Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/pJMwAf8DoPxfJQzk9NPBzeEQ69s.roa
File: pJMwAf8DoPxfJQzk9NPBzeEQ69s.roa (raw, json)
Hash identifier: e/CZSYMcxqzngVcuHQmq65BgzmGbMI7LdDOI3klt5Oo=
Subject key identifier: A4:93:30:01:FF:03:A0:FC:5F:25:0C:E4:F4:D3:C1:CD:E1:10:EB:DB
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 01833128A5826C6FC9A2DDE9F9429C01AA13
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/pJMwAf8DoPxfJQzk9NPBzeEQ69s.roa
Signing time: Mon 12 Sep 2022 10:04:50 +0000
ROA not before: Mon 12 Sep 2022 10:04:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205090
IP address blocks: 185.112.102.0/24 maxlen: 24
185.117.117.0/24 maxlen: 24
185.112.101.0/24 maxlen: 24
185.112.103.0/24 maxlen: 24
45.9.73.0/24 maxlen: 24
45.9.75.0/24 maxlen: 24
193.162.143.0/24 maxlen: 24
185.233.83.0/24 maxlen: 24
185.105.90.0/24 maxlen: 24
185.105.88.0/24 maxlen: 24
185.105.91.0/24 maxlen: 24
185.105.89.0/24 maxlen: 24
185.221.162.0/24 maxlen: 24
45.95.202.0/24 maxlen: 24
185.102.139.0/24 maxlen: 24
45.95.203.0/24 maxlen: 24
45.90.216.0/24 maxlen: 24
45.90.218.0/24 maxlen: 24
45.90.217.0/24 maxlen: 24
45.90.219.0/24 maxlen: 24
84.252.73.0/24 maxlen: 24
84.252.75.0/24 maxlen: 24
84.252.74.0/24 maxlen: 24
185.233.200.0/24 maxlen: 24
185.232.169.0/24 maxlen: 24
185.128.105.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
85.209.2.0/24 maxlen: 24
185.103.109.0/24 maxlen: 24
185.128.107.0/24 maxlen: 24
185.128.106.0/24 maxlen: 24
193.168.227.0/24 maxlen: 24
185.217.198.0/24 maxlen: 24
185.217.199.0/24 maxlen: 24
185.104.251.0/24 maxlen: 24
2a09:5302:ffff::/48 maxlen: 48
2a0e:d603::/32 maxlen: 32
2a09:5302::/32 maxlen: 32
2a0d:2dc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:31:28:a5:82:6c:6f:c9:a2:dd:e9:f9:42:9c:01:aa:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Sep 12 10:04:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4933001ff03a0fc5f250ce4f4d3c1cde110ebdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ae:19:1f:12:5f:e4:3e:41:90:70:22:18:19:
c7:f7:6b:99:47:00:5a:67:0c:cf:1f:c9:62:b0:0e:
10:2b:6c:97:45:fa:a2:6e:86:99:6f:58:6e:0f:b0:
5a:05:0d:a3:af:f5:f6:8d:aa:97:48:93:1d:be:da:
33:9e:22:da:29:bf:97:f5:ec:23:fe:2d:9a:48:09:
1b:46:c5:c1:f4:ad:14:f5:ad:a3:be:d2:93:16:da:
4e:59:d5:51:d3:db:7c:b4:87:4f:64:4e:43:d8:2c:
25:17:2f:7d:3d:b9:73:37:c4:c7:26:78:fd:af:6b:
1a:be:cc:30:63:1b:3c:8a:ee:82:06:3a:97:81:1f:
74:c3:38:b5:4b:bb:2d:09:0a:24:1f:39:69:83:43:
87:04:8e:0f:55:6d:92:e9:cd:a0:55:38:82:a7:3e:
1c:f3:f2:6c:c3:55:87:87:49:5c:f7:96:78:6f:5e:
b0:fe:f1:d3:0d:ec:4c:4c:51:0e:69:cc:56:8f:63:
73:d8:4f:e2:ff:fb:b2:7f:9c:d9:ca:26:34:1a:7d:
cd:54:10:ab:f2:82:d6:89:6e:a8:03:c5:92:f5:ea:
a6:4b:d1:b8:40:82:af:06:a0:f7:82:40:d8:eb:48:
f5:a9:11:b6:e7:f4:27:c3:40:ec:33:8b:6a:47:2b:
84:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:93:30:01:FF:03:A0:FC:5F:25:0C:E4:F4:D3:C1:CD:E1:10:EB:DB
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/pJMwAf8DoPxfJQzk9NPBzeEQ69s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.0/24
45.9.75.0/24
45.89.65.0/24
45.90.216.0/22
45.95.202.0/23
84.252.73.0-84.252.75.255
85.209.2.0/24
185.102.139.0/24
185.103.109.0/24
185.104.251.0/24
185.105.88.0/22
185.112.101.0-185.112.103.255
185.117.117.0/24
185.128.105.0-185.128.107.255
185.217.198.0/23
185.221.162.0/24
185.232.169.0/24
185.233.83.0/24
185.233.200.0/24
193.162.143.0/24
193.168.227.0/24
IPv6:
2a09:5302::/32
2a0d:2dc0::/29
2a0e:d603::/32
Signature Algorithm: sha256WithRSAEncryption
7f:d0:43:51:c1:c2:a7:8b:6b:59:95:c4:34:58:22:65:07:c3:
e3:db:db:c9:9b:8f:11:78:b4:7f:0a:d7:15:53:5f:89:e1:e9:
fb:d5:2a:38:7a:dc:d2:5f:4e:6d:1d:f7:59:2e:f4:18:d1:bc:
f2:58:e9:19:fb:4e:f3:39:51:9b:e8:7d:c1:79:bf:71:f0:92:
7e:ae:d5:1a:60:85:2f:31:30:8e:7e:4a:82:92:f6:7c:1a:43:
8b:9b:e2:87:59:fb:63:90:fa:12:48:a0:c2:da:7c:d3:b3:6a:
4c:be:31:97:e4:01:fe:f6:e7:f6:33:51:f1:cd:01:09:56:4a:
13:82:2f:25:24:b6:fb:48:cb:b8:a8:b5:b3:54:66:31:bf:08:
69:fa:52:d7:6b:28:7c:39:ce:d5:ce:9f:7e:9b:ec:5c:00:56:
74:1a:3d:da:87:6b:6d:97:17:f4:3e:ad:de:ba:ff:8a:55:36:
f8:92:a1:88:1e:0b:de:51:e2:a6:01:b3:14:02:db:7d:ee:7e:
d2:c0:fa:5e:73:d7:b8:73:a3:84:5b:35:ca:7f:cc:89:fe:0b:
18:0d:17:bc:ec:bc:4f:0d:75:b1:48:20:f9:d0:c3:1a:01:1e:
a1:67:a5:ea:c5:0f:b6:5c:ac:57:c1:b6:3d:f5:de:84:ae:97:
66:ce:78:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:29 2023 by rpki-client on console-ams.rpki-client.org