 maxlen: 20
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67908332 (0x40c32ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 11 10:37:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ca2e014ae94d7fb153604ba0d4c656100bfdcdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7e:dc:55:3a:ef:7e:32:de:7f:82:a2:e2:d6:
b4:e6:39:a2:96:59:37:52:13:85:7d:79:c8:2a:02:
d0:0a:07:f4:2b:86:94:52:1e:2d:3e:e4:49:ff:96:
45:d9:ba:21:f8:bf:c8:73:ec:a1:ad:97:ee:b0:84:
1c:81:79:0a:35:66:4c:6c:3f:84:ed:23:17:b3:11:
6f:eb:ef:b0:f5:32:08:64:37:6f:a1:b3:77:2b:62:
e2:68:06:89:32:56:30:76:db:71:54:27:f1:66:c7:
df:b5:be:8d:8f:43:58:a5:f5:b9:15:0d:d1:f9:f4:
ee:3e:ec:bc:4d:5b:31:bf:af:30:47:7d:63:d5:3e:
eb:3a:47:4c:e6:ca:27:02:87:d5:5e:39:15:9c:09:
2b:e0:6c:aa:95:e7:3e:b5:9e:06:e9:78:a6:05:57:
f8:af:69:00:0e:04:93:c3:78:7e:03:1f:52:58:8c:
55:40:62:9b:71:5e:e9:4b:a3:a4:ab:8d:87:26:dd:
3a:ad:e9:f4:87:dd:78:18:f1:9b:8d:2f:0b:ea:d8:
e6:ca:bc:a5:ba:82:cf:7d:42:92:8f:6e:50:21:2d:
ca:68:be:94:59:96:0f:b2:67:4c:00:c7:79:51:fc:
17:94:3f:e5:6f:60:c4:cb:f2:18:90:94:85:82:a3:
a2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A2:E0:14:AE:94:D7:FB:15:36:04:BA:0D:4C:65:61:00:BF:DC:DC
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nKLgFK6U1_sVNgS6DUxlYQC_3Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/23
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.109.84.0/24
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
97:4f:0d:ad:16:e6:da:8b:f9:5c:4a:db:cc:d7:39:83:aa:67:
08:c1:17:cb:08:ee:58:87:72:86:1f:df:ae:9f:1c:4e:0c:3c:
f3:a6:6b:8e:68:85:b3:b8:d7:b7:7b:43:9d:fd:d5:17:8a:8c:
66:2a:df:70:9f:7c:f6:53:68:b7:3f:72:be:5d:56:4d:ad:cb:
ed:b3:ac:49:23:39:73:ba:3b:7f:a2:27:5d:3b:eb:a5:22:35:
6f:1d:43:cd:fb:73:35:84:81:85:03:88:40:1e:52:db:79:4c:
b9:7b:cd:28:4f:da:6f:a3:e9:e6:10:0f:08:5e:25:17:19:7a:
84:43:bf:02:92:6c:f4:f3:68:d3:61:69:9a:e6:22:54:4e:c0:
dc:8d:38:f7:e5:9f:ff:f1:8a:0e:1c:af:2f:b3:e7:f1:0e:f4:
41:e6:7a:0d:31:43:c2:69:79:70:88:38:21:2f:93:a4:2b:fd:
c7:25:f0:96:1e:0d:48:8d:3c:11:81:af:e2:d6:28:b3:e5:5d:
42:c7:70:4b:d7:e9:63:e9:0c:d6:a8:47:a6:c0:d1:da:e2:6f:
02:ec:58:60:33:a6:2b:2c:f4:8a:ac:22:68:66:f3:03:6f:78:
11:d7:4c:47:0e:2c:54:d0:d8:7c:35:7c:9b:02:1a:e8:97:8f:
f5:2b:04:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org