Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/r2S8Oj2CPmYMr5YWMRZJj2yyTqo.roa
File: r2S8Oj2CPmYMr5YWMRZJj2yyTqo.roa (raw, json)
Hash identifier: hKUtg+yVssJsduyOsyIDkzNReB5sSXdDwbyMnDdnu/E=
Subject key identifier: AF:64:BC:3A:3D:82:3E:66:0C:AF:96:16:31:16:49:8F:6C:B2:4E:AA
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 01833C321149A1585E1D2E169565D478F3AA
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/r2S8Oj2CPmYMr5YWMRZJj2yyTqo.roa
Signing time: Wed 14 Sep 2022 13:30:57 +0000
ROA not before: Wed 14 Sep 2022 13:30:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
94.142.136.0/24 maxlen: 24
94.142.138.0/24 maxlen: 24
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.208.0/20 maxlen: 20
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3c:32:11:49:a1:58:5e:1d:2e:16:95:65:d4:78:f3:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Sep 14 13:30:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af64bc3a3d823e660caf96163116498f6cb24eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:57:2b:59:b5:81:a3:82:bf:36:00:09:0a:77:
a3:f4:88:95:8d:d7:e6:1e:e5:72:9e:36:f8:12:4d:
0d:74:75:82:d0:8e:b4:e7:6e:5b:b4:c8:cc:7f:78:
c7:a4:bd:87:c4:02:8c:b5:79:ab:68:2f:54:c7:36:
8d:68:d8:cb:7c:11:5f:c5:fa:89:92:c3:a5:d1:84:
b5:6d:92:ba:f4:c7:62:30:f4:4d:97:c7:77:cb:d3:
42:4d:b0:75:f3:0e:2e:19:02:18:f8:88:e2:eb:72:
8e:51:f9:8f:37:43:57:5a:f0:62:49:46:cc:cd:0c:
a5:8a:ab:dd:1b:12:c6:1f:9a:f7:38:ef:dc:4f:ac:
fd:14:52:c3:f0:58:8e:5c:90:c0:cd:fe:15:0a:8f:
30:4f:fb:f9:9d:64:4f:ea:da:ca:f8:f8:df:13:1f:
e6:5b:9b:8c:e8:a8:8b:3c:7a:1f:72:d0:57:e8:fb:
97:1d:f5:85:06:d8:3b:d0:56:66:29:f7:d1:a7:ed:
1b:61:88:fd:cb:e7:a3:ea:13:82:91:d5:29:a9:e0:
b6:f4:e7:be:a3:99:34:0e:19:71:02:6d:84:d4:2f:
b2:c0:e9:d2:1b:f3:57:aa:0b:ec:d2:7a:2c:9c:2e:
7d:83:c7:49:05:0a:98:2c:dd:ae:a1:e6:f5:6b:65:
0f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:64:BC:3A:3D:82:3E:66:0C:AF:96:16:31:16:49:8F:6C:B2:4E:AA
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/r2S8Oj2CPmYMr5YWMRZJj2yyTqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
03:97:15:65:97:9f:8a:44:38:e8:3d:d4:a4:5a:c8:2f:bd:af:
02:ce:19:04:85:57:c3:19:db:59:e6:36:ac:97:74:35:19:f7:
67:5d:d8:58:4b:23:e6:98:2a:a2:d8:d5:ec:19:be:d3:f8:bc:
b8:ce:18:57:6c:8b:ab:6e:98:a1:95:81:a1:76:34:78:da:34:
7e:b4:d7:c7:f6:87:65:4e:e1:ec:77:2c:76:ad:21:c6:e8:a6:
ec:f8:37:89:f3:34:96:47:a1:a7:e4:9c:96:50:0d:e8:25:61:
de:44:26:e6:ad:cb:1b:32:4c:66:d1:8c:41:e7:48:9a:c9:99:
39:63:b8:f5:84:df:56:c9:6f:81:a3:69:27:65:76:45:8d:2f:
be:ec:7f:88:dc:68:79:ec:d0:8e:c5:a0:5c:af:f1:e2:1c:40:
14:76:17:6c:94:60:4c:7c:94:c8:58:d4:50:d3:12:8b:90:dd:
4f:ce:de:b9:ca:5a:52:51:a4:0f:bc:10:6c:6e:ec:da:3e:fe:
5a:2e:38:56:07:db:e2:ff:19:47:b3:76:9c:9b:bf:18:c0:69:
9a:cf:0b:aa:e0:3d:a2:a2:d1:62:82:1c:6a:e1:6e:ed:9b:e8:
e0:62:41:8e:7e:32:04:a4:70:da:fc:25:8c:5e:72:b7:22:f5:
1f:c2:cb:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:29 2023 by rpki-client on console-ams.rpki-client.org