Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uIxKbRIxaeMgbaPIRU24iBmsmlk.roa
File: uIxKbRIxaeMgbaPIRU24iBmsmlk.roa (raw, json)
Hash identifier: +OVEk4XGFcpK0gJCbvf6psB5g4AmpjSAXh8UnB8sm9k=
Subject key identifier: B8:8C:4A:6D:12:31:69:E3:20:6D:A3:C8:45:4D:B8:88:19:AC:9A:59
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 04518A3B
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uIxKbRIxaeMgbaPIRU24iBmsmlk.roa
Signing time: Thu 24 Mar 2022 08:55:12 +0000
ROA not before: Thu 24 Mar 2022 08:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205090
IP address blocks: 185.112.101.0/24 maxlen: 24
185.112.102.0/24 maxlen: 24
185.112.103.0/24 maxlen: 24
45.9.73.0/24 maxlen: 24
45.9.75.0/24 maxlen: 24
193.162.143.0/24 maxlen: 24
185.105.90.0/24 maxlen: 24
185.105.91.0/24 maxlen: 24
185.105.88.0/24 maxlen: 24
185.105.89.0/24 maxlen: 24
185.221.162.0/24 maxlen: 24
45.95.202.0/24 maxlen: 24
45.95.203.0/24 maxlen: 24
45.90.216.0/24 maxlen: 24
45.90.217.0/24 maxlen: 24
45.90.218.0/24 maxlen: 24
45.90.219.0/24 maxlen: 24
84.252.73.0/24 maxlen: 24
84.252.74.0/24 maxlen: 24
84.252.75.0/24 maxlen: 24
185.128.105.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
85.209.2.0/24 maxlen: 24
185.103.109.0/24 maxlen: 24
185.128.106.0/24 maxlen: 24
185.128.107.0/24 maxlen: 24
193.168.227.0/24 maxlen: 24
185.217.198.0/24 maxlen: 24
185.217.199.0/24 maxlen: 24
185.104.251.0/24 maxlen: 24
2a09:5302::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72452667 (0x4518a3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 24 08:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b88c4a6d123169e3206da3c8454db88819ac9a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:46:ee:c7:1c:8b:b9:88:3c:0b:1b:25:e8:f2:
f5:23:d5:fc:62:cd:cd:38:df:29:2a:b8:3e:2d:cf:
53:06:6e:ef:e9:19:e9:9a:7a:c6:4b:87:b2:87:45:
d9:a2:eb:d5:52:85:c9:99:96:ef:fd:e7:14:4e:3e:
48:52:08:a4:26:fb:b0:75:f7:26:58:0a:48:05:05:
e0:e1:59:51:e5:c2:c6:7f:8b:33:2a:e6:2a:6f:29:
4c:84:60:ff:37:da:16:dc:e4:72:5b:c1:63:f3:23:
2b:92:84:5b:9b:eb:5e:37:fe:db:11:82:0b:6b:df:
cf:4b:ca:03:67:4b:1e:18:11:1e:5e:ef:cc:52:12:
e4:65:42:10:1f:a9:b2:7d:69:cc:37:16:e1:2e:a9:
37:0d:e6:c5:88:89:39:5b:26:bf:f3:c0:22:d5:f0:
d2:fc:3b:21:fa:4e:0e:03:0d:fa:9a:9b:a8:08:1c:
bb:03:5c:f5:32:5b:57:05:c0:48:07:88:22:a4:41:
22:fc:d8:8d:45:41:0e:a6:54:6c:ee:fe:e0:47:7b:
6f:33:b0:a8:e7:64:4f:d6:05:34:21:e2:79:ff:30:
61:3b:b0:28:ef:cf:4d:71:60:a6:3d:34:7f:22:66:
c8:98:b4:eb:0a:5f:4c:73:1e:de:41:32:0d:a5:9d:
8c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8C:4A:6D:12:31:69:E3:20:6D:A3:C8:45:4D:B8:88:19:AC:9A:59
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uIxKbRIxaeMgbaPIRU24iBmsmlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.0/24
45.9.75.0/24
45.89.65.0/24
45.90.216.0/22
45.95.202.0/23
84.252.73.0-84.252.75.255
85.209.2.0/24
185.103.109.0/24
185.104.251.0/24
185.105.88.0/22
185.112.101.0-185.112.103.255
185.128.105.0-185.128.107.255
185.217.198.0/23
185.221.162.0/24
193.162.143.0/24
193.168.227.0/24
IPv6:
2a09:5302::/32
Signature Algorithm: sha256WithRSAEncryption
b1:fe:6e:c8:2b:ae:84:30:4d:51:53:1b:1e:a8:ec:bf:d7:80:
e4:1a:98:83:61:51:21:06:f8:7b:68:30:1f:ce:97:b5:08:bb:
01:79:1b:5b:ff:41:ab:5c:9b:66:98:2b:3a:29:20:f0:33:cd:
c2:d1:fc:7f:05:b4:dd:24:81:19:5f:60:68:11:af:a0:00:30:
bf:c0:37:12:63:1a:53:30:10:0d:35:e2:25:49:d0:8d:16:02:
6f:05:a4:30:18:65:ae:43:b7:ed:47:79:0e:5a:8d:9a:91:b3:
61:37:79:f1:67:fd:f1:37:1b:cd:a0:f2:e5:e5:9c:75:0d:f4:
9e:8f:17:f6:7b:a1:d5:e1:26:50:c3:29:89:93:8f:4e:e0:94:
78:66:6b:71:7e:e9:2f:7e:6a:d5:77:01:3f:56:71:fa:0c:40:
90:d9:ac:e4:e8:55:cc:8f:01:75:c5:4f:56:41:b9:c9:8d:9b:
f2:8e:ac:a9:7d:ac:ef:e7:c1:57:74:b8:de:7c:e5:86:07:06:
ca:2a:f0:4b:b5:1a:cd:63:e4:34:2e:94:98:96:b9:9d:61:a0:
25:19:56:92:95:0a:00:c9:04:a9:6b:3a:4a:67:b3:9f:54:ea:
1e:ce:50:a8:a9:aa:a3:4d:2b:99:ee:cd:ca:a3:c1:76:99:b5:
1b:88:23:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org